The targeted attack campaign dubbed Red October raises an interesting question for people working on the frontline of corporate security. How to defend one’s own organization against such attacks? And the good news is that at least for campaigns such as Red October, the information has been available for a long time already. From a […]
Since the publication of our report, our colleagues from Seculert have discovered and posted a blog about the usage of another delivery vector in the Red October attacks. In addition to Office documents (CVE-2009-3129, CVE-2010-3333, CVE-2012-0158), it appears that the attackers also infiltrated victim network(s) via Java exploitation (MD5: 35f1572eb7759cb7a66ca459c093e8a1 – ‘NewsFinder.jar’), known as the […]
By now, you’ve probably read the news about “Red October” and you’re wondering how worried you should be? Red October is the latest AV industry case study of digital espionage. (Kaspersky Lab’s post here.) From a technical point of view Red October looks very much like any other targeted corporate espionage attack. The attackers use […]
Latest Comments