Jednego nie rozumiem. Dlaczego jeśli jakiś malware jest dobrze napisany, to zawsze wskazuje jakieś państwo jako winnego?
"The sophisticated nature of the key logger as well as the attack on the RSA keys indicates that DarkHotel is likely a nation-state campaign—or at least a nation-state supported campaign. If true, this would make the attack against the U.S. defense industry awkward, to say the least."
Czyż nie ma innych aktorów/organizacji, którzy dysponują odpowiednimi środkami?
m.
Good morning all,
On the chance that you haven't seen mention of this yet, I thought it would be good for the list to know.
Yesterday Kaspersky released a paper covering the use of hotel WIFI in Asia for the purpose of compromising specific guests.
What's interesting is, post compromise, they wait several months before doing anything further on the computer.
Take aways:
- don't update software on untrusted networks.
- use VPN / Tor where possible
- Use a dedicated travel laptop that gets nuked on return
Paper here: http://securelist.com/files/2014/11/darkhotel_kl_07.11.pdf
TL;DL's here:
http://www.businessinsider.com/r-execs-in-asian-luxury-hotels-fall-prey-to-c...
General mailing list General@lists.hackerspace.pl https://lists.hackerspace.pl/mailman/listinfo/general