Masress : Russian Cyber Attackers used Two Unknown Flaws: Security Company

Modon Holding posts AED 2.1bn net profit in H1 2025 Egypt's Electricity Ministry says new power cable for Giza area operational Egypt exports first high-tech potato seeds to Uzbekistan after opening market Egypt's Al-Sisi, Italian defence minister discuss Gaza, security cooperation Egypt's FM discusses Gaza, Nile dam with US senators Aid airdrops intensify as famine deepens in Gaza amid mounting international criticism Health minister showcases AI's impact on healthcare at Huawei Cloud Summit On anti-trafficking day, Egypt's PM calls fight a 'moral and humanitarian duty' Federal Reserve maintains interest rates Egypt strengthens healthcare partnerships to enhance maternity, multiple sclerosis, and stroke care Egypt keeps Gaza aid flowing, total tops 533,000 tons: minister Indian Embassy to launch cultural festival in Assiut, film fest in Cairo Egyptian aid convoy heads toward Gaza as humanitarian crisis deepens Culture minister launches national plan to revive film industry, modernise cinematic assets Sudan's ambassador to Egypt holds reconstruction talks on with Arab League I won't trade my identity to please market: Douzi Sisi calls for boosting oil & gas investment to ease import burden Egypt welcomes 25-nation statement urging end to Gaza war Sisi sends letter to Nigerian president affirming strategic ties Egypt, Senegal sign pharma MoU to unify regulatory standards Two militants killed in foiled plot to revive 'Hasm' operations: Interior ministry Egypt, Somalia discuss closer environmental cooperation 58 days that exposed IMF's contradictions on Egypt Egypt's EHA, Huawei discuss enhanced digital health Foreign, housing ministers discuss Egypt's role in African development push Egypt reveals heritage e-training portal Three ancient rock-cut tombs discovered in Aswan Sisi launches new support initiative for families of war, terrorism victims Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara Egypt's Irrigation Minister urges scientific cooperation to tackle water scarcity Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary Germany among EU's priciest labour markets – official data Paris Olympic gold '24 medals hit record value A minute of silence for Egyptian sports Russia says it's in sync with US, China, Pakistan on Taliban It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights Sudan says countries must cooperate on vaccines Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19 Egypt to tax bloggers, YouTubers Egypt's FM asserts importance of stability in Libya, holding elections as scheduled We mustn't lose touch: Muller after Bayern win in Bundesliga Egypt records 36 new deaths from Covid-19, highest since mid June Egypt sells $3 bln US-dollar dominated eurobonds Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform

Thank you for reporting!

This image will be automatically disabled when it gets reported by several people.

Russian Cyber Attackers used Two Unknown Flaws: Security Company

Amwal Al Ghad Published in Amwal Al Ghad on 19 - 04 - 2015

A widely reported Russian cyber-spying campaign against diplomatic targets in the United States and elsewhere has been using two previously unknown flaws in software to penetrate target machines, a security company investigating the matter said on Saturday.
FireEye Inc (FEYE.O), a prominent U.S. security company, said the espionage effort took advantage of holes in Adobe Systems Inc's (ADBE.O) Flash software for viewing active content and Microsoft Corp's (MSFT.O) ubiquitous Windows operating system.
The campaign has been tied by other firms to a serious breach at U.S. State Department computers. The same hackers are also believed to have broken into White House machines containing unclassified but sensitive information such as the president's travel schedule.
FireEye has been assisting the agencies probing those attacks, but it said it could not comment on whether the spies are the same ones who penetrated the White House because that would be classified as secret.
FireEye said that Adobe had issued a fix for the security weakness on Tuesday, so that users with the most current versions should be protected. The Microsoft problem by itself is less dangerous, since it involves enhanced powers on a computer from those of an ordinary user.
A Microsoft spokesman said the company was working on a patch.
In October, FireEye said the group it calls APT28 had been at work since 2007 and had targeted U.S. defense attaches and military contractors, NATO alliance offices, and government officials in Georgia and other countries of special interest to the Kremlin.
Days before that report, security firm Trend Micro Inc (4704.T) described a campaign it called "Pawn Storm" against computers in the State Department, Russian dissidents, NATO and other Eastern European nations. Because Pawn Storm and APT28 used some of the same tools and hit the same targets, other information security professionals concluded they were the same hackers.
On Thursday, Trend Micro said that the Pawn Storm hackers had increased their activity recently and had targeted bloggers who had interviewed President Barack Obama. It also said the group had "probably" stolen online credentials of a military correspondent at an unnamed major U.S. newspaper.
Though the security flaws APT28 used are new, it had been well established that the group was highly skilled. Saturday's report is one in a flurry generated by rival firms ahead of the RSA Conference next week in San Francisco, the largest annual technology security gathering in the country.
Source: Reuters

Clic here to read the story from its source.