Tuesday, April 20, 2021

Attackers Hit Human Rights, Foreign Policy Websites With Drive-By Exploits

eWeek: Attackers have frequently targeted human rights and foreign policy think tank websites with DDoS attacks, but now they’re taking a craftier approach. According to the Shadowserver Foundation, hackers have begun compromising these websites with exploit code that spreads malware and enables cyber-espionage against people who visit the sites. Affected sites include Amnesty International Hong Kong, Center for Defense Information and the International Institute for Counter-Terrorism.

“These types of attacks seem to be increasing as the attackers look for additional ways to target and compromise a particular demographic while still being somewhat indiscriminate,” said Shadowserver’s Steve Adair. “I think attackers are finding that instead of going to the targets, that they can let the targets come to them. Even a person that’s been trained on how to spot and notice suspicious emails will likely have their guard down when visiting a Website they go to every day or every week.”

“The cold reality is that, in addition to APTs [Advanced Persistent Threats], most organizations aren’t protected from even the most basic of scripted attacks or common attack tools,” said Dave Marcus of McAfee Labs. “Ensuring security policies, network security prevention and detection, as well as incident-response plans are all up to date, will help your organization prevent and mitigate APT attacks.”

Similar articles

Latest Articles

IT Planning During a...

Without a doubt, 2020 changed everything. I like to compare it to a science fiction movie where time travel is involved. Clearly, we have...

Best Data Quality Tools...

Data quality is a critical issue in today’s data centers. The complexity of the Cloud continues to grow, leading to an increasing need for...

NVIDIA’s New Grace ARM/GPU...

This week is NVIDIA’s GTC, or GPU Technology Conference, and they likely should have changed the name to ATC because this year – it...

What is Data Segmentation?

Definition of Data Segmentation Data segmentation is the process of grouping your data into at least two subsets, although more separations may be necessary on...