Commentary Cisco Security
The Politics Of Malware
I recently saw a provocative tweet from @mikkohypponen that reminded me malware is still quite often politically motivated.
I recently saw a provocative tweet from @mikkohypponen that reminded me malware is still quite often politically motivated.
Just got a phone call. Had to remove an image from my last blog post: http://bit.ly/c1S94U Sorry if you missed it.
Of course, I just had to click through to see what was removed and why. Mikko's post deals with the evolution of a Firefox zero-day found on the Nobel Peace Prize website in late October. This time around, attackers are exploiting interest in the Peace Prize via an Adobe Reader/Acrobat exploit (CVE-2010-2883. The exploit is contained in a PDF attachment carried by the email, which masquerades as an invite to the Nobel Prize ceremony.
More Security Insights
White Papers
- Remote Data Replication: Combat Disasters And Optimize Business Operations
- Taneja Group: Overview of Virtualization and Cloud Market Vendor Landscape for SMBs
Reports
More >>Webcasts
- Desktop and Application Virtualization Best Practices
- Banking on Results: Turn an Avalanche of Data into Actionable Insight
The removed image that Mikko referenced in his Twitter post was the red herring file displayed when a victim opened the PDF. Curiosity seekers can still see a copy of the decoy in this Contagio blog. Basically, it's a very convincing-looking invitation to "celebrate human rights and the universal message of Liu Xiaobo".
Mary Landesman is an antivirus professional and senior security researcher for ScanSafe, now part of Cisco. In 2009 she was awarded a Microsoft MVP for her work in consumer security.
Related Reading
Dark Reading Discussions
Start the Discussion
 |
To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy. |
