Hackers targeted dozens of computer systems at government agencies across Europe through a flaw in Adobe Systems Inc’s software, security researchers said on Wednesday, while NATO said it too had been attacked.
NATO said its systems had not been compromised, but it was sharing the details of the attack with member states and remained vigilant. Security experts say governments and organizations such as NATO are attacked on a daily basis — although the sophistication varies wildly.
These particular attacks appeared both widespread and innovative, the private computer security firms announcing the discovery said, with one expert saying he believed a nation-state might be responsible.
Russia’s Kaspersky Lab and Hungary’s Laboratory of Cryptography and System Security, or CrySyS, said the targets of the campaign included government computers in the Czech Republic, Ireland, Portugal and Romania.
They also said that a think tank, a research institute and a healthcare provider in the US, a prominent research institute in Hungary and other entities in Belgium and Ukraine were among those targeted by the malicious software, which they have dubbed “MiniDuke.”
The researchers suspect MiniDuke was designed for espionage, but were still trying to figure out the attack’s ultimate goal.
“This is a unique, fresh and very different type of attack,” said Kurt Baumgartner, a senior security researcher with Kaspersky Lab. “The technical indicators show this is a new type of threat actor that hasn’t been reported on before.”
He said he would not speculate on who the hackers might be.
The malware exploited a recently identified security flaw in Adobe’s software. Adobe said a software patch issued last week should protect users from MiniDuke providing they downloaded it.
Boldizsar Bencsath, a cybersecurity expert who runs the malware research team at CrySyS, said he had reported the incident to NATO, although it was not clear if that was what first alerted the alliance.
Bencsath said he believed that a nation-state was behind the attack because of the level of sophistication and the identity of the targets, adding that it was difficult to identify which country was involved.
Exactly how serious the attacks were was not immediately clear, nor who exactly the targets were or at what level European governments were alerted.
The Czech counterintelligence agency BIS said it was not aware of any massive hacking attacks on Czech institutions from abroad recently. The Czech National Security Bureau, responsible for government data, was not immediately available for comment. Neither were officials from other states said to be affected.
A NATO official in Brussels had earlier said the alliance was not directly hit, but he said later that he had been incorrect. He gave no further details.
MiniDuke attacked by exploiting recently discovered security bugs in Adobe’s Reader and Acrobat software, according to the researchers. The attackers sent their targets PDF documents tainted with malware, an approach that hackers have long used to infect personal computers.
UPDATED (3:40pm): A suspected gas explosion at a shopping mall in Taichung this morning has killed four people and injured 20 others, as emergency responders continue to investigate. The explosion occurred on the 12th floor of the Shin Kong Mitsukoshi in Situn District (西屯) at 11:33am. One person was declared dead at the scene, while three people were declared deceased later after receiving emergency treatment. Another 20 people sustained major or minor injuries. The Taichung Fire Bureau said it received a report of the explosion at 11:33am and sent rescuers to respond. The cause of the explosion is still under investigation, it said. The National Fire
ACCOUNTABILITY: The incident, which occured at a Shin Kong Mitsukoshi Department Store in Taichung, was allegedly caused by a gas explosion on the 12th floor Shin Kong Group (新光集團) president Richard Wu (吳昕陽) yesterday said the company would take responsibility for an apparent gas explosion that resulted in four deaths and 26 injuries at Shin Kong Mitsukoshi Zhonggang Store in Taichung yesterday. The Taichung Fire Bureau at 11:33am yesterday received a report saying that people were injured after an explosion at the department store on Section 3 of Taiwan Boulevard in Taichung’s Situn District (西屯). It sent 56 ambulances and 136 paramedics to the site, with the people injured sent to Cheng Ching Hospital’s Chung Kang Branch, Wuri Lin Shin Hospital, Taichung Veterans General Hospital or Chung
‘TAIWAN-FRIENDLY’: The last time the Web site fact sheet removed the lines on the US not supporting Taiwanese independence was during the Biden administration in 2022 The US Department of State has removed a statement on its Web site that it does not support Taiwanese independence, among changes that the Taiwanese government praised yesterday as supporting Taiwan. The Taiwan-US relations fact sheet, produced by the department’s Bureau of East Asian and Pacific Affairs, previously stated that the US opposes “any unilateral changes to the status quo from either side; we do not support Taiwan independence; and we expect cross-strait differences to be resolved by peaceful means.” In the updated version published on Thursday, the line stating that the US does not support Taiwanese independence had been removed. The updated
‘LAWFUL USE’: The last time a US warship transited the Taiwan Strait was on Oct. 20 last year, and this week’s transit is the first of US President Donald Trump’s second term Two US military vessels transited the Taiwan Strait from Sunday through early yesterday, the Ministry of National Defense said in a statement, the first such mission since US President Donald Trump took office last month. The two vessels sailed south through the Strait, the ministry said, adding that it closely monitored nearby airspace and waters at the time and observed nothing unusual. The ministry did not name the two vessels, but the US Navy identified them as the Arleigh Burke-class guided-missile destroyer USS Ralph Johnson and the Pathfinder-class survey ship USNS Bowditch. The ships carried out a north-to-south transit from