All the latest UK technology news, reviews and analysis

Operation Aurora hackers still at large

08 Sep 2012
Security threats - password theft

The hackers responsible for 2010's infamous "Operation Aurora" attack are still using a sophisticated arsenal of security flaws and infiltration techniques to steal corporate information, say experts.

Security researchers with Symantec have issued a report outlining the techniques used by the so-called "Edgewood" hacking platform and the group behind it. The company said that the group is well-funded and armed with more than a half-dozen unpublished security vulnerabilities.

"Although there are other attackers utilising zero-day exploits, we have seen no other group use so many," Symantec researchers Gavin O'Gorman and Geoff McDonald said in the report.

"The number of zero-day exploits used indicates access to a high level of technical capability."

The researchers said that the group appears to favour "watering hole" attacks techniques in which the attacker profiles a targeted group and places attack code into sites which the targets are likely to visit.

Additionally, the group is believed to use spear-phishing techniques to infect the systems of targeted individuals and organisations.

Overall, the group appears to be targeting companies in the defence and aeronautics sector, though researchers noted that targets have ranged from weapons manufacturers to software vendors and even non-government organisations.

Though incidents were noted in the UK, British firms are not believed to be a significant target for the attackers.

According to the report, the US is the most popular target for the attacks, with American firms accounting for 72 per cent of incidents. Canada, China, Hong Kong and Australia were also popular targets.

While Symantec did not indicate where the group behind the attacks was based, past reports have suggested that the hackers are part of a state-sponsored operation based in mainland China.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols

Shaun Nichols is the US correspondent for He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus

IT curriculum poll

With coding now compulsory in schools, how important are digital skills for the next generation of school leavers?

Popular Threads

Powered by Disqus
Xperia Z2 vs Galaxy Note 3 video review.jpg

Xperia Z2 vs Galaxy Note 3 video review

We pit Sony's 2014 flagship against Samsung's ruling phablet

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Web Apps Developer - Fareham - £30k - £35k

Web Application Developer Solent Business Park, Whiteley...

SSIS Developer

My client based in London are looking for an SSIS ETL...

SAP Multi Resourcing Scheduling

<tbody> SAP Multi Resource Scheduling (MRS...

PHP Magento Developer

PHP Developer (Leading Multichannel Retailer) Based...
To send to more than one email address, simply separate each address with a comma.