Cyberwarfare Campaigns against Western Energy Grids Aren't just the Stuff of Action Movies these Days -- they're Very, Very Real. Symantec has Discovered a likely State-Sponsored Hacking Group Nicknamed, 'Dragonfly', that has been Using Phishing Websites and Trojans to Compromise Energy Suppliers in the US and Several Other Countries. Unlike Targeted, Destruction-Focused Malware like Stuxnet, this Appears to be a Broader Spying Effort Bent on Collecting Information about National Infrastructure. However, it still Creates a Backdoor that Leaves Companies Vulnerable to Full-Fledged Attacks if they Don't Spot the Intrusions; it Wouldn't Take Much to Create Real Problems.
Symantec Hasn't Tracked Down those Behind 'Dragonfly' but, it has Plenty of Evidence that, they're Professionals.
Most of the Attacks Occur on Weekdays between 9 A.M. and 6 P.M. Eastern European Time and they're Primarily Hitting Western European Targets. They "Think Strategically", too. They 1st Focused on Aviation and Defense Agencies around 2011 and Switched to Power-Related Companies in Early 2013; also, the Suppliers under Attack, are Smaller and Less Secure than the Energy Providers they're Serving. If there's any Consolation, it's that, Companies Can Shut Down Individual Attacks and that, Symantec has already Let Affected Companies and Security Response Centers Know What's Happening. Let's just Hope that, the Revelations Get Firms to Tighten their Security before there's Some Major Damage.
Info Sources:
http://arstechnica.com/security/2014/06/active-malware-operation-let-attackers-sabotage-us-energy-industry
http://www.symantec.com/connect/blogs/dragonfly-western-energy-companies-under-sabotage-threat
.jpg)
0 comentários:
Enviar um comentário