Vulnerabilities and attacks

South Korea has accused North Korea of launching a recent cyberattack that hit tens of thousands of PCs.

A spokesman for South Korea's Internet agency said today that six computers in North Korea were identified as the source of the attack, according to The Guardian. Those computers used more than 1,000 IP addresses from across the world to infect 48,000 PCs and servers at South Korean banks and broadcasting stations.

The spokesman told the Associated Press that the attack mimicked past hacking attempts by North Korea and pointed the finger at an espionage agency run by the military. … Read more

Anonymous claims that a cyberattack launched against Israeli government Web sites this weekend has caused billions of dollars of damage, although Israeli officials say there have been no major disruptions.

The group claimed it hacked more than a dozen official Israeli Web sites, including those for the Israel Police, the Prime Minister's Office, the Israel Securities Authority, the Immigrant Absorption Ministry, and the Central Bureau of Statistics. The country's page for the Ministry of Defense was offline today as well, which Anonymous took credit for hacking in a tweet:

Anonymous Operation Israel | Target: DOWN | mod.gov.il | #Anonymous … Read more

Anonymous continues to target North Korea with its latest round of exploits.

Citing the threat posed by the North Korean government, the "hacktivist" group defaced the country's official Twitter and Flickr accounts yesterday.

The North Korean Twitter feed now displays a series of tweets with links that poke fun at the country's leader Kim Jong-un. One linked image portrays Kim Jong-un in a less than flattering light and criticizes him for "threatening world peace with ICBMs and nuclear weapons" and "wasting money while his people starve." The country's Flickr account shows … Read more

In September 2011, security companies first noticed a new malware scam for OS X, which posed as a fake Adobe Flash installer, and hence became known as Flashback. Unlike prior scams, this malware took on some new approaches to tricking users by infecting common browsers, disabling Apple's XProtect system, and eventually morphing into a Java-based exploit that resulted in approximately 600,000 Macs being infected worldwide.

The Flashback malware has been seen as one of the more widespread and successful attacks on the OS X platform, but while it was eventually snuffed out a year later, it left everyone … Read more

Reports from Internet monitoring services show that recent news of a cyber attack so big that it made the Internet slow to a crawl around the world was a bit dramatic.

The New York Times reported about spam-fighting nonprofit Spamhaus and a distributed-denial-of-service attack on the Dutch group's site that became the "largest computer attacks on the Internet" and caused a "widespread congestion and jamming crucial infrastructure around the world."

Matthew Prince, the CEO of CloudFlare, the company enlisted to fight the attacks for Spamhaus, told CNET today that the attacks -- which ceased yesterday … Read more

Wells Fargo was the target of another distributed denial-of-service attack.

The bank's Web site was slowed down by the attack yesterday, affecting a certain number of customers, according to Fox Business News.

"Yesterday we saw an unusually high volume of Web site traffic which we believe was a denial of service attack," a Wells Fargo spokeswoman told CNET today. "The vast majority of customers were not impacted and customer information is safe. For customers who had difficulty accessing the site, we encouraged them to call us by phone, use ATMs or try logging on again as … Read more

A new Websense report suggests that approximately 94 percent of endpoints that run Oracle's Java are vulnerable to at least one exploit, and we are ignoring updates at our own peril. 

According to security researchers at Websense, it's not just zero-day attacks that remain a persistent threat. Instead, Java exploits are now a popular tool for cybercriminals.

With so many vulnerabilities, keeping browsers up-to-date can become an issue -- especially as Java has to be updated independently from our preferred browser, and a mobile, cross-browser workforce is difficult to manage securely. Keeping this in mind, the security … Read more

Apple has fixed the security issue involving its Apple ID password-reset page, a vulnerability that had made it possible for hackers with a user's e-mail address and birth date to reset the user's password.

Apple said yesterday that it was aware of the issue and was preparing a fix. Meanwhile, the company had taken the "iForgot" reset page offline for maintenance. Now the page is back up, and Apple has confirmed the fix with CNET.

The security exploit made use of a special URL that got around the need to answer a security question. Apple had … Read more

South Korea apparently still has a mystery on its hands. Who launched a cyberattack against several of its banks and broadcasters this week?

Regulators for the country initially pointed the finger at China, saying that the attacks originated from a Chinese IP address. But they admitted today that they jumped the gun.

The IP address used in the attack was actually traced to one of the banks hit on Wednesday. South Korea's NongHyup Bank had been using the address as a virtual one for its internal network, according to Reuters. By coincidence, that address matched one registered in China.… Read more