Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hackers Plundered Israeli Defense Firms That Built 'Iron Dome' Missile Defense

Posted by Soulskill on from the intercepting-missiles-is-easier-than-learning-not-to-click-on-attachments dept.

An anonymous reader writes: Brian Krebs reports on information from Columbia, Md.-based threat intelligence firm Cyber Engineering Services Inc. that attackers thought to be operating out of China hacked into the corporate networks of three top Israeli defense technology companies. The attackers were seeking technical documents related to Iron Dome, Israel's air defense system. "IAI was initially breached on April 16, 2012 by a series of specially crafted email phishing attacks. ... Once inside the IAI’s network, [the attackers] spent the next four months in 2012 using their access to install various tools and trojan horse programs on systems throughout company’s network and expanding their access to sensitive files, CyberESI said. The actors compromised privileged credentials, dumped password hashes, and gathered system, file, and network information for several systems. The actors also successfully used tools to dump Active Directory data from domain controllers on at least two different domains on the IAI’s network. All told, CyberESI was able to identify and acquire more than 700 files — totaling 762 MB total size — that were exfiltrated from IAI’s network during the compromise. The security firm said most of the data acquired was intellectual property and likely represented only a small portion of the entire data loss by IAI." Most of the stolen material pertained to Arrow III missiles, UAVs, and ballistic rockets.

10 of 184 comments (clear)

  1. And it'll keep happening, again and again... by TWX · · Score: 3, Insightful

    ...until software and systems security is finally taken seriously. That may mean corporate LANs interconnected between sites by leased private fiber, where ther entire computer system for the company is not able to even reach the public Internet. That may mean that users have separate systems, one for internal communication within the company, and one for external communication to outsiders. That may also mean that companies stop allowing anything sensitive on public-reachable computers, and it might even mean that corporate IT departments have to look at hardware that doesn't allow for secure computers to even plug into regular, public networks, and for those 'regular' networks to be highly monitored and partially locked-down as to what IP ranges (and countries) can even be communicated with.

    I can tell you one thing, if such a system were implemented there'd probably be an uptick in efficiency as now it'd be a lot harder to screw around at work. Sure, a lot of people would be really pissed that they can't do non-work tasks at work without using a system seeing such monitoring too, but given that salaries in the defense sector are generally pretty good, that's a tradeoff that one could probably stomach.

    --
    Do not look into laser with remaining eye.
    1. Re:And it'll keep happening, again and again... by Anonymous Coward · · Score: 2, Insightful

      I'd bet most companies in the defense sector don't even have the level of security of a typical gaming company making the AAA titles. By the way, the secure systems can't be allowed to access even to the rest of the internal network of the company for such a separation be effective.

  2. Meh. by Etherwalk · · Score: 4, Insightful

    China is in a state of de facto war with every military R&D project in the world. Any defense contractor not locked down six ways from Sunday should be punished (or they should get a bonus for best practices.)

  3. Gee, isn't Iron Dome supposed to be worthless? by Applehu+Akbar · · Score: 1, Insightful

    Apparently the Chinese don't think so. Compared to the American liberal arts community of experts on missile defense, they must be sadly misinformed.

  4. Re:Tag, you're it! by Opportunist · · Score: 5, Insightful

    Why, did China start to settle on their land, too?

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  5. Re:Tag, you're it! by mjwalshe · · Score: 2, Insightful

    given that china also has problems with Muslim minorities is not that far fetched.

  6. Re:Tag, you're it! by Anonymous Coward · · Score: 3, Insightful

    nice trolling, its a prison, not a concentration camp!

  7. Microsoft Iron Dome? by lippydude · · Score: 1, Insightful

    "AI was initially breached on April 16, 2012 by a series of specially crafted email phishing attacks"

    Just who in their right minds keep 'secret' files on a Windows computer?

    1. Re:Microsoft Iron Dome? by Anonymous Coward · · Score: 3, Insightful

      What does 'specially crafted email phishing' attacks have to do with Windows?

      Convincing someone to alter settings on their machine, download a file, or process some request has little to do with the OS in question.

  8. Re:Tag, you're it! by gtall · · Score: 3, Insightful

    No, just Tibet.