{"id":6458,"date":"2020-12-16T21:57:51","date_gmt":"2020-12-16T20:57:51","guid":{"rendered":"https:\/\/webhosting.de\/?p=6458"},"modified":"2025-02-19T18:54:28","modified_gmt":"2025-02-19T17:54:28","slug":"nasa-pentagon-and-co-hackers-infiltrate-sensitive-targets","status":"publish","type":"post","link":"https:\/\/webhosting.de\/da\/nasa-pentagon-und-co-hacker-infiltrieren-sensible-ziele\/","title":{"rendered":"NASA, Pentagon og Co - Hackere infiltrerer f\u00f8lsomme m\u00e5l"},"content":{"rendered":"

Den russisk-baserede hackergruppe APT29, ogs\u00e5 kendt som Cozy Bear, menes at have infiltreret en r\u00e6kke amerikanske agenturer, herunder udenrigsministeriet, justitsministeriet og Pentagon, samt NASA og tusindvis af virksomheder verden over. If\u00f8lge medierne skulle der v\u00e6re anvendt den samme angrebsvektor, som for nylig blev brugt til at angribe den Sikkerhedsfirmaet Fireeye<\/a> hakket<\/a> var. Han fortalte nyhedskanalen CNN<\/a> myndighederne har siden bekr\u00e6ftet angrebet.<\/p>\n\n\n\n

\"Vi kan bekr\u00e6fte, at der har v\u00e6ret indbrud p\u00e5 et af vores kontorer. Vi har bedt CISA og FBI om at unders\u00f8ge h\u00e6ndelsen, og vi kan ikke kommentere yderligere p\u00e5 dette tidspunkt.\"<\/p>Handelsministeriet<\/cite><\/blockquote><\/figure>\n\n\n\n

\n

Opdateringsserver distribuerer malware<\/h2>\n<\/div><\/div>\n\n\n\n

If\u00f8lge en rapport fra Fireeye<\/a> den malware, der blev brugt til angrebet, blev distribueret via Cloud-server<\/a> af it-overv\u00e5gnings- og styringsprogrammet Orion fra Solarwinds. Hackerne integrerede malware i en opdatering af softwaren, som derefter blev installeret af de kompromitterede virksomheder og myndigheder.<\/p>\n\n\n\n

Flere opdateringer blev p\u00e5virket<\/h2>\n\n\n\n

If\u00f8lge Fireeye begyndte angrebet allerede i for\u00e5ret 2020. I marts og maj 2020 blev flere signerede og trojaniserede Opdateringer<\/a> og distribueres via Solarwinds-serverne.<\/p>\n\n\n\n

I mellemtiden har Fireeye GitHub<\/a> Signaturer for malware kaldet Sunburst er blevet frigivet, som Snort, Yara, IOC og ClamAV kan bruge til at rydde op i inficerede systemer.<\/p>\n\n\n\n

I en Stel<\/a>Udtalelse<\/a> Solarwinds har ogs\u00e5 bekr\u00e6ftet spredningen af Sunburst-malware via sine opdateringsservere. Virksomheden anbefaler, at alle kunder opdaterer Orion-platformen s\u00e5 hurtigt som muligt. If\u00f8lge sin egen Oplysninger<\/a> Solarwinds har mere end 300.000 kunder p\u00e5 verdensplan. De mulige ofre for hacket omfatter derfor ikke kun de amerikanske myndigheder, men ogs\u00e5 virksomheder som Siemens, AT&T, Cisco, Mastercard og Microsoft<\/a>.<\/p>\n\n\n\n

Overfor den Washington Post<\/a> John Scott-Railton forklarede, at skaderne fra angrebet sandsynligvis vil v\u00e6re enorme. APT29 har tidligere v\u00e6ret en af de mest aggressive hackergrupper.<\/p>\n\n\n\n

\"Det er en stor ting. I betragtning af de indbrud, vi allerede kender til, forventer jeg, at omfanget af angrebene vil vokse, efterh\u00e5nden som vi kigger logfilerne igennem.\"<\/p>John Scott-Railton, forsker i Citizen Lab<\/cite><\/blockquote><\/figure>","protected":false},"excerpt":{"rendered":"

En russisk hackergruppe har inficeret amerikanske regeringsorganer og tusindvis af virksomheder verden over med malware via cloud-servere.<\/p>","protected":false},"author":2,"featured_media":6461,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[685],"tags":[950,951],"class_list":["post-6458","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein","tag-fireeye","tag-hacker"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":"685","rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":"692","rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":null,"_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":"1","_edit_lock":"1608152272:1","_oembed_e7b913c6c84084ed9702cb4feb012ddd":"{{unknown}}","_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":"