[Fed-Talk] Malware targeting ActivIdentity smart cards
[Fed-Talk] Malware targeting ActivIdentity smart cards
- Subject: [Fed-Talk] Malware targeting ActivIdentity smart cards
- From: Todd Heberlein <email@hidden>
- Date: Fri, 13 Jan 2012 11:13:34 -0800
| While this still seems to be primarily a Windows threat, since smart cards are such a common topic on this thread I thought I'd post this story.
Chinese hackers targeting smart cards to grab U.S. defense data
The hackers appear intent on stealing data from the Department of Defense and other related agencies. The malware is capable of capturing the PIN numbers used by government smart cards, thereby allowing access to supposedly secure information.
"Like we have shown with previous Sykipot attacks, the attackers use a spear phishing campaign to get their targets to open a PDF attachment which then deposits the Sykipot malware onto their machine," according to AlienVault. "Then, unlike previous strains, the malware uses a keylogger to steal PINs for the cards. When a card is inserted into the reader, the malware then acts as the authenticated user and can access sensitive information. The malware is controlled by the attackers from the command & control center."
With ActivIdentity as the target, the attacks are clearly aimed at U.S. defense departments, the Times added. But it's as yet unknown what information the hackers have so far been able to capture.
Todd
|
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden