Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
×
The Military China Security

Hackers Plundered Israeli Defense Firms That Built 'Iron Dome' Missile Defense 184

Posted by Soulskill from the intercepting-missiles-is-easier-than-learning-not-to-click-on-attachments dept.
An anonymous reader writes: Brian Krebs reports on information from Columbia, Md.-based threat intelligence firm Cyber Engineering Services Inc. that attackers thought to be operating out of China hacked into the corporate networks of three top Israeli defense technology companies. The attackers were seeking technical documents related to Iron Dome, Israel's air defense system. "IAI was initially breached on April 16, 2012 by a series of specially crafted email phishing attacks. ... Once inside the IAI’s network, [the attackers] spent the next four months in 2012 using their access to install various tools and trojan horse programs on systems throughout company’s network and expanding their access to sensitive files, CyberESI said. The actors compromised privileged credentials, dumped password hashes, and gathered system, file, and network information for several systems. The actors also successfully used tools to dump Active Directory data from domain controllers on at least two different domains on the IAI’s network. All told, CyberESI was able to identify and acquire more than 700 files — totaling 762 MB total size — that were exfiltrated from IAI’s network during the compromise. The security firm said most of the data acquired was intellectual property and likely represented only a small portion of the entire data loss by IAI." Most of the stolen material pertained to Arrow III missiles, UAVs, and ballistic rockets.
This discussion has been archived. No new comments can be posted.

Hackers Plundered Israeli Defense Firms That Built 'Iron Dome' Missile Defense More

Hackers Plundered Israeli Defense Firms That Built 'Iron Dome' Missile Defense

Comments Filter:

  • And it'll keep happening, again and again... (Score:4, Insightful)

    by TWX ( 665546 ) on Wednesday July 30, 2014 @12:29AM (#47563425)
    ...until software and systems security is finally taken seriously. That may mean corporate LANs interconnected between sites by leased private fiber, where ther entire computer system for the company is not able to even reach the public Internet. That may mean that users have separate systems, one for internal communication within the company, and one for external communication to outsiders. That may also mean that companies stop allowing anything sensitive on public-reachable computers, and it might even mean that corporate IT departments have to look at hardware that doesn't allow for secure computers to even plug into regular, public networks, and for those 'regular' networks to be highly monitored and partially locked-down as to what IP ranges (and countries) can even be communicated with.

    I can tell you one thing, if such a system were implemented there'd probably be an uptick in efficiency as now it'd be a lot harder to screw around at work. Sure, a lot of people would be really pissed that they can't do non-work tasks at work without using a system seeing such monitoring too, but given that salaries in the defense sector are generally pretty good, that's a tradeoff that one could probably stomach.

  • Re:And it'll keep happening, again and again... (Score:2, Insightful)

    by Anonymous Coward on Wednesday July 30, 2014 @12:52AM (#47563519)

    I'd bet most companies in the defense sector don't even have the level of security of a typical gaming company making the AAA titles. By the way, the secure systems can't be allowed to access even to the rest of the internal network of the company for such a separation be effective.

  • Meh. (Score:5, Insightful)

    by Etherwalk ( 681268 ) on Wednesday July 30, 2014 @01:00AM (#47563547)

    China is in a state of de facto war with every military R&D project in the world. Any defense contractor not locked down six ways from Sunday should be punished (or they should get a bonus for best practices.)

  • Gee, isn't Iron Dome supposed to be worthless? (Score:2, Insightful)

    by Applehu Akbar ( 2968043 ) on Wednesday July 30, 2014 @01:06AM (#47563571)

    Apparently the Chinese don't think so. Compared to the American liberal arts community of experts on missile defense, they must be sadly misinformed.

  • Re:Tag, you're it! (Score:5, Insightful)

    by Opportunist ( 166417 ) on Wednesday July 30, 2014 @01:37AM (#47563667)

    Why, did China start to settle on their land, too?

  • Re:Tag, you're it! (Score:3, Insightful)

    by mjwalshe ( 1680392 ) on Wednesday July 30, 2014 @04:07AM (#47564031)
    given that china also has problems with Muslim minorities is not that far fetched.

  • Re:Tag, you're it! (Score:3, Insightful)

    by Anonymous Coward on Wednesday July 30, 2014 @04:46AM (#47564123)

    nice trolling, its a prison, not a concentration camp!

  • Microsoft Iron Dome? (Score:1, Insightful)

    by lippydude ( 3635849 ) on Wednesday July 30, 2014 @05:22AM (#47564179)
    "AI was initially breached on April 16, 2012 by a series of specially crafted email phishing attacks"

    Just who in their right minds keep 'secret' files on a Windows computer?

  • Re:Tag, you're it! (Score:4, Insightful)

    by gtall ( 79522 ) on Wednesday July 30, 2014 @05:59AM (#47564317)

    No, just Tibet.

  • Re:Microsoft Iron Dome? (Score:3, Insightful)

    by Anonymous Coward on Wednesday July 30, 2014 @07:35AM (#47564563)

    What does 'specially crafted email phishing' attacks have to do with Windows?

    Convincing someone to alter settings on their machine, download a file, or process some request has little to do with the OS in question.

Slashdot Top Deals

One way to make your old car run better is to look up the price of a new model.

Close