Hong Kong media: Hacker Group network to attack China and Russia 5 suspected State-backed | hackers _ news
Reference news, August 11, local media said the United States network security vendor Symantec recently, called "Strider" (Strider) hacker group over the past 5 years to China, Russia and other countries Cyber spy attacks and Chinese airlines. Advanced technical means for the hacker group, Symantec team of suspected State-backed support.
According to the Hong Kong Economic Journal, August 10, Symantec Security response team said on its official blog, "Strider" (Strider) hacker group starting in October 2011 at least activity, concealment has been very strong, which until recently were found.
4 7 36 computers in the Agency between the KMT and the "black"
Symantec said that this group of hackers target selectivity is very strong, the company is only found in Russia, China, and Sweden and Belgium 7 agencies in four countries, a total of 36 computers had been attacked, including Russia's 4 agencies, one of China's airlines, Sweden a body as well as in Belgium of an Embassy.
Reports that Symantec believes that when this group of hackers in cyber attacks, using the Remsec malware. The software is a stealth tool for monitoring the targets, on a compromised computer can open back doors, recording keyboard activities and theft of files and data on your computer.
"Strider" and "flame" is a hacker ally suspected national-level
Symantec pointed out that Remsec the malicious software attacks a few years ago was exposed "flame" has similarities, since both use the same name for the Lua programming language. According to security analysts, "flame" is malicious software that have government background, participate in the development of Western countries.
Symantec explained, using the Lua language is Remsec the developer's "self protection mechanism", which is very rare, not easy to be monitored by computer security software. Remsec anti-monitoring capacities, is also reflected in many of its features into computer networks, meaning that malicious software exist only in the user's cache instead of a hard drive, it is extremely difficult to be found.
Reports said because of the "Strider" characteristics of selected targets and the monitoring for malicious software, Symantec believes that the hacker group is likely to be national, but Symantec did not say which country the Government or relevant.
Source: references
Responsible editor: Kun Qu SN117
Article keywords:Hacker
I want feedback
Save a Web page
China News Network
港媒:黑客小组网络攻击中国和俄罗斯5年 疑有国家背景|黑客_新闻资讯
参考消息网8月11日报道 港媒称,美国网络安全技术供应商赛门铁克日前指,一个名为“神行客”(Strider)的黑客小组,过去5年间有对中国、俄罗斯等国展开网络间谍式攻击,中国有航空公司中招。该黑客小组技术手段先进,赛门铁克怀疑小组有国家背景的团队支援。
据香港《经济日报》网站8月10日报道,赛门铁克安全反应团队在其官方博客上说,“神行客”(Strider)的黑客小组至少从2011年10月开始活动,隐蔽性一直很强,直至最近才被发现。
4国共7机构中招 36台电脑被“黑”
赛门铁克说,这个黑客小组目标选择性极强,该公司仅发现位于俄罗斯、中国、瑞典和比利时四个国家的7个机构,共计36台电脑受到过攻击,具体包括俄罗斯的4个机构,中国的一个航空公司,瑞典的一个机构以及位于比利时的一个使馆。
报道称,赛门铁克认为,这个黑客小组在网络攻击时,使用了Remsec恶意软件。该软件是一个对目标进行监视的隐形工具,可以在被入侵的电脑上开设后门、记录敲击键盘的活动并窃取电脑中的文件和数据。
“神行客”与“火焰”属黑客盟友 疑属国家级别
赛门铁克指出,Remsec的攻击与几年前被曝光的恶意软件“火焰”有相似之处,因为两者都使用了同一种名为Lua的编程语言。据网络安全专家分析,“火焰”是有政府背景的恶意软件,有西方国家参与开发。
赛门铁克解释,使用Lua语言是Remsec开发者的“自我保护机制”,这种语言非常罕见,不易被电脑安全软件监测。Remsec的反监测能力,还体现在其许多功能被植入电脑网络,意味恶意软件只存在于用户的缓存而非硬盘中,因此极难被发现。
报道称,鉴于“神行客”选择攻击目标的特点及其所用恶意软件的监视功能,赛门铁克认为,这个黑客小组很可能是国家级别的,但是赛门铁克并未说明哪个国家政府或与此有关。
来源:参考消息
责任编辑:瞿崑 SN117
文章关键词: 黑客
我要反馈
保存网页
中国新闻网
