Hackers booby-trap foreign policy group websites

Internet security researchers warned that foreign policy and human rights websites are being booby-trapped by hackers in what appears to be cyber espionage.

As of Monday websites for Amnesty International Hong Kong, the Cambodian Ministry of Foreign Affairs and the US Center for Defense Information (CDI) remained rigged to slip "hostile" code onto visitors' computers, according to Shadowserver Foundation devoted to tracking and reporting Internet threats.

"These attackers are not spreading malware through strategically compromised websites to make friends," Shadowserver researchers Steven Adair and Ned Moran warned in a blog post.

"They are aiming to expand their access and steal data."

Data typically sought included messages, intellectual property, research, and business intelligence such as contracts and negotiations, according to security specialists.

"The CDI website is currently serving up a malicious Flash exploit that ties back to attackers known to engage in cyber espionage," the researchers said.

"This threat group appears to be interested in targets with a tie to foreign policy and defense activities."

In recent weeks, Shadowserver has seen an array of "strategic Web compromises" taking advantage of flaws in Oracle Java and Adobe Flash programs.

The tactic is referred to as a "drive-by" attack by computer security specialists because people's computers are secretly infected simply by visiting a reputable website unaware that it has been booby-trapped by hackers.

A website for the International Institute of Counter-Terrorism at the Interdisciplinary Center in Herzliya, Israel, was listed among those compromised by hackers.

Shadowserver said that it began looking into the hacks after researchers at Websense reported last week that the main page of Amnesty International United Kingdom had been rigged with drive-by malware.

There are indications that a website for the American Research Center in Egypt was briefly compromised last week in a manner similar to the CDI page hack, according to Shadowserver.

Earlier this month the Centre for European Policy Studies website at ceps.eu was similarly compromised, according to the volunteer-based Internet security group.

Shadowserver referred to the hacks as "advance persistent threats," a term used in the industry to refer to cyber espionage by groups such as governments.

"Many of these attackers are quite skilled at moving laterally within an organization and will take advantage of any entry point they have into a network," the researchers said.

"Cyber espionage attacks are not a fabricated issue and are not going away any time soon."

Loading...

Editor’s note:Yahoo Philippines encourages responsible comments that add dimension to the discussion. No bashing or hate speech, please. You can express your opinion without slamming others or making derogatory remarks.

  • N. Korea fires missiles in anger at South-US military drills
    N. Korea fires missiles in anger at South-US military drills

    North Korea fired two short-range ballistic missiles into the sea and vowed "merciless" retaliation Monday as the US and South Korea kicked off joint military drills denounced by Pyongyang as recklessly confrontational. The annual exercises always trigger a surge in military tensions and warlike rhetoric on the divided peninsula, and analysts saw the North's missile tests as a prelude to a concerted campaign of sabre-rattling. "If there is a particularly sharp escalation, we could see the …

  • Couple married 67 years holds hands in final hours together
    Couple married 67 years holds hands in final hours together

    FRESNO, Calif. (AP) — After spending 67 years together as devoted husband and wife, there was no question how Floyd and Violet Hartwig would end their lives — together. …

  • Hijacked Indonesian vessel found in Davao
    Hijacked Indonesian vessel found in Davao

    An Indonesian cargo vessel that was hijacked a month ago in North Sulawesi, Indonesia has been found stuck in the waters off Mati, Davao Oriental, the Philippine Coast Guard (PCG) reported yesterday. PCG spokesperson Armand Balilo said the PCG- Southeastern Mindanao district was informed on Feb. 23 that the M/T Rehoboth was found aground off Barangay Cabuaya. Four personnel from the local PCG district office were sent to verify the report. The vessel was reportedly hijacked by …

  • Militants want US Marines pulled out of Negros
    Militants want US Marines pulled out of Negros

    The militant group Bagong Alyansang Makabayan (Bayan) is calling for the pullout of US Marines who arrived in Sagay City, Negros Occidental last Wednesday to train Special Action Force (SAF) commandos and members of the allied forces. The SAF commandos and the allied forces will secure the Asia-Pacific Economic Cooperation (APEC) ministerial meeting in this city. Bayan-Negros secretary general Christian Tuayon said the US troops might violate the human rights of activists, especially those …

  • Military steps up offensive vs BIFF, Abu Sayyaf
    Military steps up offensive vs BIFF, Abu Sayyaf

    Armed Forces of the Philippines (AFP) chief Gen. Gregorio Pio Catapang Jr. has ordered the sustained campaign against the Abu Sayyaf and the Bangsamoro Islamic Freedom Fighters (BIFF) following the successive offensives against the armed groups last week. A total of 24 Abu Sayyaf bandits and two soldiers were killed in recent clashes in Sulu last week. The Joint Task Group Sulu has received information that Abu Sayyaf leader Radulan Sahiron was wounded during one of the encounters but this is …

  • 'Jihadi John' relatives under watch in Kuwait
    'Jihadi John' relatives under watch in Kuwait

    Kuwaiti authorities are closely monitoring several relatives of "Jihadi John" who live and work in the Gulf emirate where the Islamic State executioner was born, press reports said on Sunday. A number of relatives of Mohammed Emwazi, named as the militant who has beheaded at least five Western hostages, are working in Kuwait and like him hold British citizenship, Al-Qabas newspaper reported. "Security agencies have taken the necessary measures to monitor them round the clock," the paper said, …

  • Binay backs house arrest for JPE, GMA
    Binay backs house arrest for JPE, GMA

    Vice President Jejomar Binay yesterday supported proposals to put Sen. Juan Ponce Enrile and former President now Pampanga Rep. Gloria Macapagal- Arroyo under house arrest. “Government prosecutors are opposing house arrest for… Enrile. Binay issued the statement after the 91-year-old Enrile was rushed to the Makati Medical Center on Thursday due to pneumonia. House arrest for him would be the compassionate thing to do,” he added. …

  • Interview: Australia says hunt for missing MH370 jet may be called off soon
    Interview: Australia says hunt for missing MH370 jet may be called off soon

    By Matt Siegel CANBERRA (Reuters) - The search for missing Malaysia Airlines Flight MH370 cannot go on forever, Australia's deputy prime minister said, and discussions are already under way between Australia, China and Malaysia as to whether to call off the hunt within weeks. No trace has been found of the Boeing 777 aircraft, which disappeared a year ago this week carrying 239 passengers and crew, in what has become one of the greatest mysteries in aviation history. The search of a rugged …

POLL

Should Aquino be held accountable over the Mamasapano operations?

Loading...
Poll Choice Options