China fingered for Afghan Govt attacks Chinese hackers have targeted nearly all major Afghanistan Government websites by hacking an official content delivery network (CDN) and gaining a foothold to attack western governments. Hackers popped the network run by the Afghan Ministry of Communications and IT which delivered malware to many of the Government's websites …
Does this means this is malware vehiculated by jpg?
Also
In the vacuum of the West's military withdrawal from Afghanistan.
HAH!
In which part of the Multiverse hasn't there been a "vacuum" during all the time "The West" has been delivering 1) humanitarian hellfire and 5.56 projectiles to peasants and passerbys, 2) freshly printed dollars to Afghan "govnm't" cronies and otherwise 3) dead Taliban storage infrastructure?
Does this means this is malware vehiculated by jpg?
In short, no.
According to the linked analysis, the attacker* took a Windows executable, XOR-'encrypted' it (to stop it from being recognised as an executable), and changed the file name to 'icon.png'.
The thing is, that executable can only be run on the victim' s system if the hostile java code is present too. It's not like you view/download some picture file and that's what compromises your system.
As always, use NoScript, make sure java is not installed, and preferably both.
*The technical analysis looks credible but, as far as blaming China, their evidence doesn't seem to go further than, 'well, China has something to gain from doing this'. Sure they do but they're not alone in that respect.
«Hackers popped the network run by the Afghan Ministry of Communications and IT which delivered malware to many of the Government's websites including the Australian embassy.» Has the Reg entirely dispensed with such antediluvian procedures as proofreading ?...
Henri
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
