Threats

U.S. Government also Targeted by Malware Used In Attacks on Israelis, Palenstinians

U.S. Government also Targeted by Malware Used In Attacks on Israelis, Palenstinians

The recently reported malicious software attacks against Israeli and Palestinian targets have expanded to hit other targets, including individuals working within the U.S. Congress, the UK government and government workers in countries ranging from Turkey to Slovenia and New Zealand, according to a report from security firm Trend Micro. In a blog post on Wednesday, Trend Senior Threat Researcher Nart Villenueve wrote on the company’s Security Intelligence blog that  those attacks are ongoing and involve a much wider list of targets that initially reported. The attacks first came to light after a Times of Israel report revealed on October 28 that computer systems used by that country’s police departments were taken offline following a virus infection. Subsequent analysis by Trend and others (PDF) revealed that the malware used in the attacks was a variant of the common Xtreme Remote Access Trojan (Xtreme RAT) – an information stealing program that can be […]

Adobe Acknowledges Hack of User Forum For Connect Service

Adobe Acknowledges Hack of User Forum For Connect Service

Software giant Adobe on Wednesday confirmed claims by a self-proclaimed “Egyptian” hacker to have compromised a user support forum frequented by customers of its Connect web conferencing technology, stealing user account information and posting some of it online. Adobe’s Director of Connect, Guillaume Privat, acknowledged in a blog post on Wednesday that the compromise of the Connectusers.com forum by an “unauthorized third-party” was for real and that the company has disabled the forum while it investigates the incident. The breach was first disclosed on Tuesday when a hacker calling himself “ViruS_HimA” posted what appeared to be account e-mail and password information online through web sites like pastebin.com and sendspace.com. The hacker claimed to have compromised a database server used to maintain the Connnectusers.com forum and downloaded information on 150,000 account holders, including the users names, login IDs, hashed password values, employer and e-mail address. The motive for the hack was […]

Support Forums Reveal Soft Underbelly of Critical Infrastructure

Support Forums Reveal Soft Underbelly of Critical Infrastructure

We hear a lot about vulnerabilities in industrial control system (ICS) software. In fact, that’s all we seem to hear about these days. The truth is: there’s a lot to write about. In just the last month, the Department of Homeland Security’s ICS-CERT warned its members about the ability of  sophisticated – and even unskilled – attackers to use tools like the Shodan and ERIPP search engines to locate and attack vulnerable industrial control systems (PDF) that are accessible from the public Internet. In the meantime, every couple of weeks brings revelations about serious and remotely exploitable software holes. Most recently, ICS-CERT warned about a critical vulnerability EOScada (PDF), a Windows-based Energy Management System that is used to configure and manage intelligent electronic devices (IEDs) used in electrical, water, sewage and gas applications. But what about real evidence of compromised SCADA and industrial control systems? That’s a taller order. After all: most […]

Medical Pumps Recall: Bug Causes Inaccurate Readings on Touchscreen

Medical Pumps Recall: Bug Causes Inaccurate Readings on Touchscreen

Mobile phones aren’t the only products to benefit from nifty touch screen displays. A whole range of medical devices now sport them, also – as any trip to your local emergency department (or dentist’s office) will reveal. Unfortunately, many of those devices are just as balky and bug ridden as your average mobile phone -despite the fact that patients’ lives can rely on them. And this week, there’s more evidence of the lurking epidemic of shoddy, IP enabled medical devices. The medical device maker Hospira issued a voluntary, nationwide recall of its Symbiq brand infusion systems after discovering a software error that caused the touch screen interfaces on the devices to respond incorrectly to user input. The problem could result in “a delayed response and or the screen registering a different value from the value selected by the user,” the company said in a statement. Symbiq is a drug infusion […]

FBI Surveillance of NY Fed Terror Suspect Included Facebook Chats

FBI Surveillance of NY Fed Terror Suspect Included Facebook Chats

The FBI’s surveillance of Quazi Nafis, the alleged terror suspect who tried to blow up the New York Federal Reserve Bank, included Facebook chats between  Nafis, a co-conspirator and a confidential FBI source, according to a copy of the indictment released on Wednesday. The indictment details a months-long investigation of Nafis, a 21 year-old Bangladeshi and Queens, New York, resident who entered the U.S. on a visa in January, 2012. While much of the surveillance consisted of recorded phone- and in person conversations, Nafis also used Facebook in July to debate with his co-conspirators about whether his planned act of jihad was sanctioned under Muslim law. Nafis was arrested in New York’s financial district Wednesday after he attempted to detonate what he believed was a truck bomb parked outside the New York Federal Reserve bank. The bomb was assembled by Nafis and a co-conspirator using inert materials supplied by the […]