Internet security researchers warned on Tuesday that foreign policy and human rights Web sites are being booby-trapped by hackers in what appears to be cyberespionage.
As of Monday Web sites for Amnesty International Hong Kong, the Cambodian Ministry of Foreign Affairs and the US Center for Defense Information (CDI) remained rigged to slip “hostile” code onto visitors’ computers, according to the Shadowserver Foundation, which is devoted to tracking and reporting Internet threats.
“These attackers are not spreading malware through strategically compromised Web sites to make friends,” Shadowserver researchers Steven Adair and Ned Moran warned in a blog post. “They are aiming to expand their access and steal data.”
Data typically sought included messages, intellectual property, research, and business intelligence such as contracts and negotiations, according to security specialists.
“The CDI Web site is currently serving up a malicious Flash exploit that ties back to attackers known to engage in cyberespionage,” the researchers said. “This threat group appears to be interested in targets with a tie to foreign policy and defense activities.”
In recent weeks, Shadowserver has seen an array of “strategic Web compromises” taking advantage of flaws in Oracle Java and Adobe Flash programs.
The tactic is referred to as a “drive-by” attack by computer security specialists because people’s computers are secretly infected simply by visiting a reputable Web site unaware that it has been booby-trapped by hackers.
A Web site for the International Institute of Counter-Terrorism at the Interdisciplinary Center in Herzliya, Israel, was listed among those compromised by hackers.
Shadowserver said that it began looking into the hacks after researchers at Websense reported last week that the main page of Amnesty International United Kingdom had been rigged with drive-by malware.
There are indications that a Web site for the American Research Center in Egypt was briefly compromised last week in a manner similar to the CDI page hack, according to Shadowserver.
Earlier this month the Center for European Policy Studies Web site at ceps.eu was similarly compromised, according to the volunteer-based Internet security group.
Shadowserver referred to the hacks as “advance persistent threats,” a term used in the industry to refer to cyberespionage by groups such as governments.
“Many of these attackers are quite skilled at moving laterally within an organization and will take advantage of any entry point they have into a network,” the researchers said. “Cyberespionage attacks are not a fabricated issue and are not going away any time soon.”
MONEY MATTERS: Xi was to highlight projects such as a new high-speed railway between Belgrade and Budapest, as Serbia is entirely open to Chinese trade and investment Serbian President Aleksandar Vucic yesterday said that “Taiwan is China” as he made a speech welcoming Chinese President Xi Jinping (習近平) to Belgrade, state broadcaster Radio Television of Serbia (RTS) said. “We have a clear and simple position regarding Chinese territorial integrity,” he told a crowd outside the government offices while Xi applauded him. “Yes, Taiwan is China.” Xi landed in Belgrade on Tuesday night on the second leg of his European tour, and was greeted by Vucic and most government ministers. Xi had just completed a two-day trip to France, where he held talks with French President Emmanuel Macron as the
With the midday sun blazing, an experimental orange and white F-16 fighter jet launched with a familiar roar that is a hallmark of US airpower, but the aerial combat that followed was unlike any other: This F-16 was controlled by artificial intelligence (AI), not a human pilot, and riding in the front seat was US Secretary of the Air Force Frank Kendall. AI marks one of the biggest advances in military aviation since the introduction of stealth in the early 1990s, and the US Air Force has aggressively leaned in. Even though the technology is not fully developed, the service is planning
INTERNATIONAL PROBE: Australian and US authorities were helping coordinate the investigation of the case, which follows the 2015 murder of Australian surfers in Mexico Three bodies were found in Mexico’s Baja California state, the FBI said on Friday, days after two Australians and an American went missing during a surfing trip in an area hit by cartel violence. Authorities used a pulley system to hoist what appeared to be lifeless bodies covered in mud from a shaft on a cliff high above the Pacific. “We confirm there were three individuals found deceased in Santo Tomas, Baja California,” a statement from the FBI’s office in San Diego, California, said without providing the identities of the victims. Australian brothers Jake and Callum Robinson and their American friend Jack Carter
CUSTOMS DUTIES: France’s cognac industry was closely watching the talks, fearing that an anti-dumping investigation opened by China is retaliation for trade tensions French President Emmanuel Macron yesterday hosted Chinese President Xi Jinping (習近平) at one of his beloved childhood haunts in the Pyrenees, seeking to press a message to Beijing not to support Russia’s war against Ukraine and to accept fairer trade. The first day of Xi’s state visit to France, his first to Europe since 2019, saw respectful, but sometimes robust exchanges between the two men during a succession of talks on Monday. Macron, joined initially by EU Commission President Ursula von der Leyen, urged Xi not to allow the export of any technology that could be used by Russia in its invasion