Декабря 12, 2017


Defence responds to cyber attack incident

13 Октября 2017, 12:56 | Todd Saunders

The three months during which the hackers operated undetected has been dubbed'Alf's Mystery Happy Fun Time by the ASD

The three months during which the hackers operated undetected has been dubbed'Alf's Mystery Happy Fun Time  by the ASD

The Australian Cyber Security Centre said the information released by the ASD staffer, who works for the centre, was commercially sensitive but unclassified. The hacker, he said, was codenamed Alf, after a well-known character, Alf Stewart, from the Australian TV soap opera Home and Away.

"South Australia is well placed to benefit from the Government's unprecedented $200 billion Defence investment". It's unclear whether another country or non-state actor was behind the breach but the hackers used China Chopper, a Chinese language webshell, to access the company's system.

Australian Signals Directorate incident response manager Mitchell Clarke revealed to a conference on Wednesday an aerospace engineering company with about 50 employees was compromised previous year.

Earlier this week, it emerged Australia has been subjected to 47,000 cyber incidents in the last 12 months - a 15% increase on the previous year.

"The compromise was extensive and extreme", said the official, Mitchell Clarke, in an audio recording made by a ZDNet journalist and broadcast by the ABC.

The hacked Australian Defence subcontractor lost documents on projects including the Joint Strike Fighter (JSF) program and the P-8 Poseidon "submarine killer" plane, as well as detailed designs of Australian Navy ships.

"Analysis showed that the adversary gained access to the victim network by exploiting an internet-facing server, then using administrative credentials to move laterally within the network, where they were able to install multiple webshells - a script that can be uploaded to a webserver to enable remote administration of the machine - throughout the network to gain and maintain further access", it stated.

Читайте также: Owner of Breaking Bad house installs fence to combat fans' pizza throwing

"This isn't uncommon", Clarke told the audience, ZDNet reported.

Clarke says the ASD began helping the company respond to the intrusion in December 2016. The ASD appears to have a sense of humor about the breach, dubbing the three months when the hacker had unfettered and unknown access to the network "Alf's Mystery Happy Fun Time".

The reference is not to the title of the American sitcom, short for "alien life form", that launched in the mid-1980s, but rather for a domestic television obsession. "It's just a thing we do", he said.

The location and manner of the intrusion is ironic, given many information security experts' longstanding recommendation that however organizations approach information security, they should always ensure they comply with the ASD's top 4 information security mitigation strategies.

"ACSC analysis confirmed that the adversary had sustained access to the network for an extended period of time and had stolen a significant amount of data", it added.

Stephen Burke, founder and CEO at training firm Cyber Risk Aware said the incident is another example of IT admin not carrying out IT security best practices.

При любом использовании материалов сайта и дочерних проектов, гиперссылка на обязательна.
«» 2007 - 2017 Copyright.
Автоматизированное извлечение информации сайта запрещено.

Код для вставки в блог



Other News

Trending Now

Arsene Wenger admits Gunners ARE considering selling Mesut Ozil in January
Speaking ahead of this weekend's clash against Watford, Wenger said: "In our situation, we have envisaged every solution".

Amazon's Alexa can now recognize different voices and give personalized responses
Around 11% or so of USA consumers own an Amazon Echo or Google Home, making the percentages relatively small but the numbers high. The announcement comes as Amazon continues to work on its software features as it widens its lead in the smart speakers market.

NYPD Now Officially Investigating Harvey Weinstein
In a statement, Twitter said Thursday it was a tweet by McGowan with a personal phone number that violated its service terms. The statement acknowledged that accusers often speak out at and face great professional and emotional risk.

Mila Kunis, Ashton Kutcher say 'no presents for the kids' this Christmas
Whether it's Easter, which we've now all accepted into our Jewish household, or Christmas, it doesn't matter. A year ago when we celebrated Christmas, [our daughter] Wyatt was 2 and it was too much.

Punk singer-turned-ISIS recruiter 'killed' in drone strike
According to the Sun , Jones was last seen fleeing from Raqqa, heading for a town on the border with Iraq. She was setting up all-female terrorist cells to attack Western countries, The Times of London reported .

Eminem unleashes rap attack on Trump and A-list stars approve
Fallon, Colbert, Meyers, and Corden all had some jokes about Eminem's now famous freestyle rap , from sketch gags to parodies. Corden - host of the Late Late Show - also weighed in on what he imagined Trump's response was to Eminem's rap.

Dems who opposed Iran nuke deal urge Trump to keep pact
Many Democrats believe that is more likely to happen if Congress does not act to make changes to the existing agreement. Unilateral U.S. sanctions would entail stringent provisions applying to European Union companies that deal with Iran.

Parents win murder appeal in case that divided India
The jail officials said that Rajesh Talwar and his wife Nupur Talwar had not eaten anything since morning and prayed for hours. The agency has said it will take a call on appealing the high court's decision after it goes through the judgement.

Falcao denies on-field pact played a part in Lima draw
He told Colombian outlet Win Sports: "I believe that Colombia today can play against anyone". The result? Bolivia had to forfeit this game as well and Peru were handed a 3-0 win.

North Korea says Trump has 'lit fuse of war'
He added that North Korea would not rule out "the use of the most extreme measures in response". Robert Gates, who served as Secretary of Defense for almost five years during the George W.