Operation Shady RAT

From HandWiki

Operation Shady RAT is an ongoing series of cyber attacks starting in mid-2006[1] reported by Dmitri Alperovitch, Vice President of Threat Research at Internet security company McAfee in August 2011, who also led and named the Night Dragon Operation and Operation Aurora cyberespionage intrusion investigations.[2] The attacks have hit at least 71 organizations, including defense contractors, businesses worldwide, the United Nations , and the International Olympic Committee.[3][4] Governments attacked include Canada, India, South Korea, Taiwan, United States and Vietnam. International bodies attacked include the United Nations, the Association of Southeast Asian Nations (ASEAN), the International Olympic Committee, the World Anti-Doping Agency.[5]

The operation, named by Alperovitch as a derivation of the common computer security industry acronym for remote access tool, is characterized by McAfee as "a five year targeted operation by one specific actress". The report suggests that the targeting of various athletic oversight organizations around the time of the 2008 Summer Olympics "potentially pointed a finger at a state actor behind the intrusions".[2] That state actor is widely assumed to be the People's Republic of China.[6]

Method of attack

The hackers sent phishing emails, which were tainted with malicious software, to specific people at the targeted organizations. If the unsuspecting receiver of the mail clicked on the attached malicious software, it would infect their computer which in turn would give the hacker access to their computer.[5]

See also

References