Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

6/24/2014
11:05 AM
Sara Peters
Sara Peters
Commentary
Connect Directly
Twitter
RSS
E-Mail vvv
50%
50%

Dark Reading Radio: RAT Exterminators

Join us Wednesday, June 25, at 1:00 p.m. ET for a conversation with Adam Meyers, director of intelligence for CrowdStrike.

The US Department of Justice on June 2 announced Operation Tovar, a global collaborative effort to disrupt the GameoverZeuS botnet -- responsible for hundreds of millions of dollars in bank theft and fraud. Perhaps more importantly, the operation took aim at the very underpinnings of the cybercrime industry -- the infrastructure criminals use to communicate and manage their ill-gotten gains.

Operation Tovar's plan of attack: Redirect the traffic from the bots so they can't report back to C&C servers, obtain the IP addresses of the infected machines, and share those addresses to help national CERTs and private industry assist victims in removing the GOZeuS malware from their computers.

Authorities said they could disrupt GOZeuS for about two weeks... and that time has now passed.

So... how's it going? In tomorrow's episode of Dark Reading Radio, find out how successful Operation Tovar has been thus far, how cyber criminals have responded, and what happens next.

Join us Wednesday, June 25, at 1:00 p.m. ET for a conversation with Adam Meyers, director of intelligence for CrowdStrike, one of the security companies that played a key part of Operation Tovar. Register now.

Have any questions for Adam you want me to ask? Let me know in the comments below or bring them along with you to the live chat during the radio show, when you can ask him yourself.

Sara Peters is Senior Editor at Dark Reading and formerly the editor-in-chief of Enterprise Efficiency. Prior that she was senior editor for the Computer Security Institute, writing and speaking about virtualization, identity management, cybersecurity law, and a myriad ... View Full Bio
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
6/27/2014 | 6:14:21 PM
Re: Fascinating topic
Thanks! I will be sure to give this a listen later.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
6/27/2014 | 7:52:52 AM
Re: Fascinating topic
Sorry you missed the show, Ryan. But you can revisit any of our Dark Reading radio broadcasts in our show archives and here's the link to the broadcast with Adam Meyers, director of intelligence for CrowdStrike. (It was a good one!)
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
6/26/2014 | 10:22:19 PM
Re: Fascinating topic
Was this stored somewhere so I can listen to it now? I have always been a huge advocate of Crowdstrike and some of the amazing products they have. I am really interested in hearing this radio cast in particular. Thanks!
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
6/24/2014 | 3:45:30 PM
Fascinating topic
Sounds like another great show Sara with a great guest. I'm looking forward to hearing the inside scoop from about Operation Tovar from CrowdStrike's Adam Meyers. 
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-31414
PUBLISHED: 2021-04-16
The unofficial vscode-rpm-spec extension before 0.3.2 for Visual Studio Code allows remote code execution via a crafted workspace configuration.
CVE-2021-26073
PUBLISHED: 2021-04-16
Broken Authentication in Atlassian Connect Express (ACE) from version 3.0.2 before version 6.6.0: Atlassian Connect Express is a Node.js package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Express app occurs with a server-to-server JWT or ...
CVE-2021-26074
PUBLISHED: 2021-04-16
Broken Authentication in Atlassian Connect Spring Boot (ACSB) from version 1.1.0 before version 2.1.3: Atlassian Connect Spring Boot is a Java Spring Boot package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Spring Boot app occurs with a se...
CVE-2018-19942
PUBLISHED: 2021-04-16
A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 build 20210202 (and later) QT...
CVE-2021-27691
PUBLISHED: 2021-04-16
Command Injection in Tenda G0 routers with firmware versions v15.11.0.6(9039)_CN and v15.11.0.5(5876)_CN , and Tenda G1 and G3 routers with firmware versions v15.11.0.17(9502)_CN or v15.11.0.16(9024)_CN allows remote attackers to execute arbitrary OS commands via a crafted action/setDebugCfg request...