Windows 7: Chinese using malware to attack US DoD smart card security

A Guy · 14 Jan 2012

Quote:

AlienVault found evidence of Chinese-originated attacks against the US government agencies including the US Department of Defense (DoD), which use a new strain of the Sykipot malware to compromise DoD smart cards.

One of the original versions of Sykipot was a Trojan horse application that opened a backdoor into the infected PCs. According to Jaime Blasco, AlienVault’s Lab manager, this latest generation of diversified attacks may have been occurring as far back as March of last year, if not longer.

“This is the first report of Sykipot being used to compromise smart cards, and this latest version of the malware has been designed specifically to take advantage of smart card readers running ActivClient - the client application of ActivIdentity, whose smart cards are standardized at the DoD and a number of other US government agencies,” he said.

Source

A Guy

Layback Bear · 17 Jan 2012

I keep thinking every time I read about the DoD being hit with a virus I keep thinking it's a inside job. Someone with access to the system with a infected smart card installs the virus. What I don't understand is why the security on the system doesn't catch the virus sooner? Why their isn't a scan first of anything that is going to be plugged into the system? Could someone tell me if the virus can be traced back to the computer this virus started from: It's a very large network.
http://www.dtic.mil/whs/directives/c...DTM-09-026.pdf
Reading some of this indicates to me that someone isn't following the rules and regulations. Do we have another Walker family in the DoD?

Windows 7: Chinese using malware to attack US DoD smart card security

Chinese using malware to attack US DoD smart card security problems?