DarkHotel

DarkHotel (or Darkhotel) is a targeted spear-phishing spyware and malware-spreading campaign that appears to be selectively attacking business hotel visitors through the hotel's in-house WiFi network. It has been characterized by Kaspersky Lab as an advanced persistent threat.^[1]^[2]

The attacks were specifically targeted at senior company executives,^[3] and used forged digital certificates, generated by factoring the underlying weak public keys of real certificates, to convince them that prompted software downloads were valid.^[4]

References

↑ "The Darkhotel APT: A Story of Unusual Hospitality". Kaspersky Labs. November 10, 2014.
↑ Carly Page (November 10, 2014). "Darkhotel malware is targeting travelling execs via hotel WiFi". The Inquirer.
↑ Leo Kelion (2014-11-11). "DarkHotel hackers targets company bosses in hotel rooms". BBC News.
↑ Dan Goodin (2014-11-10). "“DarkHotel” uses bogus crypto certificates to snare Wi-Fi-connected execs". Ars Technica.

External links

http://www.tripwire.com/state-of-security/top-security-stories/hackers-use-darkhotel-malware-to-exploit-executive-targets/

This article is issued from Wikipedia - version of the Tuesday, February 10, 2015. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.