HomeLatest ThreadsGreatest ThreadsForums & GroupsMy SubscriptionsMy Posts
DU Home » Latest Threads » Forums & Groups » Main » Latest Breaking News (Forum) » Department of Labor websi...
Introducing Discussionist: A new forum by the creators of DU

Sat May 4, 2013, 01:26 AM

Department of Labor website reportedly compromised to target nuclear weapons workers

Source: The Verge

Two computer security software firms are reporting that a US Department of Labor website was compromised with malware designed to target employees in the Department of Energy likely nuclear researchers. According to Invincea, a zero-day exploit targeting Internet Explorer 8 was discovered on the DoL's "Site Exposure Matrix Database," a site meant to provide information on the heath risks associated with exposure to radioactive materials. That site contained a redirect which secretly installed malware that could communicate witha remote server, according to Alien Vault.

The strategy of using a website your intended targets are likely to visit is known as a "watering hole," and you may recall that a similar tactic was used to target Apple, Facebook, and Twitter developers. With this current hack, the method used to communicate with the command-and-control server "matches with a backdoor used by a known chinese actor called DeepPanda," Alien Vault's Jaime Blasco writes, but just because the technique matches up doesn't necessarily mean that the hackers in this case are the same group.

The DoL acknowledged that "a website related to a DoL program appeared to be compromised" in an email to Nextgov, adding that the site had been taken down and that it "will ensure that appropriate precautions and safeguards remain in place to protect our information and information systems." Microsoft, in a statement to Ars Technica, said that it was investigating. In the meantime, using a more up-to-date browser is obviously a good idea.

Update: Microsoft has issued a security advisory related to this issue. Thought it hasn't yet developed a patch, it does have recommendations for IE8 users including upgrading to a newer version if possible.

Read more: http://www.theverge.com/2013/5/3/4298782/department-of-labor-website-reportedly-compromised-to-target-nuclear

5 replies, 1114 views

Reply to this thread

Back to top Alert abuse

Always highlight: 10 newest replies | Replies posted after I mark a forum
Replies to this discussion thread
Arrow 5 replies Author Time Post
Reply Department of Labor website reportedly compromised to target nuclear weapons workers (Original post)
bananas May 2013 OP
DeSwiss May 2013 #1
BREMPRO May 2013 #2
DeSwiss May 2013 #4
bemildred May 2013 #5
iamthebandfanman May 2013 #3

Response to bananas (Original post)

Sat May 4, 2013, 02:23 AM

1. ....



- Good things just happen when you quit using IE......

Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #1)

Sat May 4, 2013, 02:52 AM

2. lmao! professor DeSwiss you've discovered a clear correlation and compelling case for causation!

i always knew there was something wrong with explorer... i suspect the murder rate will decrease further with the launch of windows 8 lol!

Reply to this post

Back to top Alert abuse Link here Permalink


Response to BREMPRO (Reply #2)

Sat May 4, 2013, 04:17 AM

4. You think that's something, check this out:


Golden Mean - Meandering of the North Pole - Onion Spiral - World Economic Cycle
{Which spiral is going the wrong way?}


Reply to this post

Back to top Alert abuse Link here Permalink


Response to DeSwiss (Reply #1)

Sat May 4, 2013, 10:59 AM

5. +1.



"Lies, damn lies, and statistics."

Reply to this post

Back to top Alert abuse Link here Permalink


Response to bananas (Original post)

Sat May 4, 2013, 02:52 AM

3. sad how many boxes are running old software

still...

ive noticed in most police shows and news desks that WindowsXP is still on most peoples computers..
if that's the case in government as well, and im sure it is some places...
we are in trouble.
lol.

not knocking winxp, cause it was actually one of MSs better OSs.. but.. you cant cling to old software forever

Reply to this post

Back to top Alert abuse Link here Permalink

Reply to this thread