Familiar Feeling: A Malware Campaign Targeting the Tibetan Diaspora Resurfaces
Investigation of a malware campaign targeting the Tibetan community and discussion of the challenges in analyzing closed espionage ecosystems.
Posts tagged “Espionage”
Investigation of a malware campaign targeting the Tibetan community and discussion of the challenges in analyzing closed espionage ecosystems.
In this report we track a malware operation targeting members of the Tibetan Parliament that used known and patched exploits to deliver a custom backdoor known as KeyBoy. We analyze multiple versions of KeyBoy revealing a development cycle focused on avoiding basic antivirus detection.
The trajectories of the U.S. and Chinese governments on cyber security have officially diverged with the May 19 unsealing of an indictment against five Chinese nationals accused of cyber espionage against U.S. companies.
Director Ron Deibert spoke about the NSA spying scandal, and his new book, Black Code.
Citizen Lab Communications Officer Irene Poetranto authored an op-ed in The Jakarta Post on 14 December. In Time for greater transparency, Poetranto writes about the recent spying allegations by the Australian spy agency and the market for surveillance technologies.
On Friday, 7 June, Citizen Lab Director Ron Deibert spoke to Matt Galloway of CBC Radio’s Metro Morning show about the NSA spying scandal.
Citizen Lab Director Ron Deibert and Senior Researcher Sarah McKune authored a new article in CircleID on the often overlooked dimension of cyber threats and cyber espionage: the targeting of civil society actors.
Brian Stewart’s piece for CBC News features Citizen Lab Director Ron Deibert on the Russian cybercrime underworld.
Citizen Lab Fellow Jon Penney writes that “among certain national-security and public-policy circles, there is a growing trend to approach the challenges of cyber-security and cyber-war through the lens of the Cold War.”
Recent attacks on three U.S. defense contractors could be tied to cyberespionage campaigns waged from China, several security experts told CNET.
“The reality is, part of the basis of U.S. hegemony…has been the ability to leverage command of signals intelligence to have perspective on the motivations and activities of others. Cyberspace has equalized that, so all of a sudden we’re in a competitive intelligence environment,” said Rafal Rohozinski, a principal at SecDev who did research on targeted attacks on Tibet and others with supposed links to China. Those attacks were detailed in a “GhostNet” report in 2009.
“China has made no secret that they see cyberspace as the domain that allows them to compete with the U.S.,” Rohozinski said.
For full original article, see here