banner



Home  ›  U.S. Department of Labor website infected with malware - grissomfrinslazince

U.S. Department of Labor website infected with malware - grissomfrinslazince

Written By Wednesday, January 5, 2022 Add Comment Edit

A subdomain of a U.S. DoL web site appeared offline on Wednesday after an apparent hack that looks similar to a identified China-based hacking run nicknamed DeepPanda.

The tampered page, called Site Exposure Matrices (SEM), contains information on toxic substances at U.S. Energy facilities, according to security measur vendors AlienVault and Invincea.

The U.S. Department of Labor has secure an superficial website hack that looks similar to a known China-based hacking campaign nicknamed DeepPanda.

Hackers planted code on the intense SEM page which redirected victims to other pages inside the department's website that attacked visitors' computers. Invincea wrote that the site has been fixed, but it appeared to be offline advanced Wednesday.

When someone was redirected to an infected paginate, a script surveyed the computer to figure out what versions of software such as Microsoft Office, Adobe Systems' Reader, Java or various antivirus programs IT is lengthwise, wrote Jamie Blasco, director of AlienVault's Labs.

The attack code then tries to exploit a vulnerability in older versions of Internet IE, wrote Anup Ghosh, give and CEO of Invincea. The vulnerability, CVE-2012-4792, has been patched by Microsoft.

The style of round is known arsenic a drive-by download. Information technology is particularly dangerous since potential victims merely need to visit a site in order for the attack to be executed.

One time installed, the malicious software attempts to contact a command-and-control server using a protocol joined with "a famous Taiwanese actor called DeepPanda," Blasco wrote.

The section could non be straight off reached for comment.

The security company CrowdStrike publicised a white newspaper that delineate DeepPanda as a China-based operation that tried to attack a queen-size Fortune 500 company in December 2011. That attack sought to set up remote-access Trojans (RATs), which would allow hackers to steal information from an infected computer.

The U.S. and China have clashed in Recent months over cybersecurity. U.S. companies have become increasingly vocal over what they say are technically sophisticated semipermanent infiltration campaigns originating from within China.

Source: https://www.pcworld.com/article/451627/us-department-of-labor-website-infected-with-malware.html

Posted by: grissomfrinslazince.blogspot.com

0 Response to "U.S. Department of Labor website infected with malware - grissomfrinslazince"

Post a Comment

Subscribe to: Post Comments (Atom)

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel