December 12th, 2010 | 
Author: This is no April Fool’s story, but rather a depressing how easy it is to compromise the corporate network. Markoff’s story of a recent New York Times led me to search for a research paper that Nagaraja and Anderson should be required reading, no e-mail and security status.
The document describes a determined attack on the offices of the government in exile and the Dalai Lama was alleged agents of the Chinese government. It is a chilling description of how easy it is for hackers to access the network, a little ’social engineering and a lot of intelligent programming. Although none of this is new, what is new is the way it is increasingly difficult to keep away thieves.
The Tibetan government in contact with the paper’s authors, when they observed suspicious behavior diplomatic. The authors found disturbing elements are:
- A number of successful connections were measured at the Tibetan U.S. hosting accounts which came from Chinese IP addresses, none of which comes with real users in Tibet
- Social engineering tactics used to obtain the e-mail identities, many Tibetan officials, who then sent several e-mail phishing
- E-mails are disguised as rootkits ordinary documents from seemingly legitimate sources
- Once attachments have been opened by the Tibetan monks, by mistake, rootkits were used to obtain additional information and compromise other users on the network.
What is interesting about this case, a combination of malware and “good guess” – which in reality is a social engineering is in any case – by the behavior of communication of Tibet to find a credible e-mail address of your contacts, for phishing e-mail would be more likely to open in exile monks. Guests have been made easier because of the nature of the Tibetan diaspora and how its activities are open to the monks and coverage.
Posted in Uncategorized