[ISN] Hackers break US government smart card security

From: InfoSec News <alerts_at_private>
Date: Fri, 28 Jan 2011 07:20:45 -0600 (CST)
http://news.techworld.com/security/3258312/hackers-break-us-government-smart-card-security/

By Robert McMillan
Techworld.com
27 January 11

The US government has been stepping up its use of smart cards to help 
lock down its computer networks, but hackers have found ways around 
them.

Over the past 18 months, security consultancy Mandiant has come across 
several cases where determined attackers were able to get onto computers 
or networks that required both smart cards and passwords. In a report 
set to be released Thursday, Mandiant calls this technique a "smart card 
proxy."

The attack works in several steps. First, the criminals hack their way 
onto a PC. Often they'll do this by sending a specially crafted email 
message to someone at the network they're trying to break into. The 
message will include an malicious attachment that, when opened, gives 
the hacker a foothold in the network.

After identifying the computers that have card readers, the bad guys 
install keystroke logging software on those computers to steal the 
password that is typically used in concert with the smart card.

Then they wait.

[...]


___________________________________________________________      
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Fri Jan 28 2011 - 05:20:45 PST

This archive was generated by hypermail 2.2.0 : Fri Jan 28 2011 - 05:26:26 PST