Digital Edition

SYS-CON.TV
UK Targeted for Trojan Attacks
British Government Agency Issues Warning About Attacks from Asia

The UK's National Infrastructure Security Co-Ordination Centre (NISCC) has issued a warning about a series of trojan attacks that go after British government agencies and companies, and which seem to emanating from "the Far East."

The attackers' goal appears to be "covert gathering and
transmitting of commercially or economically valuable information," the NISCC says. The e-mails include spoofed sender addresses "and information relevant to the recipient’s job or interests to entice them into opening the documents, the agency says.

Anti-virus software and firewall will not completely protect users from these attacks, as these trojans can use common ports such as HTTP, DNS, and SSL, and can also be modified to avoid anti-virus detection.


"An infected computer is under the control of the attacker and can be directed to carry out any function normally only available to the system owner, and trojans often communicate back to the attackers using standard application ports (for example TCP port 80, used for web traffic), making it very difficult to detect the data they send and receive amongst legitimate network traffic," the agnecy has warned.

The agency is working with other agencies worldwide to find and "neutralize" IP addresses that are known sources for the attacks. Meanwhile, it urges users to be vigilant in their detection and to follow a "current advice document" that it has posted, to be found at:

www.niscc.gov.uk/niscc/docs/currentAdvice.pdf


 


About Security News Desk
SYS-CON's Security News desk trawls the world of security for news of software, hardware, products, and services that seems likely to be of interest to infosec professionals and summarizes them for easy assimilation by busy IT managers and staff.



ADS BY GOOGLE
Subscribe to the World's Most Powerful Newsletters

ADS BY GOOGLE

CI/CD is conceptually straightforward, yet often technically intricate to implement since it require...
The explosion of new web/cloud/IoT-based applications and the data they generate are transforming ou...
Containers and Kubernetes allow for code portability across on-premise VMs, bare metal, or multiple ...
Enterprises are striving to become digital businesses for differentiated innovation and customer-cen...
Digital Transformation: Preparing Cloud & IoT Security for the Age of Artificial Intelligence. As au...
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't com...
DXWorldEXPO LLC announced today that All in Mobile, a mobile app development company from Poland, wi...
The now mainstream platform changes stemming from the first Internet boom brought many changes but d...
DXWorldEXPO LLC announced today that Ed Featherston has been named the "Tech Chair" of "FinTechEXPO ...
Chris Matthieu is the President & CEO of Computes, inc. He brings 30 years of experience in developm...
Bill Schmarzo, author of "Big Data: Understanding How Data Powers Big Business" and "Big Data MBA: D...
Andi Mann, Chief Technology Advocate at Splunk, is an accomplished digital business executive with e...
In this presentation, you will learn first hand what works and what doesn't while architecting and d...
The Internet of Things is clearly many things: data collection and analytics, wearables, Smart Grids...
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitori...
We are seeing a major migration of enterprises applications to the cloud. As cloud and business use ...
If your cloud deployment is on AWS with predictable workloads, Reserved Instances (RIs) can provide ...
Disruption, Innovation, Artificial Intelligence and Machine Learning, Leadership and Management hear...
We build IoT infrastructure products - when you have to integrate different devices, different syste...
Consumer-driven contracts are an essential part of a mature microservice testing portfolio enabling ...