All the latest UK technology news, reviews and analysis


RSA attackers hit over 700 other firms

24 Oct 2011

hacker1

Over 760 organisations are likely to have had their networks compromised by the same attackers who launched an advanced persistent threat to infiltrate the IT systems of RSA Security.

The revelations were made by security expert Brian Krebs in a blog post on Monday, and blow a hole in the wall of silence that followed the attacks.

Krebs listed over 760 organisations which "had networks that were compromised with some of the same resources" that hit RSA, including big tech firms Google, Novell, Qualcomm and Facebook.

He explained that the networks of the organisations on the list had "phoned home" to some of the same command and control infrastructure used in the RSA attack in March, which was initially believed to have been carried out in order to compromise the SecureID system and thus infiltrate US defence contractors.

The attacks may have been occurring as early as November 2010, said Krebs, although he did add that some of the firms on the list were probably not original targets, for example, ISPs.

"It is not clear how many systems in each of these companies or networks were compromised, for how long those intrusions persisted, or whether the attackers successfully stole sensitive information from all of the victims," Krebs said.

"Finally, some of these organisations (there are several anti-virus firms mentioned) may be represented because they intentionally compromised internal systems in an effort to reverse engineer malware used in these attacks."

Nevertheless, it's a fascinating snapshot into the scale of the attack and it may be telling that the vast majority of command and control networks used were located in the Beijing region.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Phil Muncaster
About

Phil Muncaster is news editor at V3.co.uk, a role he has fulfilled since January 2010. Previously he was chief reporter for IT Week, having also worked as a reporter and senior reporter on the publication from 2005.

Before IT Week, Phil worked as a researcher for the Rough Guide. Prior to his work in journalism, Phil spent three years teaching English in Japan.

 

 

More on Security
What do you think?
blog comments powered by Disqus
Poll

BYOD vs CYOD vs BYOC poll

Which approach is your firm taking to managing employees' mobile devices?
20%
14%
5%
20%
30%
11%

Popular Threads

Powered by Disqus
Google Android logo

How to take a screenshot on Android

A step by step guide to how to screen-grab on a Google-powered smartphone

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv33

Data protection: the key challenges

Deduplication is a foundational technology for efficient backup and recovery

rdc2

iPad makes its mark in the enterprise

The iPad can become a supercharged unified communications endpoint, allowing users to enhance their productivity

Data Modeller

Data Modeller required for a client investing in the...

1st/2nd Line Support Analyst - Service Desk Analyst - CONTRACT

Service Desk Analyst - 1st Line Support - 2nd Line Support...

Software Development Engineer

Develop: Customise: Configure. Maximise your technical...

Senior / Lead ASP.NET Developer

Senior / Lead ASP.NET Developer Retox Digital is...
To send to more than one email address, simply separate each address with a comma.