Somewhat buried in this article about The Russian Business Network going silent is this choice statement:
Genes added that some U.S. government and Brazilian sites, which he declined to identify specifically, had been compromised through SQL (Structured Query Language) injection attacks to make them point to other RBN sites compromised with malicious software. “Maybe some government was upset by (RBN) activity,” Genes said.
Now I knew .gov security was not the greatest in the world, especially on non-TS sites but being a launch pad for Russian trojans is pretty bad. I have a feeling the government sites are always going to be behind the 8-ball here though with the difficulties in keeping pace with an ever changing threat landscape while being saddled by and amazingly slow and difficult to navigate procurement process.
If you enjoyed this post, make sure you subscribe to my RSS feed!
