-
-
[转帖]黑客使用中国的恶意软件攻击澳洲储备银行
-
发表于: 2013-3-13 10:43
-
据《澳大利亚金融评论报》周一的报告指出,澳洲储备银行(RBA)被黑客攻击,黑客用来渗透其网络和窃取信息的软件可能来自中国。
经调查后,几位RBA工作人员,包括部门负责人,他们发现多台计算机被攻击者使用恶意软件进行情报收集。他们在两天内接收了多封恶意电子邮件,他们不知道,如果执行了其中的恶意软件,会让攻击者从被感染从计算机上获取信息。
恶意软件由一个网址链接到一个zip文件,其中包含了木马,而这些恶意信息,当时的银行反病毒程序都未能检测到。
澳大利亚国防部发言人说:“政府不会讨论具体的网络攻击事件或对其进行任何假设。因为这样做可能会妨碍正在进行中的调查。”
文件还表明:有6个用户所点击的连接都包含在邮箱里,所有受影响的六台主机都不具有本地管理员权限,因此使得病毒无法传播。
外文地址:http://www.ibtimes.com/reserve-bank-australia-confirms-it-was-hacked-suspicion-falls-china-1117904
Reserve Bank Of Australia Confirms It Was Hacked; Suspicion Falls On China
The Reserve Bank of Australia (RBA) revealed Monday that its computer networks were hacked but no data was lost or compromised, while media reports claimed some of the machines were infected by malware developed in China.
The central bank said that none of the systems were compromised in the November 2011 cyber attack and no information was leaked as elaborate security arrangements checked the spread of viruses.
"As reported in today's media, the Bank has on occasion been the target of cyber attacks," the RBA said in a statement on its website.
"The Bank has comprehensive security arrangements in place, which have isolated these attacks and ensured that viruses have not been spread across the Bank's network or systems. At no point have these attacks caused the Bank's data or information to be lost or its systems to be corrupted."
Documents released under the freedom of information provision showed a malicious email attack occurred Nov. 16-17, 2011, on multiple computers in the RBA network. All the systems were identified and removed from the network subsequently.
The Australian Financial Review reported Monday that multiple computers of the central bank was infected by malware seeking intelligence information and one of the viruses was a Chinese developed spy software searching for information on sensitive G20 negotiations.
A Reserve Bank official confirmed the G20 virus to Agence France Presse (AFP) and said it was confined to only "a few" computers. The official did not say what information was stolen or who was targeted, and would not confirm the Chinese connection, the AFP reported.
However, the bank’s statement Monday was silent on the media report that said the infected malware was Chinese-developed but said it takes the threat seriously.
RBA, in the wake of the cyber attack, has initiated several steps to update its defenses against malicious infection with scanning and auto-blocking of hyperlinks in emails.
The malicious software was embedded in a hyperlink of an email sent from a "possibly legitimate" external account purported to belong to a senior bank official. The email with subject line “Strategic Planning FY2012″ was sent to several RBA staffers and had legitimate email signature. Six people opened the email containing virus compromising their work stations, Reuters reported.
The cyber attacks against banks and other prominent financial institutions have become common and China has been blamed frequently for the attacks.
However, China has refuted the allegations and has been blaming the U.S. for the cyber attacks. China had termed the U.S. as the largest source of hacker attacks targeted against it.
In February, the Chinese Ministry of National Defense said majority of the Chinese government websites including the Department of Defense were targeted by hackers about 144,000 times in a month and two-thirds originated from the United States, Reuters has reported citing the China’s official Xinhua News Agency.
来源:http://www.freebuf.com/news/7657.html
经调查后,几位RBA工作人员,包括部门负责人,他们发现多台计算机被攻击者使用恶意软件进行情报收集。他们在两天内接收了多封恶意电子邮件,他们不知道,如果执行了其中的恶意软件,会让攻击者从被感染从计算机上获取信息。
恶意软件由一个网址链接到一个zip文件,其中包含了木马,而这些恶意信息,当时的银行反病毒程序都未能检测到。
澳大利亚国防部发言人说:“政府不会讨论具体的网络攻击事件或对其进行任何假设。因为这样做可能会妨碍正在进行中的调查。”
文件还表明:有6个用户所点击的连接都包含在邮箱里,所有受影响的六台主机都不具有本地管理员权限,因此使得病毒无法传播。
外文地址:http://www.ibtimes.com/reserve-bank-australia-confirms-it-was-hacked-suspicion-falls-china-1117904
Reserve Bank Of Australia Confirms It Was Hacked; Suspicion Falls On China
The Reserve Bank of Australia (RBA) revealed Monday that its computer networks were hacked but no data was lost or compromised, while media reports claimed some of the machines were infected by malware developed in China.
The central bank said that none of the systems were compromised in the November 2011 cyber attack and no information was leaked as elaborate security arrangements checked the spread of viruses.
"As reported in today's media, the Bank has on occasion been the target of cyber attacks," the RBA said in a statement on its website.
"The Bank has comprehensive security arrangements in place, which have isolated these attacks and ensured that viruses have not been spread across the Bank's network or systems. At no point have these attacks caused the Bank's data or information to be lost or its systems to be corrupted."
Documents released under the freedom of information provision showed a malicious email attack occurred Nov. 16-17, 2011, on multiple computers in the RBA network. All the systems were identified and removed from the network subsequently.
The Australian Financial Review reported Monday that multiple computers of the central bank was infected by malware seeking intelligence information and one of the viruses was a Chinese developed spy software searching for information on sensitive G20 negotiations.
A Reserve Bank official confirmed the G20 virus to Agence France Presse (AFP) and said it was confined to only "a few" computers. The official did not say what information was stolen or who was targeted, and would not confirm the Chinese connection, the AFP reported.
However, the bank’s statement Monday was silent on the media report that said the infected malware was Chinese-developed but said it takes the threat seriously.
RBA, in the wake of the cyber attack, has initiated several steps to update its defenses against malicious infection with scanning and auto-blocking of hyperlinks in emails.
The malicious software was embedded in a hyperlink of an email sent from a "possibly legitimate" external account purported to belong to a senior bank official. The email with subject line “Strategic Planning FY2012″ was sent to several RBA staffers and had legitimate email signature. Six people opened the email containing virus compromising their work stations, Reuters reported.
The cyber attacks against banks and other prominent financial institutions have become common and China has been blamed frequently for the attacks.
However, China has refuted the allegations and has been blaming the U.S. for the cyber attacks. China had termed the U.S. as the largest source of hacker attacks targeted against it.
In February, the Chinese Ministry of National Defense said majority of the Chinese government websites including the Department of Defense were targeted by hackers about 144,000 times in a month and two-thirds originated from the United States, Reuters has reported citing the China’s official Xinhua News Agency.
来源:http://www.freebuf.com/news/7657.html
[注意]传递专业知识、拓宽行业人脉——看雪讲师团队等你加入!
|
|
|---|---|
