All the latest UK technology news, reviews and analysis


Operation Aurora hackers still at large

08 Sep 2012
Security threats - password theft

The hackers responsible for 2010's infamous "Operation Aurora" attack are still using a sophisticated arsenal of security flaws and infiltration techniques to steal corporate information, say experts.

Security researchers with Symantec have issued a report outlining the techniques used by the so-called "Edgewood" hacking platform and the group behind it. The company said that the group is well-funded and armed with more than a half-dozen unpublished security vulnerabilities.

"Although there are other attackers utilising zero-day exploits, we have seen no other group use so many," Symantec researchers Gavin O'Gorman and Geoff McDonald said in the report.

"The number of zero-day exploits used indicates access to a high level of technical capability."

The researchers said that the group appears to favour "watering hole" attacks techniques in which the attacker profiles a targeted group and places attack code into sites which the targets are likely to visit.

Additionally, the group is believed to use spear-phishing techniques to infect the systems of targeted individuals and organisations.

Overall, the group appears to be targeting companies in the defence and aeronautics sector, though researchers noted that targets have ranged from weapons manufacturers to software vendors and even non-government organisations.

Though incidents were noted in the UK, British firms are not believed to be a significant target for the attackers.

According to the report, the US is the most popular target for the attacks, with American firms accounting for 72 per cent of incidents. Canada, China, Hong Kong and Australia were also popular targets.

While Symantec did not indicate where the group behind the attacks was based, past reports have suggested that the hackers are part of a state-sponsored operation based in mainland China.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Green IT poll

How important is it to your business that a cloud provider uses renewable energy like solar or wind to power their data centres?
21%
6%
3%
2%
68%

Popular Threads

Powered by Disqus
Galaxy S5 vs Nexus 5 head to head review front

Galaxy S5 vs Nexus 5 video review

We compare Samsung and Google's top devices

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

FICO Business Analyst

SAP FICO Business Analyst required for a large international...

Client-Side web developer (JQuery, Javascript, UI, JMX, FIX)

Client-Side web developer (JQuery, Javascript, UI, JMX...

Assistant IT Director

Assistant IT Director Annual Salary: Up to £74,954...

Head of IT Projects

Head of IT Projects Annual Salary: Up to £48,153...
To send to more than one email address, simply separate each address with a comma.