Low Graphics Site
White bar
.: Latest News :. .: News in Pictures :.
Dawn e-paper
Daily SectionMarker

Misc SectionMarker

Horoscope Recipes Weekly SectionMarker

Weekly SectionMarker



Pakistan's Internet Magazine
Herald
Dawn GroupMarker

Archive, Search, Feedback & HelpMarker

Weather

FrontPage National International Local Business KSE Forex Sports Editorial Opinion Letters Features Today's Cartoon TV Guide Cowasjee Ayaz Irfan Hussain Jawed Naqvi Review Dawn Magazine Young World Images Dawn Group Subscription To Advertise

DINA
Previous Story DAWN - the Internet Edition Next Story

February 16, 2007 Friday Muharram 27, 1428





Hackers target the weakest link



By Pete Warren


LONDON: One of the UK’s leading banks has been forced to admit that organised hacking gangs have been targeting its executives. For the past year, Royal Bank of Scotland has been fighting systematic attempts to break into its computer systems from hackers who have sent personalised emails containing keyloggers to its senior management. This has included executives up to board level and is now the subject of a separate investigation by the Serious and Organised Crime Agency.

The hackers are homing in on the trend for people to work from home. The hackers make the assumption that the computers being used outside the work environment are more vulnerable than those protected by a corporate IT department.

GROWING THREAT: For companies it is a growing threat as home working increases: a recent survey from the Equal Opportunities Commission found that more than 60 per cent of the UK’s population wants the option of flexible working.

And the hackers are employing increasingly sophisticated techniques. Each email they send is meticulously built to make it attractive to its target, who the criminals have carefully researched by trawling the internet for information. Once the email is composed, the malware is just as carefully designed: it is often modified to avoid detection by security software.

The keylogger contained in the email installs itself automatically and then collects details of logins and passwords from the unsuspecting user. This means that hackers can, using the usernames and passwords stolen by the keyloggers, connect to VPNs, or Virtual Private Networks, which many companies use to create an encrypted pathway into their networks.

Once inside a bank’s network, the hackers can communicate directly with computers holding account information and manipulate funds.Has this actually happened? In some cases sources claim that the login details of VPNs have been obtained and used though there has been no confirmation that any losses have occurred as a result.—Dawn/The Guardian News Service






Previous Story Top of Page Next Story

Seprater
Contributions
Privacy Policy
© DAWN Group of Newspapers, 2007