IDG News Service - Google says that politically motivated malware has been used to spy on Vietnamese computer users and attack activist blogs over the past several months.
"In January, we discussed a set of highly sophisticated cyber attacks that originated in China and targeted many corporations around the world," wrote Google engineer Neel Mehta in a company blog Tuesday. "We have gathered information about a separate cyber threat that was less sophisticated but that nonetheless was employed against another community."
Last week, Google shut down its Chinese search operations, a move spurred in part by the late-2009 cyberattacks.
Although the command and control servers associated with this Vietnamese botnet used some of the same domains as the Google attacks, security vendor McAfee believes that the Vietnamese botnet is not related. Some files originally thought to be associated with the Google attack were actually associated with this Vietnamese malware, the company said.
The Vietnamese malware apparently began spreading in late 2009, when someone hacked into the Web site run by the Vietnamese Professionals Society and replaced a keyboard driver that's offered for download on the site with a malicious Trojan horse program.
"We believe that the perpetrators may have political motivations and may have some allegiance to the government of the Socialist Republic of Vietnam," wrote McAfee CTO George Kurtz in a Tuesday blog post. His company has also investigated the so-called Aurora attacks that hit Google and other companies.
The DDoS attacks linked to the Vietnamese botnet "tried to squelch opposition to bauxite mining efforts in Vietnam, an important and emotionally charged issue in the country," Mehta wrote.
The Vietnamese government is working with Chinese mining interests to establish bauxite mines in Vietnam's lush central highlands region. Critics warn that this could become an environmental disaster, spawned by bauxite mining's toxic runoff. Bauxite is used to produce aluminum.
Google rarely blogs about this type of malware, but in an e-mail message, a company spokesman said that the company decided to go public with its findings "because we feel that the use of malware to spy on computer owners and to participate in distributed denial of service attacks against blogs containing messages of political dissent is especially egregious."
This pilot fish is a contractor at a military base, working on some very cool fire-control systems for tanks. But when he spots something obviously wrong during a live-fire test, he can't get the firing-range commander's attention.
- IT Certification Study Tips
- Register for this Computerworld Insider Study Tip guide and gain access to hundreds of premium content articles, cheat sheets, product reviews and more.
- Reduce federal infrastructure risk with compliance management and situational awareness
- IBM continuous monitoring and management solutions deliver real-time situational awareness to help federal agencies understand vulnerabilities, and protect the infrastructure.
- Mission Critical: Managing Mobile Applications & Content
- Smartphones, tablets and other mobile devices have become embedded in enterprise processes, thanks to the consumerization of IT and a new generation of...
- Securing Mobility, From Device to Network
- At one time, the process of managing and securing mobile devices and applications was fairly straightforward. Most organizations worried about one application (email)...
- Planning for Mobile Success
- Many organizations are seeing clear and quantifiable benefits from the deployment of mobile technologies that provide access to data and applications any time,...
- The Challenges and Opportunities of Mobile Application Development
- Nearly all business users now demand mobile devices--their own or company-owned--along with anywhere access to corporate applications and data. What turns mobile devices... All Government IT White Papers
- Keep Servers Up and Running and Attackers in the Dark An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily...
- On Demand: Mastering the Art of Mobile Content Management Mobile device usage in the enterprise has skyrocketed, and it continues to escalate. IT must answer to users who demand access to their...
- DevOps with PureApplication System: Reduce cost and speed delivery with an integrated IBM Cloud solution Join this webcast to hear what ING Netherlands has been able to achieve while deploying DevOps tools from IBM Rational. An ING executive...
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- Will the Real Endpoint Threat Detection and Response Please Stand Up? This webinar explores new technologies & process for protecting endpoints from advanced attackers as well as the innovations that are pushing the envelope...
- All Government IT Webcasts