ironcove.net

Over the past few days there have been a number of reports in the mainstream media about targetted Information Warfare attacks against the Tibetan NGO community. These attacks are attempts by a third party (I wonder who that could be) to send malicious emails to various members of these communites. If these attacks succeed then the victim’s computer could end up with Keyloggers and other trojans that would allow the third party access to everything typed on the infected system and full control of the PC.

The Sans Internet Storm Centre has a good technical summary and another here, while other news agencies such as the Washington Post and the Register have more general information.

I urge all NGO’s to be aware of the dangers of having an insecure computer and policies.

Things you can do stay secure:

* Always update your software (Update Operating Systems and Applications), everything from Ubuntu updates, Windowsupdate to Adobe Reader updates and flash player updates. All your software needs to stay updated. Now if this means buying new licenses please consider the alternatives.
* Beware of opening attachments - are you expecting it if not use caution. Even if they appear to come from someone you know.
* Use strong passwords on all your systems and websites and try not to use the same password everywhere!
* Use virus scanning software and keep it updated (especially important if you use the Microsoft Windows Operating System

Sans Internet Storm Centre - Article 1
Sans Internet Storm Centre - Article 2