It aimed to Tibetan and Uighur Chinese and Mongolian activists from phones that cybercriminals steal contact lists, messages and calls history, location-based data and information on the phones themselves.
Attack was carried out at the end of March 2013 and organizationally was very similar to the previous ones, aimed at the Uyghur and Tibetan activists. The main difference was that this time the attackers did not use the vulnerability to DOC, XLS and PDF-documents for hacking computers running Windows and Mac OS, and are focusing on mobile devices.
Hacking email account known Tibetan activist, they spread phishing messages in list of his contacts. All such messages have an attachment designed for Android-devices, inside of which is a malicious program. After her research experts "Kaspersky Lab" came to the conclusion that it was written by the Chinese-speaking hackers - witness the comments in the code and certain characteristics command malicious server.
"Until recently, targeted attacks on mobile devices are not used in practice, although attackers definitely interested in this opportunity, and even tried to experiment. For the implementation of cybercriminals using a Trojan designed to steal confidential data directly from a group of victims. Hackers still use social engineering techniques, forcing the user to set their own malicious applications, but we do not exclude that in the future they will exploit vulnerabilities in mobile software, or a combination of the whole complex technologies attacks "- says Costin Raiu, director of the Global Research and Analysis threats "Kaspersky Lab".
No comments:
Post a Comment