ironcove.net

The Register has a summary of more targeted malware attacks against the Tibetan Community and Supporters. The attack involves an email that when the flash movie is viewed it will install a keylogger on the computer. The keylogger will then record all keystrokes on the computer and send the details to a server in China.

Now I am not going to point fingers and I would like to do some more research into these attacks and the possible origins. Remember just because it appears the attacks are coming from China nothing is certain, as this could as easily be a bored teenager in the USA who compromised a server in China or it could be something more sinister.

It does highlight however the importance of secure internet and computing facilities in any organization or movement.

Read the article here for a summary and there is a good technical blog with more details here.

Executing the file, called RaceForTibet.exe, shows a cartoon with a very skilled Chinese gymnast performing some amazingly convoluted exercise on a “vaulting Bbox” for which the jury immediately scored her a shocking 0! Whilst the gymnast’s performance is “re-wound,” a number of fairly stark photographs of real events, taking place throughout China and Tibet, are shown as a flashback.

http://www.theregister.co.uk/2008/04/15/pro_tibet_trojan/
http://www.avertlabs.com/research/blog/index.php/2008/04/14/is-malware-writing-the-next-olympic-event
http://www.avertlabs.com/research/blog/index.php/2008/03/11/social-engineering-tricks-use-tibet-to-lure-victims/
http://www.avertlabs.com/research/blog/index.php/2008/04/10/friebet-attacking-your-backend-database-from-your-backyard/