Breaking News

Samsung Brings the Ultimate Gaming Experience to 2021 Neo QLED and QLEDs GIGABYTE AORUS Gen4 7000s SSD- The Fastest PCIe 4.0 NVMe SSD TerraMaster Releases All-New TOS 4.2 Samsung Announces S21 series with new Galaxy Buds Pro Sony Launches Newest Addition to G Master Full-Frame Lens Series with the Indispensable FE 35mm F1.4 GM

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

 iSIGHT Discovers Windows Server Vulnerability Used in Russian Cyber-espionage Campaign

iSIGHT Discovers Windows Server Vulnerability Used in Russian Cyber-espionage Campaign

Enterprise & IT Oct 14,2014 0

Russian hackers exploited a bug in Microsoft Windows and Windows Server 2008 and 2012 software to spy on computers used by NATO, the European Union, Ukraine and companies in the energy and telecommunications sectors, according to cyber intelligence firm iSight Partners. Microsoft is making a patch for this vulnerability available as part of patch updates on the 14th – CVE-2014-4114.

Visibility into this campaign indicates targeting across the following domains, according to iSIGHT:

  • NATO
  • Ukrainian government organizations
  • Western European government organization
  • Energy Sector firms (specifically in Poland)
  • European telecommunications firms
  • United States academic organization

iSIGHT attributed this particular cyber-espionage campaign to anintrusion team that iSIGHT has dubbed 'Sandworm Team' based on its use of encoded references to the classic science fiction series Dune in command and control URLs and various malware samples.

The team has been previously referred to as Quedach by F-Secure, which detailed elements of this campaign in September 2014 but only captured a small component of the activities and failed to detail the use of the zero-day vulnerability.

iSIGHT says the Sandworm Team’s activities started around 2009. The team prefers the use of spear-phishing with malicious document attachments to target victims. Many of the lures observed have been specific to the Ukrainian conflict with Russia and to broader geopolitical issues related to Russia. The team has recently used multiple exploit methods to trap its targets including the use of BlackEnergy crimeware, exploitation of as many as two known vulnerabilities simultaneously, and this newly observed Microsoft Windows zero-day.

In late August, while tracking the Sandworm Team, iSIGHT discovered a spear-phishing campaign targeting the Ukrainian government and at least one United States organization. Notably, these spear-phishing attacks coincided with the NATO summit on Ukraine held in Wales.

On September 3rd, the spear-phishing attacks relied on the exploitation of a zero-day vulnerability impacting all supported versions of Microsoft Windows (XP is not impacted) and Windows Server 2008 and 2012. A weaponized PowerPoint document was observed in these attacks.

Tags: Hacking
Previous Post
Google Expands Shopping Service
Next Post
Alleged Dropbox Passwords Leaked Online

Related Posts

  • European Supercomputers Researching Covid-19 Report Hacking Attacks

  • Microsoft Offers You $100,000 If You Can Hack the Linux-based Azure Sphere

  • Zoom Users' Data have Been on Sale on Dark Web: report

  • Indonesia's Tokopedia Inverstigates Alleged Data Leak of 91 Million Users

  • Nintendo Says 160,000 Accounts Have Been Hacked

  • Marriott Discloses New Data Breach

  • FireEye Warns About Chinese APT41 Global Intrusion Campaign Using Multiple Exploits

  • Pwn2Own 2020: Hackers Targeted Ubuntu, VMWare, Windows 10 and More

Latest News

Samsung Brings the Ultimate Gaming Experience to 2021 Neo QLED and QLEDs
Consumer Electronics

Samsung Brings the Ultimate Gaming Experience to 2021 Neo QLED and QLEDs

GIGABYTE AORUS Gen4 7000s SSD- The Fastest PCIe 4.0 NVMe SSD
PC components

GIGABYTE AORUS Gen4 7000s SSD- The Fastest PCIe 4.0 NVMe SSD

TerraMaster Releases All-New TOS 4.2
Enterprise & IT

TerraMaster Releases All-New TOS 4.2

Samsung Announces S21 series with new Galaxy Buds Pro
Smartphones

Samsung Announces S21 series with new Galaxy Buds Pro

Sony Launches Newest Addition to G Master Full-Frame Lens Series with the Indispensable FE 35mm F1.4 GM
Cameras

Sony Launches Newest Addition to G Master Full-Frame Lens Series with the Indispensable FE 35mm F1.4 GM

Popular Reviews

CeBIT 2005

CeBIT 2005

Zidoo Z9S 4K Media Player review

Zidoo Z9S 4K Media Player review

CeBIT 2006

CeBIT 2006

LiteOn iHBS112 review

LiteOn iHBS112 review

Club3D HD3850

Club3D HD3850

Crucial P1 NVMe 1TB SSD review

Crucial P1 NVMe 1TB SSD review

Hitachi DZ-MV100A DVD Camcorder

Hitachi DZ-MV100A DVD Camcorder

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

Toshiba Exceria M303 64GB and M501 Exceria Pro 64GB MicroSDXC review

  • Home
  • News
  • Reviews
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed