Back in March, RSA Security, disclosed that it had been the target of a spear phishing attack, that led to the compromise of one of its crown jewels - the RSA SecureID token system. The attack was brilliant in its execution - a phishing email that was simple but did not look like a 419 Scam, usage of a zero day flaw in Adobe Flash, and a multi-level attack that slowly, but carefully infiltrated the organisation. The techniques themselves, as discussed here, are not that advanced - but it was certainly well thought out and put together.
In a recent blog post, the author discloses a number of other organisations that have also been attacked by the same set of attackers. The blog post is scant on details on the mechanisms deployed or even where the data comes from; but it does make interesting reading.
No comments:
Post a Comment