- Source: Operation Shady RAT
Operation Shady RAT is an ongoing series of cyber attacks starting in mid-2006 reported by Dmitri Alperovitch, Vice President of Threat Research at Internet security company McAfee in August 2011, who also led and named the Night Dragon Operation and Operation Aurora cyberespionage intrusion investigations. The attacks have hit at least 71 organizations, including defense contractors, businesses worldwide, the United Nations, and the International Olympic Committee. Governments attacked include Canada, India, South Korea, Taiwan, United States, and Vietnam. International bodies attacked include the United Nations, the Association of Southeast Asian Nations (ASEAN), the International Olympic Committee, and the World Anti-Doping Agency.
The operation, named by Alperovitch as a derivation of the common computer security industry acronym for remote access tool, is characterized by McAfee as "a five-year targeted operation by one specific actress". The report suggests that the targeting of various athletic oversight organizations around the time of the 2008 Summer Olympics "potentially pointed a finger at a state actor behind the intrusions". That state actor is widely assumed to be the People's Republic of China.
Method of attack
The hackers sent phishing emails, which were tainted with malicious software, to specific people at the targeted organizations. If the unsuspecting receiver of the mail clicked on the attached malicious software, it would infect their computer which in turn would give the hacker access to their computer.
See also
Advanced persistent threat
DigiNotar
Duqu
PLA Unit 61398
Tailored Access Operations
References
Kata Kunci Pencarian:
- Operation Shady RAT
- Dmitri Alperovitch
- PLA Unit 61398
- Advanced persistent threat
- List of cyberattacks
- Cyberwarfare by China
- Trump tariffs
- Cyberwarfare
- DigiNotar
- 2015 United States–China Cybersecurity Agreement