{"id":15720,"date":"2014-09-10T12:30:24","date_gmt":"2014-09-10T02:30:24","guid":{"rendered":"http:\/\/www.aspistrategist.ru\/?p=15720"},"modified":"2014-09-25T14:40:55","modified_gmt":"2014-09-25T04:40:55","slug":"cyber-wrap-42","status":"publish","type":"post","link":"https:\/\/www.aspistrategist.ru\/cyber-wrap-42\/","title":{"rendered":"Cyber wrap"},"content":{"rendered":"
<\/a>This week in cyber, New Zealand telco Spark suffered a massive internet meltdown<\/a> over the weekend as its Domain Name System (DNS) infrastructure became overwhelmed in what the company said was a \u2018dynamic cyber attack\u2019. Some initial reports indicated customers might have caused the outage as they flocked to access leaked photos of celebrities via malware-infected links. While that may have left more than a few users feeling sheepish, Spark said it had yet to identify any such malware on customers’ computers and that it was possible hackers had exploited poorly-configured self-installed modems, or a combination of vulnerabilities.<\/p>\n Interestingly, the attack doesn\u2019t appear to have been targeted at New Zealanders but rather at organisations in eastern Europe<\/a>. A Spark spokeswoman stated that “It definitely appears it was ‘from overseas, to overseas’, but bouncing off our customers.”<\/p>\n Still with eastern European cyber concerns, discussions at the recent NATO Summit in Wales have resulted in NATO adding cyber-attacks<\/a> to\u00a0the list\u00a0of offences that would trigger the retaliation of all 28 member states, with NATO Secretary-General Anders Fogh Rasmussen stating<\/a>, \u2018cyber defence is part of NATO’s core task of collective defence.\u2019 While the statement didn\u2019t outline the specifics surrounding the declaration (with the ambiguity adding a deterrent<\/a> effect), NATO pledged more tangible support earlier in the summit with a \u2018C4\u2019 trust fund for Ukraine, which will see it provide capital for investment in \u2018command, control, communications and\u00a0computers\u2019.<\/p>\n The NATO declaration led Jason Hart, of data protection firm\u00a0SafeNet, to suggest<\/a> that NATO should use the opportunity to influence its members to improve cyber defence capabilities and build competency within their private sectors. Hart stated that \u2018NATO has the opportunity and obligation to ensure that member states are aware of cyber threats, are building a capability to address them and are supporting businesses to do the same.\u2019<\/p>\n Hacktivist group Anonymous declared<\/a> this week that they\u2019ll be ramping up their online efforts against ISIS, which had commenced in June. The group claimed to have successfully targeted ISIS social media accounts and other parts of their online presence. Hackers working for ISIS retaliated against the group, with at least one Anonymous Twitter account being taken over by the jihadi outfit.<\/p>\n Sticking with hacking, a Trend Micro report<\/a> published this week on the Chinese cybercriminal underworld makes for sober reading. The report found<\/a> that economic and technical barriers to becoming a cybercriminal are much lower today and as a result, the market for tools to get started in cybercrime or improve ongoing operations is booming in Russia, China and Brazil.<\/p>\n The growing capability of commercial hackers was reported by eWeek<\/a> in an article focused on a \u2018watering-hole\u2019 attack that saw hackers compromise a popular industrial engineering website using JavaScript to collect information on visitors and log their keystrokes. Attackers do not just seek to compromise victims, but also to reconnoitre potential targets and further refine methods for future attacks.\u00a0Watering-hole attacks have become an increasingly common component in the toolbox of nation-states\u2019 cyber-warriors, who are generally considered to be the most sophisticated adversaries in the cyber domain.<\/p>\n In an effort to address the \u2019cyber gap\u2019, American educational institutions are endeavouring<\/a> to generate interest in computer-based sciences by encouraging high schoolers to participate in programs focused on coding and cyber defence. Those efforts, focused on such activities as after-school groups and an IT Olympics, are aimed at encouraging more young Americans to consider pursuing a career and further education in the field.<\/p>\n Back closer to home, ACT Chief of Police Rudi Lammers used the retirement of outgoing Australian Federal Police Commissioner Tony Negus to encourage Negus\u2019 replacement to steer the national law enforcement agency to tackle increased threats from cybercrime<\/a> and homegrown terrorists. Chief police officer Lammers identified cybercrime and radicalisation as two of the main threats facing the national police force over the next 10 years.<\/p>\n