Tuesday, September 16, 2014
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
CEA Unveils New Logos For 4K Displays
IBM Offers Watson Data Tool To the Mainstream
Microsoft Releases New Arc Touch Bluetooth Mouse, PC Accessories
Toshiba Introduces New Exceria UHS-I SD Memory Cards, Transmemory Flash Drive
Nvidia SHIELD Tablet Gets 32GB Storage and 4G LTE
Micron M600 SSD Released With Dynamic SLC Cache
Orange to Buy Spanish Operator Jazztel
US Government Data Requests Increased: Google
Active Discussions
Yamaha CRW-F1UX
help questions structure DVDR
Made video, won't play back easily
Questions durability monitor LCD
Questions fungus CD/DVD Media, Some expert engineer in optical media can help me?
CD, DVD and Blu-ray burning for Android in development
IBM supercharges Power servers with graphics chips
Werner Vogels: four cloud computing trends for 2014
 Home > News > General Computing > Malware...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, July 16, 2013
Malware Attack Strikes Asian, European Governments


Trend Micro researchers have uncovered a targeted attack launched against government agencies in various countries. The email claimed to be from the Chinese Ministry of National Defense, although it appears to have been sent from a Gmail account and did not use a Chinese name.

The document contains a malicious attachment, which exploits a vulnerability (CVE-2012-0158) in Microsoft Office (all versions from Office 2003 to Office 2010 were affected) that was patched more than a year ago. The exploit is used to drop a backdoor onto the system, which steals login credentials for websites and email accounts from Internet Explorer and Microsoft Outlook. (It also opens a legitimate "dummy" document, to make the target believe that nothing malicious happened.) Any stolen information is uploaded to two IP addresses, both of which are located in Hong Kong.

This particular attack was aimed primarily at both personnel belonging to Europe and Asia governments. Trend Micro said that the message was sent to 16 officials representing European countries alone. The topic of the email -and the attached document - would be of interest to these targets. In addition, the information stolen and where it was stolen from is very consistent with targeted attacks aimed at large organizations that use corporate mainstays like Internet Explorer and Outlook.

It?s worth noting, however, that Chinese media organizations were also targeted by this attack. The backdoor itself has also been detected in the wild ? but, interestingly, it has been most frequently seen in China and Taiwan, with a more limited presence in other Asian countries.

The vulnerability used in this attack is one that is commonly used by targeted attacks. High-profile campaigns like Safe and Taidoor have made use of this vulnerability; if anything it's a commonly targeted flaw in sophisticated campaigns.


Previous
Next
Micron Unveils 16-Nanometer Flash Memory Technology        All News        AT&T TO Offer More Frequent Device Upgrades
Apple Unveils Logic Pro X     General Computing News      Baidu to Acquire NetDragon's Subsidiary 91 Wireless For $1.9 Billion

Get RSS feed Easy Print E-Mail this Message

Related News
FBI Cleanups GameOver Zeus, Cryptolocker Botnets
Microsoft Disrupts Jenxcus and Bladabindi Malware Families
FBI Says BlackShades Infected Half Million Computers
Windows Malware Infects Android Devices
Dropbox, WordPress Used To Spread Malware
Mobile Threats Continue Rampant Growth
Cyber Attack Targets Nato, Government Websites
Stuxnet Roots Found Back in 2005
Android Malware Found On Google Play
July 9 Could be 'Internet doomsday' for Some PC or Mac Users
Kaspersky Says Stuxnet and Flame Developers Are Connected
Google Starts Showing Security Warnings For Suspected State-sponsored Attacks

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2014 - All rights reserved -
Privacy policy - Contact Us .