About Me

I ramble about a number of things - but travel experiences, movies and music feature prominently. See my label cloud for a better idea. All comnments and opinions on this blog are my own, and do not in any way reflect the opinions/position of my employer (past/current/future).

30 October 2011

It wasn't only RSA

Back in March, RSA Security, disclosed that it had been the target of a spear phishing attack, that led to the compromise of one of its crown jewels - the RSA SecureID token system. The attack was brilliant in its execution - a phishing email that was simple but did not look like a 419 Scam, usage of a zero day flaw in Adobe Flash, and a multi-level attack that slowly, but carefully infiltrated the organisation. The techniques themselves, as discussed here, are not that advanced - but it was certainly well thought out and put together.

In a recent blog post, the author discloses a number of other organisations that have also been attacked by the same set of attackers. The blog post is scant on details on the mechanisms deployed or even where the data comes from; but it does make interesting reading.

No comments: