Researcher follows RSA hacking trail to China

Researcher follows RSA hacking trail to China

www.computerworld.com

Malware used in the attack against RSA Security earlier this year was controlled from China, a well-known botnet researcher said Wednesday.

Joe Stewart, director of malware research for Dell SecureWorks, traced the command-and-control (C&C) servers used to oversee the RSA attack to networks in Beijing and Shanghai.

(visit the link for the full news article)



Related AboveTopSecret.com Discussion Threads:
Hacker Spies Hit Security Firm RSA
RSA finally comes clean: SecurID is compromise

As was postulated by ATS members months ago, China appears to be the source (at least the "where" if not the "who") of the command and control network for the RSA hacking incident.

RSA claims it had to spend $68 million to replace SecurID tokens for its customers. (which apparently WERE compromised despite the alleged powerful security algorithm of which they boast.)

What was the real security flaw?

The attackers gained access to RSA's network by convincing a small number of the company's employees to open malware-infected Excel spreadsheets. The spreadsheets included an exploit for a then-unpatched vulnerability in Adobe's Flash Player.

Consider that RSA is a 'friend' and 'valued provider of services' for the secure cloud the government, the military industrial complex, and megacorporations world-wide and we can see that this story was under reported.... I wonder why?


www.computerworld.com
(visit the link for the full news article)

Wow, I remember when this happened and all the WOW addicts were scared they would be affected. Apparently WOW uses a different company.