RSA SecureID Attack Began With Excel File Rigged With Flash Zero-Day

RSA stopped short of telling just what information or technology was taken by the attackers, however. Attack started with phishing email with an infected attachment, new details revealed today by RSA and Gartner. Attack then installed a Poison Ivy variant for remotely controlling the infected machine. The messages came with an Excel attachment that was rigged with the newly patched Adobe Flash zero-day, which was seen in limited targeted attacks earlier this month by Adobe Flash. Analyst: “This nasty habit of blaming the victim from a position of moral superiority has to stop””]

Source: https://www.darkreading.com/attacks-breaches/rsa-secureid-attack-began-with-excel-file-rigged-with-flash-zero-day

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text