computerwoche.de

Archiv

Black Hat: Cyber-espionage operations vast yet highly focused, researcher claims

25.07.2012
LAS VEGAS -- Cyber-espionage operations across the Internet are extensive yet highly targeted, says a malware researcher speaking this week at the Black Hat Conference in Las Vegas. And it's not just governments targeting other governments or trying to steal corporate secrets -- private companies also are involved in these break-ins even while claiming to offer "ethical hacking services."

BLACK HAT DEMO:

SLIDESHOW:

In today's cyber-espionage, "there are hundreds of tiny little botnets," says Joe Stewart, research director at Dell SecureWorks. These command-and-control systems do one thing -- compromise targeted networks of business and government in order to learn about important information worth stealing, and then swipe it.

Unlike other types of cybercrime botnets, such as those used to perform financial theft or generate spam via many compromised machines, cyber-espionage botnets seem to be aimed only to hit certain valued targets -- such as the Japanese Ministry of Finance, which recently .

There is widespread targeting of Japan, notes Stewart in his paper released Wednesday titled "Chasing APT, " which pinpoints 200 unique families of custom malware used in cyber-espionage campaigns that many refer to as "advanced persistent threats." In fact, says Stewart, the code called "HTran" that Dell SecureWorks believes was last year is still in use, and has been linked to attacks against entities in Japan.