Undetected for over 12 lengthy years, a bunch of hackers for hire have hacked into over 300 banks, giant firms companies and governments. That is probably the longest hacking marketing campaign of its sort.
Primarily based in Germany, the hackers registered 800 front companies in Britain to target and then totally compromise organizations in Germany itself, Switzerland after which Austria at the request of customers.
Elite Cyber Solutions chief executive Jonathan Gad mentioned yesterday that the harm done to firms since the attacks started in 2002 was immeasurable.
“The network exploited U.K.’s relatively tolerant requirements for purchasing SSL security certificates at that time and established British front companies so they could emulate legitimate web services,” Gad said.
“The German attackers behind the network then had complete control over the focused computer systems and were able to perform their espionage undisturbed for a number of years.
“The damage to the organizations who have been victims in terms of loss of valuable data, income or the exposure of information related to employees and customers is impossible to estimate,” he added.
The Harkonnen Operation attack was detailed an eponymously named special report that discovered firms were compromised by generic trojans enters through spear-phishing attacks.
For now, it is still unknown if an anti-virus program wasn’t run at compromised organizations, did not detect the threat or couldn’t because of the malware being encrypted or otherwise obfuscated.
The trojans detected within the assaults had been GFILTERSVC.exe from the generic trojan household Trojan.win7.generic.bt and wmdmps32.exe.
Those particular attacks were first detected in a German firm that held “extremely sensitive data” that utilized security tools worth tens of 1000’s of Euros every year run by security personnel the researchers said were very proficient and operated according to present safety standards.
The criminals spent over $150,000 on 1000’s of domains, IP addresses and wildcard certificates to make its Britain companies appear legitimate, when in actual fact they weren’t.
Source: Elite Cyber Solutions.