Five years of hacking attacks uncovered
Source: Agencies |
August 4, 2011, Thursday
|
Print Edition
Print Edition
SECURITY experts have discovered the biggest series of cyber attacks to date, involving the infiltration of the networks of 72 organizations, including the United Nations, governments and companies around the world.
Security company McAfee uncovered the intrusions.
The long list of victims in the five-year campaign include the governments of the US, India, South Korea, Vietnam and Canada, the Association of Southeast Asian Nations, the International Olympic Committee, the World Anti-Doping Agency, and an array of companies, from defense contractors to high-tech enterprises.
In the case of the UN, hackers broke into the computer system of its secretariat in Geneva in 2008, hid there for nearly two years, and quietly combed through reams of secret data, according to McAfee.
McAfee's vice-president of threat research, Dmitri Alperovitch, wrote in a 14-page report released yesterday: "Even we were surprised by the enormous diversity of the victim organizations and were taken aback by the audacity of the perpetrators.
"What is happening to all this data … is still largely an open question. However, if even a fraction of it is used to build better competing products or beat a competitor at a key negotiation (due to having stolen the other team's playbook), the loss represents a massive economic threat."
McAfee learned of the extent of the hacking campaign in March this year, when its researchers discovered logs of the attacks while reviewing the contents of a "command and control" server they had discovered in 2009 as part of an investigation into security breaches at defense companies.
It dubbed the attacks "Operation Shady Rat" and said the earliest breaches date back to mid-2006, though there might have been others. Rat stands for "remote access tool," a type of software that hackers and security experts use to access computer networks remotely.
Some of the attacks lasted just a month, but the longest - on the Olympic Committee of an unidentified Asian nation - went on and off for 28 months, according to McAfee.
Alperovitch said: "Companies and government agencies are getting raped and pillaged every day. They are losing economic advantage and national secrets to unscrupulous competitors. This is the biggest transfer of wealth in terms of intellectual property in history. The scale … is really, really frightening."
Alperovitch said McAfee had notified all victims and the attacks are under investigation by law enforcement agencies around the world.
Security company McAfee uncovered the intrusions.
The long list of victims in the five-year campaign include the governments of the US, India, South Korea, Vietnam and Canada, the Association of Southeast Asian Nations, the International Olympic Committee, the World Anti-Doping Agency, and an array of companies, from defense contractors to high-tech enterprises.
In the case of the UN, hackers broke into the computer system of its secretariat in Geneva in 2008, hid there for nearly two years, and quietly combed through reams of secret data, according to McAfee.
McAfee's vice-president of threat research, Dmitri Alperovitch, wrote in a 14-page report released yesterday: "Even we were surprised by the enormous diversity of the victim organizations and were taken aback by the audacity of the perpetrators.
"What is happening to all this data … is still largely an open question. However, if even a fraction of it is used to build better competing products or beat a competitor at a key negotiation (due to having stolen the other team's playbook), the loss represents a massive economic threat."
McAfee learned of the extent of the hacking campaign in March this year, when its researchers discovered logs of the attacks while reviewing the contents of a "command and control" server they had discovered in 2009 as part of an investigation into security breaches at defense companies.
It dubbed the attacks "Operation Shady Rat" and said the earliest breaches date back to mid-2006, though there might have been others. Rat stands for "remote access tool," a type of software that hackers and security experts use to access computer networks remotely.
Some of the attacks lasted just a month, but the longest - on the Olympic Committee of an unidentified Asian nation - went on and off for 28 months, according to McAfee.
Alperovitch said: "Companies and government agencies are getting raped and pillaged every day. They are losing economic advantage and national secrets to unscrupulous competitors. This is the biggest transfer of wealth in terms of intellectual property in history. The scale … is really, really frightening."
Alperovitch said McAfee had notified all victims and the attacks are under investigation by law enforcement agencies around the world.
- About Us
- |
- Terms of Use
- |
-
RSS - |
- Privacy Policy
- |
- Contact Us
- |
- Shanghai Call Center: 962288
- |
- Tip-off hotline: 52920043
- 沪ICP证:沪ICP备05050403号-1
- |
- 互联网新闻信息服务许可证:31120180004
- |
- 网络视听许可证:0909346
- |
- 广播电视节目制作许可证:沪字第354号
- |
- 增值电信业务经营许可证:沪B2-20120012
Copyright © 1999- Shanghai Daily. All rights reserved.Preferably viewed with Internet Explorer 8 or newer browsers.
