Hackers booby-trap foreign policy group websites

Internet security researchers warned that foreign policy and human rights websites are being booby-trapped by hackers in what appears to be cyber espionage.

As of Monday websites for Amnesty International Hong Kong, the Cambodian Ministry of Foreign Affairs and the US Center for Defense Information (CDI) remained rigged to slip "hostile" code onto visitors' computers, according to Shadowserver Foundation devoted to tracking and reporting Internet threats.

"These attackers are not spreading malware through strategically compromised websites to make friends," Shadowserver researchers Steven Adair and Ned Moran warned in a blog post.

"They are aiming to expand their access and steal data."

Data typically sought included messages, intellectual property, research, and business intelligence such as contracts and negotiations, according to security specialists.

"The CDI website is currently serving up a malicious Flash exploit that ties back to attackers known to engage in cyber espionage," the researchers said.

"This threat group appears to be interested in targets with a tie to foreign policy and defense activities."

In recent weeks, Shadowserver has seen an array of "strategic Web compromises" taking advantage of flaws in Oracle Java and Adobe Flash programs.

The tactic is referred to as a "drive-by" attack by computer security specialists because people's computers are secretly infected simply by visiting a reputable website unaware that it has been booby-trapped by hackers.

A website for the International Institute of Counter-Terrorism at the Interdisciplinary Center in Herzliya, Israel, was listed among those compromised by hackers.

Shadowserver said that it began looking into the hacks after researchers at Websense reported last week that the main page of Amnesty International United Kingdom had been rigged with drive-by malware.

There are indications that a website for the American Research Center in Egypt was briefly compromised last week in a manner similar to the CDI page hack, according to Shadowserver.

Earlier this month the Centre for European Policy Studies website at ceps.eu was similarly compromised, according to the volunteer-based Internet security group.

Shadowserver referred to the hacks as "advance persistent threats," a term used in the industry to refer to cyber espionage by groups such as governments.

"Many of these attackers are quite skilled at moving laterally within an organization and will take advantage of any entry point they have into a network," the researchers said.

"Cyber espionage attacks are not a fabricated issue and are not going away any time soon."

Loading...

Editor’s note:Yahoo Philippines encourages responsible comments that add dimension to the discussion. No bashing or hate speech, please. You can express your opinion without slamming others or making derogatory remarks.

  • Volkswagen opens new showroom along Quezon Avenue
    Volkswagen opens new showroom along Quezon Avenue

    Volkswagen opened a new showroom along Quezon Avenue, which is now the automotive row of Northern Metro Manila.At the Innauguration was Chief Operating Adviser Klaus Schadewald, Branch Manager Bob Anthony Palanca, Volkswagen Philippines: President and CEO John Philip Orbeta and General Manager Nemesio Solomon, Jr. This new showroom has the latest Volkswagen Interactive Showroom applications. ... …

  • The Race to Global Greatness - YGP6
    The Race to Global Greatness - YGP6

    Yamaha Motor Philippines (YMPH) recently held the first leg of the Yamaha Grand Prix 6 at the SM Sta. Rosa compound in Laguna. The racing categories for this year are the following: Automatic Inter-Club RaceUnderbone Inter-Club Race115 Superstock ATVega Force i SuperstockSniper 150 Open UB130 Open UBMio 125 MX i …

  • Volkswagen opens new showroom along Quezon AvenueVolkswagen opened a new showroom along Quezon Avenue, …
    Volkswagen opens new showroom along Quezon AvenueVolkswagen opened a new showroom along Quezon Avenue, …

    Volkswagen opened a new showroom along Quezon Avenue, which is now the automotive row of Northern Metro Manila.At the Innauguration was Chief Operating Adviser Klaus Schadewald, Branch Manager Bob Anthony Palanca, Volkswagen Philippines: President and CEO John Philip Orbeta and General Manager Nemesio Solomon, Jr. This new showroom has the latest Volkswagen Interactive Showroom applications. ... …

  • Nissan launches its “Virtual to Reality” GT Academy here in the Philippines
    Nissan launches its “Virtual to Reality” GT Academy here in the Philippines

    The Filipino Gran Turismo gamer just became eligible to become a Pro Race Car driver as Nissan Philippines Inc. launched its GT Academy here in the Philippines. The object is to find the best Grand Turismo players in both the online qualification process and participating in the live events after which they’ll compete with each other in National Finals to see who gets to attend the 3 month Race camp.  The winner gets to stay in the UK near Silverstone and will take part in UK national and club …

  • Osmeña wants electricity exempted from VAT
    Osmeña wants electricity exempted from VAT

    Sen. Sergio Osmeña III wants electricity to be exempted from value added tax under a proposed measure that will amend the National Internal Revenue Code of 1997 and the Reformed VAT Law. He said the move aims to ease the burden of the public in paying high electricity rates in the country. “VAT on electricity is another burden on the already over-taxed shoulders of our people, especially those whose incomes are barely enough to cover their basic needs. Osmeña, chairman of the Senate …

  • No lotto draws starting tomorrow until Easter Sunday
    No lotto draws starting tomorrow until Easter Sunday

    No lotto tickets will be sold and no lotto draws made starting tomorrow, Maundy Thursday, up to Easter Sunday in observance of Holy Week. In a statement, Jose Ferdinand Rojas II, acting Philippine Charity Sweepstakes Office (PCSO) chairman and general manager, said the selling of lotto tickets and lotto draws will resume on April 6,  Monday. “We thank all Lotto players for your trust and confidence in the PCSO games, and we count on your continued support of our efforts to raise funds for …

  • Quake rocks C. Visayas
    Quake rocks C. Visayas

    A magnitude-3.2 earthquake rocked parts of Central Visayas yesterday. State seismologists said the quake was an aftershock of a powerful tremor that hit the region in 2013. The Philippine Institute of Volcanology and Seismology (Phivolcs) said the quake occurred at 7:54 a.m. Its epicenter was located 10 kilometers  southeast of Buenavista, Bohol. Phivolcs director Renato Solidum said the quake was an aftershock of the magnitude-7.2 earthquake that hit Bohol on Oct. 15, 2013. …

  • Super howler nears Phl
    Super howler nears Phl

    A typhoon that has devastated islands in the Pacific is forecast to become a category 5 monster howler as it barrels toward the Philippines this week. The Philippine Atmospheric, Geophysical and Astronomical Services Administration (PAGASA) said Maysak will be named Chedeng when it enters the Philippine area of responsibility tonight or tomorrow morning. In an interview, PAGASA weather forecaster Gener Quitlong said the forecast track of Maysak may still change depending on the movement of …

POLL

Should Aquino be held accountable over the Mamasapano operations?

Loading...
Poll Choice Options