cyberattacks

Homeland Security chief: Banks 'under attack' by hackers

U.S. Homeland Security Secretary Janet Napolitano said today that hackers are "actively" attacking some of the country's largest financial institutions.

According to a report in The Hill, America's top security official issued the warning at a Washington Post event today, but didn't specify the nature of the attacks.

"Right now, financial institutions are actively under attack," The Hill quoted Napolitano as saying. "We know that. I'm not giving you any classified information... I will say this has involved some of our nation's largest institutions. We've also had our … Read more

Kaspersky builds its own antimalware OS -- but not for you

The folks at Kaspersky Lab are aiming to create their own secure operating system, but this one would run on industrial systems rather than your average home PC.

In blog posted today, company CEO Eugene Kaspersky confirmed the rumors of a new OS, describing the background behind the effort and hinting at the development process.

Cyberattacks present a growing and challenging problem for industries maintaining systems that must be powered on all the time. If a virus affects a computer at most companies, that computer can be unplugged from the network so as not to infect other devices, Kaspersky said. … Read more

Newly IDed 'MiniFlame' malware targets individuals for attack

A new form of state-sponsored malware is making the rounds, this one apparently designed specifically to spy on its victims.

Dubbed "MiniFlame" by Kapersky Lab, but also known as SPE, the new malware variant is similar to the Flame virus that targeted computers in the Middle East this past summer. But MiniFlame is a cyber espionage program that can take over where Flame leaves off.

As described by Kaspersky:

First, Flame or Gauss are used to infect as many victims as possible to collect large quantities of information. After data is collected and reviewed, a potentially interesting victim … Read more

Pre-emptive cyberattack defense possible, Panetta warns

The U.S. military has the ability to act pre-emptively when it detects an imminent cyberattack threat, Defense Secretary Leon Panetta said today.

During his first major policy speech on cybersecurity, Panetta echoed previous statements that the United States was facing the possibility of a "cyber-Pearl Harbor" perpetrated by foreign hackers, painting a grim portrait of the destructive power wielded by unnamed agents.

"A cyber attack perpetrated by nation states or violent extremist groups could be as destructive as the terrorist attack of 9/11," he said in prepared remarks during a speech at the Intrepid … Read more

Middle East cyberattacks on Google users increasing

Here we go again.

Three months after it first began warning users of state-sponsored cyber attacks, Google is saying that the assault has only intensified.

The New York Times reports that since it began warning users of state-sponsored attacks, "it has picked up thousands more instances of cyberattacks than it anticipated." Many of the attacks appear to be originating in the Middle East.

Starting on Tuesday, the company began inserting a message at the top of affected users' Gmail inboxes: "Warning: We believe state-sponsored attackers may be attempting to compromise your account or computer.

The attacks affect … Read more

Wells Fargo is latest bank to be hit by cyberattacks

Wells Fargo is the most recent mega-bank to be hit by a distributed denial-of-service attack. According to the Wall Street Journal, roughly 220 customers filed complaints of outages on its Web site today saying they had problems logging on.

"The amount of bandwidth that is flooding the websites is very large, much larger than in other attacks, and in a sense unprecedented," chief executive of private security firm CrowdStrike Dmitri Alperovitch told the Wall Street Journal.

Last week, similar attacks happened on J.P. Morgan Chase and Bank of America's Web sites. Users would try to log-on … Read more

Senator urges Obama to issue 'cybersecurity' executive order

Senate Homeland Security Committee Chairman Joe Lieberman sent a letter to President Obama today urging him to use his executive power and publish "advisory" guidelines on a cybersecurity order.

"Countless national security leaders from your Administration and the previous Administration have made clear that the threat from cyber attack is similar to the threat we faced from terrorism on September 10, 2001 -- the danger is real and imminent, yet we have not acted to defend against it," Lieberman wrote. "We know our adversaries are already stealing valuable intellectual property and exploiting our critical infrastructure … Read more

DHS warns Siemens 'flaw' could allow power plant hack

The U.S. Department of Homeland Security has issued an alert warning that hackers could exploit code in Siemens-owned technology to attack power plants and other national critical infrastructure.

Security researcher Justin Clarke exposed the flaw at a Los Angeles conference last week, claiming he discovered a way of spying on encrypted traffic in hardware owned by a Siemens subsidiary, RuggedCom.

The DHS advisory noted: "An attacker may use the key to create malicious communication to a RuggedCom network device."

DHS added that the government department was in contact with RuggedCom and the researcher in order to … Read more

WikiLeaks endures a lengthy DDoS attack

It's unclear who or what is after WikiLeaks, but the document-leaking organization claims someone is.

According to its Twitter feed, the organization has sustained a several-day Distributed Denial of Service (DDoS) attack that has left its Web site effectually inoperable.

"The attack is well over 10Gbits/second sustained on the main WikiLeaks domains," read one of several tweets the organization posted on Friday. "The bandwidth used is so huge it is impossible to filter without specialized hardware, however... the DDoS is not simple bulk UDP or ICMP packet flooding, so most hardware filters won't work … Read more