[ISN] At Facebook, zero-day exploits, backdoor code bring war games drill to life

From: InfoSec News <alerts_at_private>
Date: Mon, 11 Feb 2013 02:28:11 -0600 (CST)
http://arstechnica.com/security/2013/02/at-facebook-zero-day-exploits-backdoor-code-bring-war-games-drill-to-life/

By Dan Goodin
Ars Technica
Feb 10 2013

Early on Halloween morning, members of Facebook's Computer Emergency Response 
Team received an urgent e-mail from an FBI special agent who regularly briefs 
them on security matters. The e-mail contained a Facebook link to a PHP script 
that appeared to give anyone who knew its location unfettered access to the 
site's front-end system. It also referenced a suspicious IP address that 
suggested criminal hackers in Beijing were involved.

"Sorry for the early e-mail but I am at the airport about to fly home," the 
e-mail started. It was 7:01am. "Based on what I know of the group it could be 
ugly. Not sure if you can see it anywhere or if it's even yours."

Early on Halloween morning, members of Facebook's Computer Emergency Response 
Team received an urgent e-mail from an FBI special agent who regularly briefs 
them on security matters. The e-mail contained a Facebook link to a PHP script 
that appeared to give anyone who knew its location unfettered access to the 
site's front-end system. It also referenced a suspicious IP address that 
suggested criminal hackers in Beijing were involved.

"Sorry for the early e-mail but I am at the airport about to fly home," the 
e-mail started. It was 7:01am. "Based on what I know of the group it could be 
ugly. Not sure if you can see it anywhere or if it's even yours."

[...]


______________________________________________
Visit the InfoSec News Security Bookstore
Best Selling Security Books and More!
http://www.shopinfosecnews.org 
Received on Mon Feb 11 2013 - 00:28:11 PST

This archive was generated by hypermail 2.2.0 : Mon Feb 11 2013 - 00:24:37 PST