Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

American Consulate to Russia compromised in attack by hackers

Sophos : 13 September, 2007  (Technical Article)
Hack attack on American Consulate part of larger campaign to compromise vulnerable servers, mainly in Russia
IT security and control firm Sophos has reported on its blog that webpages of the US Consulate General in St.Petersburg, Russia, were compromised by hackers earlier this week. The infected pages have since been cleaned up.

The attack was part of a larger campaign by cybercriminals in which vulnerable web servers were targeted. This resulted in more than 400 webpages around the world being infected over the last week. The majority of the compromised pages were hosted in Russia.

'This latest attack highlights the fact that no organisation is immune from infection, and that no matter what the size of the company, it must defend its webpages fully to avoid being stung,' said Fraser Howard, principal virus researcher at Sophos. 'The hackers have reeled in a big fish on this occasion and will no doubt be very pleased with their catch of the day. Unfortunately, while high profile sites such as the US Consulate can be cleaned up quickly, we are seeing a dangerous number of companies that are failing to act responsibly to retain the sanctity of their sites.'

By retrieving a copy of one of the infected Consulate pages from an internet cache, Sophos experts were able to identify that the cybercriminals had planted malicious code known as Mal/ObfJS-C, that then attempted to load further malware from a remote server. This malware includes an additional malicious script that attempts to exploit several browser vulnerabilities in order to install a Trojan horse that could be used to steal business critical data and personal details.

Sophos advises companies to deploy good generic detection technology to thwart web attacks of this kind. Sophos further recommends companies protect themselves with a consolidated solution which can control network access and defend against the threats of spam, hackers, spyware and viruses.
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo