A forum for reverse engineering, OS internals and malware analysis 

All off-topic discussion goes here.
 #5355  by Every1is=
 Mon Mar 07, 2011 9:56 am
Just read about it in the news. My french is really bad and it is not mentioned in the article, but does anyone here know which virus it might have been? I'm assuming they've got basic AV protection in the very least, so...
150 PC's got infected according to the article, so in reality it probably is worse than that. Depending on what infected the systems, the ones behind it will have had plenty of opportunity to do the things we all "fear" the most. Hell, they might even have stolen the French minister of finance his digital identity :-D
 #5356  by Brookit
 Mon Mar 07, 2011 10:51 am
Hey,

I claim this is nothing extraordinary. Financial institutes or banks get frequently infected by malware. Typically they have to deal with the usual suspects like Conficker, Zeus, Spyeye, ... Their weakest point is still the Client-Side that is the careless employee.
What doen't get publicized are the more sophisticated attacks which would damage the image of the secure bank or institute. The vast majority of such issues takes place in the background for obvious reasons.

For example: http://www.theregister.co.uk/2011/03/01 ... a_attacks/

So in this case I guess without knowing it is just a Conficker infection. ;-)

But lets see...
 #5511  by kareldjag/michk
 Wed Mar 16, 2011 9:24 pm
hi,
Here's the official news press of the french cyberdefense institut:
http://translate.google.fr/translate?u= ... =&ie=UTF-8

There is no revolution in this attack, just good methodology: information gathering (who works with who etc), social engineering used in emails, PDF (exploit?) document attached, use of a trojan and data exfiltration.that's all folks.
Most Gov. have been victim of cyberwarfare:http://en.wikipedia.org/wiki/Cyberwarfare
But isn't it simple hacktivism acts like those done by the Anonymous:
http://translate.google.fr/translate?u= ... =&ie=UTF-8

Yes AV as often have seen nothing, and yes the defense is weak since the user has the right to open attachments without control...
Rgds