ZeuS is a well known crimeware tool kit that is readily available online. The tool allows even the most unskilled to operate a botnet. Typically, Zeus has been associated with banking fraud. Recently, there have been a series of attacks using the Zeus malware that appear to be less motivated by bank fraud and more [...]
Read MoreHuman Rights and Malware Attacks
On March 18, 2010, unknown attackers sent a spear phishing email that appeared to be from Sharon Hom, the Executive Director of Human Rights in China (HRIC), to a variety of organizations and individuals. Leveraging the trust and recognition of HRIC, the attackers’ email encouraged recipients to visit a compromised website that contained malicious code designed to allow the attackers to ultimately take full control of the visitor’s computer. These targeted malware attacks are now becoming commonplace, further extending the threat faced by civil society organizations.
Read MoreShadows in the Cloud: An investigation into cyber espionage 2.0
The Information Warfare Monitor/ (Citizen Lab, Munk School of Global Affairs, University of Toronto and the SecDev Group, Ottawa) and the Shadowserver Foundation announce the release of Shadows in the Cloud: An investigation into cyber espionage 2.0. FULL REPORT. The report documents a complex ecosystem of cyber espionage that systematically targeted and compromised computer systems [...]
Read MorePalantir Night Live: Nart Villeneuve
Tuesday, March 23, 2010 from 5:30 PM – 7:30 PM (ET) | Mclean, VA
Join us for the inaugural Palantir Night Live (PNL) forum with Nart Villeneuve, Chief Security Officer for the Secdev Group, who will discuss some of his experiences as a lead technical investigator on GhostNet, the Chinese cyberspying ring that most notably hacked into the Dalai Lama’s account (read the New York Times article for more details), as well as a variety of other cyber investigations.
Attendance is limited, in order to allow for an open forum conducive to discussion.
Registration is first come, first served. Food and refreshments will be available.
Please email questions/comments to: pnl@palantirtech.com
March 23rd, 5:30-7:30pm EST
Palantir Technologies
1660 International Drive
Suite 800
McLean, VA 22102
Read about Sergey Brin’s GhostNet talk at the 2010 TED conference.
Read MoreThe “Kneber” Botnet, Spear Phishing Attacks and Crimeware
by Nart Villeneuve (Chief Research Officer, SecDev.cyber) Introduction Targeted attacks, known as “spear phishing,” are increasingly exploiting government and military themes in order to compromise defense contractors in the Unites States. [1] In 2009, the Washington Post reported that unknown attackers were able to break into a defense contractor and steal documents pertaining to the [...]
Read More