- Cybersecurity company Mandiant Corp published a 74-page report that purportedly traced a series of cyberattacks on U.S. companies to a Shanghai-based unit of the Chinese army.
- According to Seculert some hackers in turn created malicious versions of Mandiants report that were infected with computer viruses. “When opening the attachment it is exploiting a vulnerability in Adobe Reader to automatically install a malware, which downloads additional malicious components.”. Adobe released patches for this vulnerability also last week.
- China’s defense ministry issued a strong denial and insisted that the report was flawed: “China Says Army Is Not Behind Attacks in Report” (NYT).
- What changed from discovery of Stuxnet in 2010? Seems there is still a lot of catching-up to do: Pierluigi Paganini wrote about SCADA Systems Security on the Infosec Blog.
- “Certified online banking trojan in the wild.” Jean-Ian Boutin, who works for the Antivirus company Eset, has discovered trojans that carry a valid digital signature.
- “Hacks Related to Apple” – A timeline created by F-Secure.
IT-Security-Links #13
SWITCH Security-Blog 