Red October: Security scare has already begun . . .
- Red October Malware Spies On Governments Worldwide . . .interesting to note what systems are vulnerable. . .even though I'm pretty sure Blackberry devices aren't any more immune. . .01-14-13 12:32 PMLike 3
- Red October Malware Spies On Governments Worldwide . . .interesting to note what systems are vulnerable. . .even though I'm pretty sure Blackberry devices aren't any more immune. . .kfh227 likes this.01-14-13 01:24 PMLike 1
- notice how the canada was unaffected by the attack as i am sure the canadian government uses nothing but blackberries unlike the US which in some cases dropped blackberry in favour of ios and android and suffered a wide open attack. IMO01-14-13 01:29 PMLike 4
- Superfly_FRRetired ModeratorMicrosoft's Windows Phone, the iPhone and Nokia models are all said to be vulnerable.01-14-13 01:31 PMLike 7
-
-
- The article doesn't mention blackberry but does say it can take advantage of any device using email. . .also it states that this could have been going on for the last 5 years . . . governments have only recently been moving toward other mobile solutions so it's unclear if Blackberry is in fact susceptible . . .I don't know. . .I hope not01-14-13 03:33 PMLike 0
- The article doesn't mention blackberry but does say it can take advantage of any device using email. . .also it states that this could have been going on for the last 5 years . . . governments have only recently been moving toward other mobile solutions so it's unclear if Blackberry is in fact susceptible . . .I don't know. . .I hope not01-14-13 03:47 PMLike 7
-
The article doesn't mention blackberry but does say it can take advantage of any device using email. . .also it states that this could have been going on for the last 5 years . . . governments have only recently been moving toward other mobile solutions so it's unclear if Blackberry is in fact susceptible . . .I don't know. . .I hope not
I was reading in depth about how some of how the exploit is being done and it would seem to be mostly targeted to windows. It also seems to be exploiting very specific vulnerabilities with many different modules for specific devices.
I know very little about device security, but I do know that Blackberry phones are constantly asking users before something is installed. So I would assume the exploit would only work on a Blackberry if the user specifically clicked "Allow", to some unknown application.01-14-13 04:47 PMLike 0 - 01-14-13 05:27 PMLike 4
- Of course! I'd susidize RIM and make sure BB10 phones are awesome and dirty cheap in Canada. I'd also force them to release the BB10 phone on launch date!01-14-13 05:31 PMLike 6
- It's amazing how some of these viruses have evolved...some smart people out there. Clearly a conspiracy to overthrow the Canadian Government…it’s obvious now…sigh01-14-13 05:33 PMLike 0
- BrantaRetired Network Mod
The apparent age of the attack (ongoing 5 years) and relatively recent introduction of Android may be a factor. Other factors might include relatively low uptake of Android in government usage until very recently, and the prevalence of Blackberry under locked down BES making it a difficult target to get access and crack.01-14-13 06:09 PMLike 6 - Well this Org, is not in the business of promoting companies. Instead informing people of threats. The fact that the study centers around BlackBerrys most prominent customers "Government Agency's" Yet "Does Not" include RIM/BlackBerry in the assessment, is in fact a ringing endorsement!!Jake Storm and bungaboy like this.01-14-13 06:30 PMLike 2
- Seeing as this is from Kaspersky, and they have only one agenda, to inform of, and combat, virus' and malicious attacks, their lack of including both BlackBerry and Android devices may actually mean something. The latter probably because no government in the world would use them, and the former, probably because of it's encryption both to and from the device. I don't know for sure but if BlackBerry's were suseptable, I would assume that a completely independant body would have stated so in their press release.01-14-13 06:36 PMLike 4
- Just FYI, the exploit didn't affect UK as well. One thing these 2 countries have in common is that their governments are still pretty much 100% BlackBerry.
Last edited by VeGiTo; 01-14-13 at 09:22 PM.
01-14-13 07:12 PMLike 4 - It is clear from the reports that the dominant targets have been government and diplomatic users, and the detected distribution worldwide may be more a factor of where targeted nations have a presence. It is possible the non-detection within nations like China and Korea is due to representatives of target states in a potentially hostile environment taking more care over cybersecurity, both to reduce the risk of attack and by improved firewalls preventing outside detection of a successful attack.
The apparent age of the attack (ongoing 5 years) and relatively recent introduction of Android may be a factor. Other factors might include relatively low uptake of Android in government usage until very recently, and the prevalence of Blackberry under locked down BES making it a difficult target to get access and crack.
The only uptake of Android has been by a military channel that has taken the base OS and made it there own. It has ZERO similarity to the commercial or "enterprise" units out there. The locked down BlackBerry statement is the only place I feel you are correct, but, why haven't iPhones in business been locked down? How about WP devices? Aren't they all subject to the same limitations by their IT dept????? Come on man. That's the whole POINT!! BlackBerry units ARE MORE SECURE.Last edited by cjcampbell; 01-14-13 at 09:44 PM.
01-14-13 09:33 PMLike 4 -
- You guys are dreaming a bit. The article focuses mainly on windows and Im sure both those governments and branches use windows somewhere in their departments. To say that the lack of Red October being located inside these two countries being due to the possible reason that the governments use Blackberries is incorrect IMOSith_Apprentice likes this.01-14-13 11:18 PMLike 1
- You guys are dreaming a bit. The article focuses mainly on windows and Im sure both those governments and branches use windows somewhere in their departments. To say that the lack of Red October being located inside these two countries being due to the possible reason that the governments use Blackberries is incorrect IMO01-14-13 11:38 PMLike 0
- Superfly_FRRetired ModeratorYou guys are dreaming a bit. The article focuses mainly on windows and Im sure both those governments and branches use windows somewhere in their departments. To say that the lack of Red October being located inside these two countries being due to the possible reason that the governments use Blackberries is incorrect IMO
1/ Propagation method - in very short - seems based on a combination of several tricks, one being the execution of macros in MS Office, the other a "mobile device activation". It makes sense windows based devices are in sight and easier-to-hack devices too. Remember the hack rules
#1 : never hack all the devices (if you want to act in the shadow); make the breach with whatever is the weakest and less monitored.
#1.1 Now you're in: sniff slow (do not increase traffic volumes/access/consumption significantly).
#1.2 Scatter slowly and silently in the dark. First target : monitoring systems.
2/ Canada and UK being missed by he spy just shows that overall security level is higher there, BlackBerry devices usage being one part of that security awareness. Stating "it's due to BB that these countries are not impacted" is "for the show" IMO, yet it is partially accurate.01-15-13 02:37 AMLike 4 - Bit deeper discussion.
The "Red October" Campaign - An Advanced Cyber Espionage Network Targeting Diplomatic and Government Agencies - Securelist
This is one link I'll be sending to my director to point out this was exactly the reason I wanted us to wait for BB10 and stopped a plan to submit a request for information to go to another platform. Although it is possible that BBs are involved, the only phones mentioned are Nokia, Windows phones, and iPhones.
I've got to say....this, alongside clean BB10 phones with no issues like the 99xx bricking incidents, will be great news for RIM *inside the Beltway.* As a consumer, this won't keep me from using my iPhone or my iPad. I do not access any sensitive information on them.
And yes, as a consumer, I'll still use Instagram.01-15-13 03:07 AMLike 7 - Superfly_FRRetired ModeratorThanks for the link.
[Ibelieve(oops, I must not use this word) think you're not personally concerned, but many will]
Just a question : do you use a different password for all your accounts ?
Scenario (I'm the hacker) :
I'm in your phone and gain access to your mailbox history.
I scan the messages; I'll probably get all the services you use (due to services messages like registration, notifications, etc).
For average user, this is the end. Bank accounts, mail accounts, social accounts ... "ohhh my precious".
01-15-13 03:20 AMLike 5
- Forum
- Popular at CrackBerry
- General BlackBerry News, Discussion & Rumors
Red October: Security scare has already begun . . .
« Incorrect IP Address or password
|
[FR - Le journal du net] BlackBerry 10 is not ashamed to face competition »
Similar Threads
-
phone tells me that my BB has already been registered to another email!
By xkRoWx in forum BlackBerry 88xx SeriesReplies: 2Last Post: 07-07-09, 10:09 AM -
i dont know if anyone has already posted this error
By demonbluedays in forum BlackBerry Curve SeriesReplies: 10Last Post: 04-16-09, 05:05 PM -
Sorry if this question has already been asked to death!
By MattyVigilante in forum BlackBerry Bold SeriesReplies: 8Last Post: 02-22-09, 10:16 AM -
GPS - Sorry if this has already been addressed
By warrior062 in forum BlackBerry Storm SeriesReplies: 7Last Post: 11-20-08, 09:17 PM -
The new has already almost ran off for me. What a corp store manager told me.
By Mattsworld in forum BlackBerry Storm SeriesReplies: 68Last Post: 11-03-08, 05:47 PM
LINK TO POST COPIED TO CLIPBOARD