funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: World Bank Under Cyber Siege in 'Unprecedented Crisis'

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Sat, 11 Oct 2008 02:06:43 +0300 (EEST)
Lot of misinformation, says a statement mentioned here now:
http://isc.sans.org/diary.html?storyid=5161

Juha-Matti

Paul Ferguson [fergdawgster () gmail com] kirjoitti: 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

See also:

http://news.cnet.com/8301-1009_3-10063522-83.html

- - ferg


On Fri, Oct 10, 2008 at 1:06 PM, Paul Ferguson <fergdawgster () gmail com>
wrote:



Via FOX News.

[snip]

The World Bank Group's computer network  one of the largest
repositories of sensitive data about the economies of every nation 
has been raided repeatedly by outsiders for more than a year, FOX News
has learned.

It is still not known how much information was stolen. But sources inside
the bank confirm that servers in the institution's highly-restricted
treasury unit were deeply penetrated with spy software last April.
Invaders also had full access to the rest of the bank's network for
nearly a month in June and July.

In total, at least six major intrusions  two of them using the same
group of IP addresses originating from China  have been detected at
the World Bank since the summer of 2007, with the most recent breach
occurring just last month.

In a frantic midnight e-mail to colleagues, the bank's senior technology
manager referred to the situation as an "unprecedented crisis." In fact,
it may be the worst security breach ever at a global financial
institution. And it has left bank officials scrambling to try to
understand the nature of the year-long cyber-assault, while also trying
to keep the news from
leaking to the public.

[snip]

More:
http://www.foxnews.com/story/0,2933,435681,00.html


-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFI78Ghq1pz9mNUZTMRAmBDAJ9ADDm/Z9Lozb0GydbPP/kLtXvBkQCgiBmD
u9IU9oOgR1qPJ+K0VahSpbE=
=MRyd
-----END PGP SIGNATURE-----



-- 
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawgster(at)gmail.com
 ferg's tech blog: http://fergdawg.blogspot.com/




_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: