U.S. government departments and agencies hit by the ZeuS trojan

Last Updated on Friday, 19 February 2010 07:16 Written by Jeffreycarr Friday, 19 February 2010 07:16

The following is a partial list of U.S. government agencies, departments, and offices which were targeted in the Zeus spear phishing attack that spoofed my email address. I pulled these names from the “Out of Office” replies that I received on the day of the attack. Since my email address was used, the OOF came straight to me.

As you read this list, please keep in mind two important things:

1. Anti-virus engines are almost completely useless is stopping the zbot trojan.

2. Once a computer has been infected, the executable program collects usernames and passwords, steals documents, and enables remote access of the host computer.

Again, this is only a partial list focusing solely on the United States government. Many more nations and departments received these emails.

Executive Office of the President
Office of the U.S. Trade Representative
US Agency for International Development
Dept of Agriculture
Department of the Interior
Department of Transportation
Federal Aviation Administration
Department of State
Department of Justice
US Marine Corps
Marine Corps Intelligence Activity
US Navy
Advanced Traceability and Control Program
Department of Defense
US Joint Forces Command
White House Military Office
Defense Logistics Agency
Defense Security Service
US Pacific Command
Joint IED Defeat Organization
Defense Logistics Agency
Defense Intelligence Agency
Defense Finance and Accounting Service

A complete list of affected offices in the U.S. and other countries as well as an analysis of the malware used is in this week’s IntelFusion FLASH Traffic, GreyLogic’s cyber intelligence weekly brief.

The DoD’s Information Assurance Policy Chart

Last Updated on Thursday, 17 December 2009 10:21 Written by Jeffreycarr Thursday, 17 December 2009 10:21

Click on the chart to download the full PDF file with links to all policies.

This chart has been prepared by the IATAC and made available for public release. They ask that if you know of any policy updates that may not be properly reflected on the IA Policy Chart or any suggestions to improve the chart, to send suggestions, comments or questions about the chart to IATAC@dtic.mil. If you have questions about the content of any particular policy, please contact the POC for that policy directly.

The GAO determines that the DoD is vulnerable to power disruptions on the commercial grid

Last Updated on Monday, 26 October 2009 09:56 Written by Jeffreycarr Monday, 26 October 2009 09:55

Not that we needed another reason to launch an investigation into the vulnerability of the electric grid, but here’s another reason for you:

DOD’s most critical assets are vulnerable to disruptions in electrical power supplies, but DOD lacks sufficient information to determine the full extent of the risks and vulnerabilities these assets face. All 34 of these most critical assets require electricity continuously to support their military missions, and 31 of them rely on commercial power grids–which the Defense Science Board Task Force on DOD Energy Strategy has characterized as increasingly fragile and vulnerable–as their primary source of electricity.

So 31 out of 34 of our nation’s most critical assets rely on a Grid controlled by private interests who cannot be trusted to provide accurate information about the state of their security.

You can download the public version of the report here, and a classified copy has also been prepared, according to the GAO.