topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Thursday March 28, 2024, 1:46 pm
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Author Topic: Kaspersky - Clandestine State Sponsored Hacking  (Read 4423 times)

Renegade

  • Charter Member
  • Joined in 2005
  • ***
  • Posts: 13,288
  • Tell me something you don't know...
    • View Profile
    • Renegade Minds
    • Donate to Member
Kaspersky - Clandestine State Sponsored Hacking
« on: January 15, 2013, 07:47 PM »
What good are hacking laws if the worst culprits are governments?

http://www.kaspersky...stitutions_Worldwide

Kaspersky Lab Identifies Operation “Red October,” an Advanced Cyber-Espionage Campaign Targeting Diplomatic and Government Institutions Worldwide

Attackers Created Unique, Highly-Flexible Malware to Steal Data and Geopolitical Intelligence from Target Victims’ Computer Systems, Mobile Phones and Enterprise Network Equipment

Today Kaspersky Lab published a new research report which identified an elusive cyber-espionage campaign targeting diplomatic, governmental and scientific research organizations in several countries for at least five years. The primary focus of this campaign targets countries in Eastern Europe, former USSR Republics, and countries in Central Asia, although victims can be found everywhere, including Western Europe and North America. The main objective of the attackers was to gather sensitive documents from the compromised organizations, which included geopolitical intelligence, credentials to access classified computer systems, and data from personal mobile devices and network equipment.

The paper:

http://www.securelis..._Government_Agencies
http://www.securelis...ttacks_Investigation

It's all pretty darn sophisticated. Certainly would be nice if people smart enough to pull that off turned to more productive and uplifting activities.
Slow Down Music - Where I commit thought crimes...

Freedom is the right to be wrong, not the right to do wrong. - John Diefenbaker

Tinman57

  • Charter Member
  • Joined in 2006
  • ***
  • Posts: 1,702
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #1 on: January 15, 2013, 08:14 PM »
What good are hacking laws if the worst culprits are governments?
  LOL!  I was just about to post this myself and saw you beat me to it.  You can also read about it here:
http://www.pcworld.c...ata-in-the-wild.html

  From the time this came about and I read that it had been in the wild for over 5 years, I strongly suspected that it was government developed/sanctified.

CWuestefeld

  • Supporting Member
  • Joined in 2006
  • **
  • Posts: 1,009
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #2 on: January 16, 2013, 12:16 PM »
On the other hand, an article in a recent Wired magazine (sorry, don't have link handy) makes one wonder if Kaspersky is itself in the espionage business.

Joe Hone

  • Supporting Member
  • Joined in 2012
  • **
  • default avatar
  • Posts: 86
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #3 on: January 16, 2013, 07:51 PM »
That would be a bit too cutesy for Kaspersky to "discover" this on behalf of a client and then announce it to the world to cover its own tracks. But stranger things have happened.

Stoic Joker

  • Honorary Member
  • Joined in 2008
  • **
  • Posts: 6,646
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #4 on: January 17, 2013, 06:40 AM »
What good are hacking laws if the worst culprits are governments?

It keeps out the riffraff and maintains the playing field at a manageable size?

40hz

  • Supporting Member
  • Joined in 2007
  • **
  • Posts: 11,857
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #5 on: January 17, 2013, 08:19 AM »
Wow! What a surprise. Can you believe it? An actual government involved with something like that! ;D

Tinman57

  • Charter Member
  • Joined in 2006
  • ***
  • Posts: 1,702
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #6 on: January 17, 2013, 07:29 PM »
Wow! What a surprise. Can you believe it? An actual government involved with something like that! ;D

  I know, Right.  Now whodathunkit?

Tinman57

  • Charter Member
  • Joined in 2006
  • ***
  • Posts: 1,702
    • View Profile
    • Donate to Member
Red October Shutting Down
« Reply #7 on: January 21, 2013, 07:40 PM »
Red October Attackers Shutting Down C&C Infrastructure
It appears that the attackers behind the Red October cyberespionage campaign are taking their ball and going home. Since the attack came to light on Monday, the attackers have begun shutting down their infrastructure and the hosting providers and registrars involved with some of the command-and-control domains are shutting those down, as well.


https://threatpost.c...ears-activity-011413

40hz

  • Supporting Member
  • Joined in 2007
  • **
  • Posts: 11,857
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #8 on: January 21, 2013, 07:49 PM »
^Makes sense they would. Now that it's been "painted" it would only be a matter of time before it ultimately got analyzed and tracked back home to mother. Especially the longer it stayed up.

Like they said in the movie The Sting: If Lonigan puts the finger on you we gotta fold the con.

Yup. Fold the tent and get the hell outta there. "Cover your tracks as best you may - and thus live to fight another day."

These people have the tools and the talent. This isn't the last we'll be seeing of whoever was behind it.


Tinman57

  • Charter Member
  • Joined in 2006
  • ***
  • Posts: 1,702
    • View Profile
    • Donate to Member
Re: Kaspersky - Clandestine State Sponsored Hacking
« Reply #9 on: January 22, 2013, 07:04 PM »
^Makes sense they would. Now that it's been "painted" it would only be a matter of time before it ultimately got analyzed and tracked back home to mother. Especially the longer it stayed up.

Like they said in the movie The Sting: If Lonigan puts the finger on you we gotta fold the con.

Yup. Fold the tent and get the hell outta there. "Cover your tracks as best you may - and thus live to fight another day."

These people have the tools and the talent. This isn't the last we'll be seeing of whoever was behind it.

  Yep, once they tweak the code and set up different command & control centers, they'll be back.  Then the only problem will be "We Won't Know It!"