{"id":6458,"date":"2020-12-16T21:57:51","date_gmt":"2020-12-16T20:57:51","guid":{"rendered":"https:\/\/webhosting.de\/?p=6458"},"modified":"2025-02-19T18:54:28","modified_gmt":"2025-02-19T17:54:28","slug":"nasa-pentagon-and-co-hackers-infiltrate-sensitive-targets","status":"publish","type":"post","link":"https:\/\/webhosting.de\/sv\/nasa-pentagon-und-co-hacker-infiltrieren-sensible-ziele\/","title":{"rendered":"NASA, Pentagon och andra - Hackare infiltrerar k\u00e4nsliga m\u00e5l"},"content":{"rendered":"

Den ryskbaserade hackergruppen APT29, \u00e4ven k\u00e4nd som Cozy Bear, tros ha infiltrerat ett antal amerikanska myndigheter, d\u00e4ribland utrikesdepartementet, justitiedepartementet och Pentagon, samt NASA och tusentals f\u00f6retag v\u00e4rlden \u00f6ver. Enligt medieuppgifter anv\u00e4ndes samma angreppsvektor som nyligen anv\u00e4ndes f\u00f6r att hacka S\u00e4kerhetsf\u00f6retaget Fireeye<\/a> hackad<\/a> var. Han ber\u00e4ttade f\u00f6r nyhetskanalen CNN<\/a> Myndigheterna har sedan dess bekr\u00e4ftat attacken.<\/p>\n\n\n\n

\"Vi kan bekr\u00e4fta att det har skett ett inbrott p\u00e5 ett av v\u00e5ra kontor. Vi har bett CISA och FBI att utreda h\u00e4ndelsen och vi kan inte kommentera mer f\u00f6r tillf\u00e4llet.\"<\/p>Handelsdepartementet<\/cite><\/blockquote><\/figure>\n\n\n\n

\n

Uppdateringsserver distribuerar skadlig kod<\/h2>\n<\/div><\/div>\n\n\n\n

Enligt en rapport fr\u00e5n Fireeye<\/a> den skadlig kod som anv\u00e4ndes f\u00f6r attacken distribuerades via Molnserver<\/a> av Solarwinds programvara Orion f\u00f6r IT-\u00f6vervakning och -hantering. Hackarna integrerade skadlig kod i en uppdatering av programvaran, som sedan installerades av de drabbade f\u00f6retagen och myndigheterna.<\/p>\n\n\n\n

Flera uppdateringar p\u00e5verkades<\/h2>\n\n\n\n

Enligt Fireeye b\u00f6rjade attacken redan under v\u00e5ren 2020. I mars och maj 2020 skickades flera signerade och trojaniserade Uppdateringar<\/a> och distribueras via Solarwinds servrar.<\/p>\n\n\n\n

Under tiden har Fireeye varit p\u00e5 GitHub<\/a> Signaturer f\u00f6r det skadliga programmet Sunburst har sl\u00e4ppts, vilket g\u00f6r det m\u00f6jligt f\u00f6r Snort, Yara, IOC och ClamAV att rensa infekterade system.<\/p>\n\n\n\n

I en Stel<\/a>Yttrande<\/a> Solarwinds har ocks\u00e5 bekr\u00e4ftat att Sunburst malware har spridits via sina uppdateringsservrar. F\u00f6retaget rekommenderar att alla kunder uppdaterar sin Orion-plattform s\u00e5 snart som m\u00f6jligt. Enligt sin egen Detaljer<\/a> Solarwinds har mer \u00e4n 300 000 kunder v\u00e4rlden \u00f6ver. Bland de m\u00f6jliga offren f\u00f6r hackningen finns d\u00e4rf\u00f6r inte bara de amerikanska myndigheterna utan \u00e4ven f\u00f6retag som Siemens, AT&T, Cisco, Mastercard och Microsoft<\/a>.<\/p>\n\n\n\n

Mittemot den Washington Post<\/a> John Scott-Railton sade att skadorna fr\u00e5n attacken troligen kommer att bli enorma. Tidigare har APT29 varit en av de mest aggressiva hackergrupperna.<\/p>\n\n\n\n

\"Det h\u00e4r \u00e4r en stor sak. Med tanke p\u00e5 de intr\u00e5ng som vi redan k\u00e4nner till f\u00f6rv\u00e4ntar jag mig att omfattningen av attackerna kommer att \u00f6ka n\u00e4r vi granskar loggarna.\"<\/p>John Scott-Railton, forskare i medborgarlabbet<\/cite><\/blockquote><\/figure>","protected":false},"excerpt":{"rendered":"

En rysk hackergrupp har infekterat amerikanska myndigheter och tusentals f\u00f6retag v\u00e4rlden \u00f6ver med skadlig kod via molnservrar.<\/p>","protected":false},"author":2,"featured_media":6461,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_crdt_document":"","inline_featured_image":false,"footnotes":""},"categories":[685],"tags":[950,951],"class_list":["post-6458","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein","tag-fireeye","tag-hacker"],"acf":[],"_wp_attached_file":null,"_wp_attachment_metadata":null,"litespeed-optimize-size":null,"litespeed-optimize-set":null,"_elementor_source_image_hash":null,"_wp_attachment_image_alt":null,"stockpack_author_name":null,"stockpack_author_url":null,"stockpack_provider":null,"stockpack_image_url":null,"stockpack_license":null,"stockpack_license_url":null,"stockpack_modification":null,"color":null,"original_id":null,"original_url":null,"original_link":null,"unsplash_location":null,"unsplash_sponsor":null,"unsplash_exif":null,"unsplash_attachment_metadata":null,"_elementor_is_screenshot":null,"surfer_file_name":null,"surfer_file_original_url":null,"envato_tk_source_kit":null,"envato_tk_source_index":null,"envato_tk_manifest":null,"envato_tk_folder_name":null,"envato_tk_builder":null,"envato_elements_download_event":null,"_menu_item_type":null,"_menu_item_menu_item_parent":null,"_menu_item_object_id":null,"_menu_item_object":null,"_menu_item_target":null,"_menu_item_classes":null,"_menu_item_xfn":null,"_menu_item_url":null,"_trp_menu_languages":null,"rank_math_primary_category":"685","rank_math_title":null,"inline_featured_image":null,"_yoast_wpseo_primary_category":"692","rank_math_schema_blogposting":null,"rank_math_schema_videoobject":null,"_oembed_049c719bc4a9f89deaead66a7da9fddc":null,"_oembed_time_049c719bc4a9f89deaead66a7da9fddc":null,"_yoast_wpseo_focuskw":null,"_yoast_wpseo_linkdex":null,"_oembed_27e3473bf8bec795fbeb3a9d38489348":null,"_oembed_c3b0f6959478faf92a1f343d8f96b19e":null,"_trp_translated_slug_en_us":null,"_wp_desired_post_slug":null,"_yoast_wpseo_title":null,"tldname":null,"tldpreis":null,"tldrubrik":null,"tldpolicylink":null,"tldsize":null,"tldregistrierungsdauer":null,"tldtransfer":null,"tldwhoisprivacy":null,"tldregistrarchange":null,"tldregistrantchange":null,"tldwhoisupdate":null,"tldnameserverupdate":null,"tlddeletesofort":null,"tlddeleteexpire":null,"tldumlaute":null,"tldrestore":null,"tldsubcategory":null,"tldbildname":null,"tldbildurl":null,"tldclean":null,"tldcategory":null,"tldpolicy":null,"tldbesonderheiten":null,"tld_bedeutung":null,"_oembed_d167040d816d8f94c072940c8009f5f8":null,"_oembed_b0a0fa59ef14f8870da2c63f2027d064":null,"_oembed_4792fa4dfb2a8f09ab950a73b7f313ba":null,"_oembed_33ceb1fe54a8ab775d9410abf699878d":null,"_oembed_fd7014d14d919b45ec004937c0db9335":null,"_oembed_21a029d076783ec3e8042698c351bd7e":null,"_oembed_be5ea8a0c7b18e658f08cc571a909452":null,"_oembed_a9ca7a298b19f9b48ec5914e010294d2":null,"_oembed_f8db6b27d08a2bb1f920e7647808899a":null,"_oembed_168ebde5096e77d8a89326519af9e022":null,"_oembed_cdb76f1b345b42743edfe25481b6f98f":null,"_oembed_87b0613611ae54e86e8864265404b0a1":null,"_oembed_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_oembed_time_27aa0e5cf3f1bb4bc416a4641a5ac273":null,"_tldname":null,"_tldclean":null,"_tldpreis":null,"_tldcategory":null,"_tldsubcategory":null,"_tldpolicy":null,"_tldpolicylink":null,"_tldsize":null,"_tldregistrierungsdauer":null,"_tldtransfer":null,"_tldwhoisprivacy":null,"_tldregistrarchange":null,"_tldregistrantchange":null,"_tldwhoisupdate":null,"_tldnameserverupdate":null,"_tlddeletesofort":null,"_tlddeleteexpire":null,"_tldumlaute":null,"_tldrestore":null,"_tldbildname":null,"_tldbildurl":null,"_tld_bedeutung":null,"_tldbesonderheiten":null,"_oembed_ad96e4112edb9f8ffa35731d4098bc6b":null,"_oembed_8357e2b8a2575c74ed5978f262a10126":null,"_oembed_3d5fea5103dd0d22ec5d6a33eff7f863":null,"_eael_widget_elements":null,"_oembed_0d8a206f09633e3d62b95a15a4dd0487":null,"_oembed_time_0d8a206f09633e3d62b95a15a4dd0487":null,"_aioseo_description":null,"_eb_attr":null,"_eb_data_table":null,"_oembed_819a879e7da16dd629cfd15a97334c8a":null,"_oembed_time_819a879e7da16dd629cfd15a97334c8a":null,"_acf_changed":null,"_wpcode_auto_insert":null,"_edit_last":"1","_edit_lock":"1608152272:1","_oembed_e7b913c6c84084ed9702cb4feb012ddd":"{{unknown}}","_oembed_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_time_bfde9e10f59a17b85fc8917fa7edf782":null,"_oembed_03514b67990db061d7c4672de26dc514":"