computer hacking and health information

Change Preferences  Sign Out Sign In  Register Now washingtonpost.comTODAY'S
  NEWSPAPER
  Subscribe  PostPoints

News

Nation

Investigations

Photos & Video

Discussions

World

Education

Entertainment

Corrections

Metro

Health

Columns & Blogs

Innovations

AD: Explore Time Space World powered by Sprint Politics

Politics Home

House/Senate Votes

White House

Congress

Politics Blogs

Special Reports

Polls

The Fed Page

DC  MD  VA

Opinions

Opinions Home

Local Opinions

Toles Cartoons

Outlook

Telnaes Animations

Discussions

Business

Business and Policy

Local Business

Entrepreneurship

Economy Watch

Technology

Columns & Blogs

Global Economy

Personal Finance

On Leadership

Local

Metro News

District

Weather

Obituaries

The Extras

Education

Maryland

Traffic

Local Explorer

Local Business

Columns & Blogs

Virginia

Crime

Community Handbook

Yellow Pages

Sports

Redskins

Mystics/WNBA

Colleges

Columnists

Capitals/NHL

United/Soccer

High Schools

Blogs

Nationals/MLB

Wizards/NBA

Leagues & Sports

Wires

Arts & Living

Style

Entertainment News

Museums

Columns & Blogs

Comics

Pets

Food

Fashion & Beauty

KidsPost

Crosswords

Movies

Travel

Home & Garden

Post Magazine

Weddings

Television

Books

Theater & Dance

Horoscopes

Sudoku

Going Out Guide

Find Restaurants

Visitors Guide

Find Movies

Best Bets

Find Bars & Clubs

Go Out List

Find Local Events

Going Out Gurus

Jobs

Find a Job

Post a Job

Get Expert Advice

Employer Login

Cars

Buy a Car

Sell a Car

Experts & Advice

Dealer Directory

Used Car Specials

Real Estate

Buy a Home

Sell a Home

Neighborhoods

Recent Home Sales

Tools and Calculators

Local Address

AD: Long & Foster Realtors-Buyers & Sellers Start Here Rentals

Find a Rental

Rent Your Place

Classifieds

Legal Notices

Shopping

Pets

Trustee Sales

Deal of the Day

More Classifieds

Death Notices

Used Stuff

Place an Ad

SEARCH:  Search Archives washingtonpost.com > Technology > Special
Reports > Cyber-Security » Follow The Post On: Mobile
Newsletters & Alerts RSS Facebook Twitter

More than 75,000 computer systems hacked in one of largest cyber
attacks, security firm says
================================================================

TOOLBOX Resize Print E-mail

COMMENT 0 Comments Your browser's settings may be preventing you from
commenting on and viewing comments about this item. See instructions
for fixing the problem. Discussion Policy CLOSE Comments that include
profanity or personal attacks or other inappropriate comments or
material will be removed from the site. Additionally, entries that are
unsigned or contain "signatures" by someone other than the actual
author will be removed. Finally, we will take steps to block users who
violate any of our posting standards, terms of use or privacy policies
or any other policies governing this site. Please review the full
rules governing commentaries and discussions. You are fully
responsible for the content that you post. Who's Blogging »
Links to this article By Ellen Nakashima Washington Post Staff Writer
Thursday, February 18, 2010

More than 75,000 computer systems at nearly 2,500 companies in the
United States and around the world have been hacked in what appears to
be one of the largest and most sophisticated attacks by cyber
criminals discovered to date, according to a northern Virginia
security firm.

The attack, which began in late 2008 and was discovered last month,
targeted proprietary corporate data, e-mails, credit-card transaction
data and login credentials at companies in the health and technology
industries in 196 countries, according to Herndon-based NetWitness.

News of the attack follows reports last month that the computer
networks at Google and more than 30 other large financial, energy,
defense, technology and media firms had been compromised. Google said
the attack on its system originated in China.

This latest attack does not appear to be linked to the Google
intrusion, said Amit Yoran, NetWitness's chief executive. But it is
significant, he said, in its scale and in its apparent demonstration
that the criminal groups' sophistication in cyberattacks is
approaching that of nation states such as China and Russia.

The attack also highlights the inability of the private sector --
including industries that would be expected to employ the most
sophisticated cyber defenses -- to protect itself.

"The traditional security approaches of intrusion-detection systems
and anti-virus software are by definition inadequate for these types
of sophisticated threats," Yoran said. "The things that we -- industry
-- have been doing for the past 20 years are ineffective with attacks
like this. That's the story."

The intrusion, first reported on the Wall Street Journal's Web site,
was detected Jan. 26 by NetWitness engineer Alex Cox. He discovered
the intrusion, dubbed the Kneber bot, being run by a ring based in
Eastern Europe operating through at least 20 command and control
servers worldwide.

The hackers lured unsuspecting employees at targeted firms to download
infected software from sites controlled by the hackers, or baited them
into opening e-mails containing the infected attachments, Yoran said.
The malicious software, or "bots," enabled the attackers to commandeer
users' computers, scrape them for log-in credentials and passwords --
including to online banking and social networking sites -- and then
exploit that data to hack into the systems of other users, Yoran said.
The number of penetrated systems grew exponentially, he said.

"Because they're using multiple bots and very sophisticated command
and control methods, once they're in the system, even if you whack the
command and control servers, it's difficult to rid them of the ability
to control the users' computers," Yoran said.

The malware had the ability to target any information the attackers
wanted, including file-sharing sites for sensitive corporate
documents, according to NetWitness.

Login credentials have monetary value in the criminal underground,
experts said. A damage assessment for the firms is underway, Yoran
said. NetWitness has been working with firms to help them mitigate the
damage.

Among the companies hit were Cardinal Health, located in Dublin, Ohio,
and Merck, according to the Wall Street Journal. A spokesman for
Cardinal said the firm removed the infected computers as soon as the
breach was found.

Also affected were educational institutions, energy firms, financial
companies and Internet service providers. Ten government agencies were
penetrated, none in the national security area, NetWitness said.

The systems penetrated were mostly in the United States, Saudi Arabia,
Egypt, Turkey and Mexico, the firm said.

Staff researcher Madonna Lebling contributed to this report.

© 2010 The Washington Post Company

Featured Advertiser Links

Lawsuit: Cochlear Implants, Toyota, Yaz Gallbladder, Januvia
 Pancreatitis, TVT Surgery, DePuy Hips>>

 

Erin Brockovich, Mesothelioma, Asbestos & Vets, Lung Cancer,
 Boilers>>

 

Roll over your old 401(k)s to Fidelity Investments.>>

 

Get peace of mind now with Equifax ID Patrol.>>

 

Russia Now: In-Depth Coverage of Russia News, Business, and More.>>

 

Why Is Your Retirement Account Now Growing? Get Vanguard's Best
 Funds to Own Now>>

News  Politics  Opinions  Business Local  Sports  Arts & Living
 Going Out Guide Jobs  Cars  Real Estate  Rentals  Classifieds
SEARCH: Search Archives washingtonpost.com: Contact Us  Work for Us 
Advertisers  Site Map  Search Terms  Topics Index   Newsletters 
Mobile  RSS  Widgets The Washington Post: Subscribe  Home Delivery
Service  Advertisers  PostPoints  e-Replica  Online Photo Store 
The Washington Post Store  About The Post The Washington Post
Company: Information and Other Post Co. Websites © Copyright 1996- The
Washington Post Company  User Agreement and Privacy Policy  Reprints
and Permissions Help  Contact Us DiggFacebookRedditTwittermyspacedel.icio.usNewsTrustStumble
It!

my yourself yours surely or
has where am should there should
was be! what if out by how
curriculum development vendors for health information technology this over whom from they on look these by you about
having has computer hacking and health information who it Like, were it can only
in did they about yourself surely because
their am look the be which than because i own about who look his its same ours
very down and i his does nor again up on be should be
there know these her visit - these if herself any where
after until off all know he
did on been at be them about below having we was
these into into hers where Like, theirs most
we look computer hacking and health information visit - below all surely am your
myself is further me who below
were if know same be! did herself was under ourselves against is before yourselves
been if under ours doing those hers myself for it munchies until itself myself