Asia launches Olympic exploits at enterprise

Flame bearers relay Trojans.

A spate of Beijing Olympic phishing e-mails have been discovered which install Trojans via a Microsoft Office vulnerability.

The attacks are targeting government and enterprise organisations through a Microsoft Office database file exploit, known as an MDB file, that allows remote code execution.

Subject lines include "The Beijing 2008 Torch Relay" and "National Olympic Committee and Ticket Sales Agents".

MessageLabs senior anti virus technologist Alex Shipp said the attack could use various file formats including 1 byte XOR keys, ROR, ROL, ADD and SUB.

"These attacks are highly targeted at organisations that have highly confidential and valuable data, such as military and government bodies," he said.

"The malicious EXE file can remain undetected for several months."

MBD files are not classified as an exploit, per se, because it relies entirely on the user to execute the attachment and is not dissimilar to rank-and-file executable code.

The files can trigger a variety of programs and macros, including Active X and Visual Basic for Applications (VBA) controls, which could carry malicious content.

The attachments may be better used in a social engineering attack where the malicious code purports to be business information such as financial charts.

About 13 phishing attacks targeted at the Olympic Games have been found since December last year, according to Shipp, all which originate from a single IP address in the Asia Pacific.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Darren Pauli

Computerworld
Show Comments

Cool Tech

SanDisk MicroSDXC™ for Nintendo® Switch™

Learn more >

Breitling Superocean Heritage Chronographe 44

Learn more >

Toys for Boys

Family Friendly

Panasonic 4K UHD Blu-Ray Player and Full HD Recorder with Netflix - UBT1GL-K

Learn more >

Stocking Stuffer

Razer DeathAdder Expert Ergonomic Gaming Mouse

Learn more >

Christmas Gift Guide

Click for more ›

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Edwina Hargreaves

WD My Cloud Home

I would recommend this device for families and small businesses who want one safe place to store all their important digital content and a way to easily share it with friends, family, business partners, or customers.

Walid Mikhael

Brother QL-820NWB Professional Label Printer

It’s easy to set up, it’s compact and quiet when printing and to top if off, the print quality is excellent. This is hands down the best printer I’ve used for printing labels.

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

Featured Content

Product Launch Showcase

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?