ALL >> Computers >> View Article
Christmas Card Steals Sensitive Information. Information Security Experts Fear Cyber Espionage
Recently, information security professionals identified data breach by cybercriminals. The offenders reportedly sent e-mails to government employees and contracted professionals. The e-mail address was spoofed to make it appear as sent from whitehouse.gov domain. The e-mail message thanked the staff for their contribution and conveyed greetings for the holidays. The message also contained a greeting card link. While the staff may have overjoyed on receiving e-mail from white house, they were actually victims of a spear phishing attack, wherein sensitive information was stolen from their computers.
Experts have identified that a variant of Zeus Trojan was used to install malware in computer systems. When unwary recipients clicked on the greeting card link, they were prompted to open a .zip file. As users opened the .Zip file, their systems were infected by the Trojan. The Trojan stole passwords and documents such as PDF files, word and excel documents to upload them to a remote server. The server was allegedly ...
... based in Belarus. IT Security experts have expressed the possibility of cyber-espionage as the victims included an Intelligence analyst of Massachusetts State Police, an employee of National Science Foundation's (NSF) Office of Cyber Infrastructure and an employee of Financial Action Task force. The compromised data includes cell-phone intercepts, document on protection national security information and grant applications to NSF for new technologies.
Ironically, the attack comes at a time, when governments across the world are dealing with chaos created by WikiLeaks disclosure. The attack highlights the imminent threat to information security and confidentiality of crucial documents of national interest.
Governments across the world must assess their IT security apparatus and revamp the infrastructure to secure classified documents and information. Government bodies, intelligence agencies, scientific departments and organizations must regular conduct security evaluation tests through ethical hacking, vulnerability assessment, penetration testing and security audits to mitigate the vulnerabilities prior to their exploitation by hackers. The latest spear phishing attack demonstrates that specially-crafted and targeted e-mails can dupe even security experts and intelligence officials. As such, governments must initiate measures to create information security awareness among employees and cultivate a culture of secured IT practices.
Add Comment
Computers Articles
1. Custom Website Development ServicesAuthor: brainbell10
2. Enhance Storage Conditions With Warehouse Humidity Monitor And Probe Monitoring Solutions For Greater Environmental Control
Author: Chris Miller
3. How Telecom Networks Are Being Built Smarter — One Data Point At A Time
Author: Itech Lance
4. Mobile Threat Management Market: Enabling Secure And Connected Workforces
Author: Umangp
5. Expand Your Business With Ipad App Development
Author: brainbell10
6. Laptop Screen Replacement In Dubai
Author: majid computer
7. Edc Systems With Strong Etmf Integration And External Connectivity For Cros And Sponsors
Author: Giselle Bates
8. From 3d Data To Clear Plans: Point Cloud To Cad Help From Itechlance It Pvt. Ltd
Author: Itech Lance
9. Future Of Digital World Drones Or Mobile Apps
Author: brainbell10
10. User And Entity Behavior Analytics (ueba) Market: The Key To Managing Third-party Cyber Risks
Author: Umangp
11. Buy Epson Tm-t88vi Receipt Printer With Warranty
Author: prime pos
12. Food Delivery Mobile App Development Cost & Features
Author: brainbell10
13. Cell Phone Repair Near Me | Fast & Trusted Service
Author: Real Mobile Repair
14. 00al556 Ibm 550-watts Platinum Power Supply For X3650 M4: Reliable And Energy-efficient Power For Enterprise Servers
Author: Server Tech Central
15. Iot Identity And Access Management (iam) Market : Driving Secure Innovation In Connected Ecosystems
Author: Umangp






