We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,259 News Articles

Government hit by email attack

Trojans sent to steal sensitive information

Critical infrastructure providers in the UK are being targeted by Trojans. This week the NISCC (National Infrastructure Security Co-ordination Centre) warned that the email attacks were designed to steal sensitive information, such as passwords and documents.

Tailored attacks against UK government departments, businesses and other important organisations have been occurring for a significant period of time but according to the NISCC they have recently become more sophisticated.

The emails arrive with attachments containing so-called Trojan horse viruses, or links to websites that host Trojan files. A Trojan is an attack in which malicious code is hidden in a seemingly harmless file. They allow virus writers to gather information and remotely control infected systems.

The email subject headings have been written to appeal to recipients, often referring to recent news articles, an NISCC briefing paper said. Attacks normally focus on individuals working with commercially or economically sensitive data, it added.

The subject headers and IP (internet protocol) addresses of the emails suggests they are being sent from the Far East, according to the NISCC.

Over 300 UK government departments and businesses have been targeted in the attacks, according to antivirus firm Sophos, which has been working with the NISCC to identify the threats.

The NISCC has not revealed the specific target organisations, and it is unclear whether information has already been stolen, said Sophos security consultant Carole Theriault.

However, the NISCC said that systems compromised by the attacks pose a threat to the confidentiality, integrity and availability of stored data.

"They probably saw these Trojans, panicked and wanted to inform the public of it," Theriault said.

Aside from being directed at government departments, the Trojans aren't all that different from the email threats detected by researchers every day, according to Theriault. An increasing amount of attacks target specific types of users, and many have the ability to steal information and open backdoor capabilities, she said.

Still, the NISCC warning could serve to make computer users more aware of the sophistication and prevalence of new types of email attacks.

The NISCC advised possible recipients to update their antivirus software. It advised administrators to examine the firewall logs of critical systems for anomalous IP addresses, and review mail server access logs for evidence of connections from unusual addresses.

Further information about detecting and mitigating threats can be found at www.niscc.gov.uk/niscc/index-en.html.

IDG UK Sites

LG G4 Note UK release date and specification rumours: Samsung Galaxy Note 5 killer could be the LG 3......

IDG UK Sites

In defence of BlackBerrys

IDG UK Sites

Why we should reserve judgement on Apple ditching Helvetica in OS X/iOS for the Apple Watch's San...

IDG UK Sites

Retina 3.3GHz iMac 27in preview: Apple cuts £400 of price of Retina iMac with new model