November 24, 2024

Australian Central Bank Hit by Cyberattack

The central bank, the Reserve Bank of Australia, was responding to a report in a newspaper, The Australian Financial Review, that said the central bank had been repeatedly and successfully hacked and information stolen.

“As reported in today’s media, the bank has on occasion been the target of cyber attacks,” the central bank said in a news release. “The bank has comprehensive security arrangements in place which have isolated these attacks and ensured that viruses have not been spread across the bank’s network or systems.

“At no point have these attacks caused the bank’s data or information to be lost or its systems to be corrupted.”

Hacking attacks on governments and corporations have become common, with analysts casting suspicion on China as the source of much of the activity. Beijing has repeatedly denied accusations that it is behind the attacks, saying it, too, is a victim of hacking, particularly from the United States.

The Australian central bank said it routinely consulted with the Defense Signals Directorate, the Australian intelligence agency, to ensure the security of its systems.

Reports released under the Australian Freedom of Information Act showed that the central bank had been the subject of a malicious e-mail attack Nov. 16 and 17, 2011, using a virus that was undetectable by the bank’s anti-virus software.

An e-mail titled “Strategic Planning FY2012” was sent to several members of the central bank’s staff, in ranks as high as department head, and was opened by six of them, potentially compromising their workstations. The e-mail purported to come from a senior staff member at the bank and came from a “possibly legitimate” external account.

The e-mails contained a compressed file with an executable “malware,” or malicious software, application, although the bank would not identify the virus used.

None of the six workstations affected had local administrator rights, which prevented the virus from spreading. The servers were considered compromised and were removed from the network Nov. 17.

“The e-mail had managed to bypass the existing security controls in place for malicious e-mails by being well written, targeted to specific bank staff and utilized an embedded hyperlink to the virus payload which differs from the usual attack whereby the virus is attached directly to the e-mail,” according the central bank’s report on the incident.

“Bank assets could have been potentially compromised, leading to service disruption, information loss and reputation,” the report noted.

The bank took the issue to the providers of its anti-virus software to update its defenses, including scanning for hyperlinks in e-mails and automatically blocking them.

As well as the attempted hacking, the central bank documents also listed a number of potentially embarrassing incidents, including lost laptops and BlackBerrys and the e-mailing of sensitive documents by mistake.

In one incident, a folder containing confidential information was left on the back of an office car by a distracted staff member. When the staff member drove away, a passing motorist raised the alarm that papers had scattered across the road.Most of the papers were recovered after an hour of searching, although some were thought lost in a stormwater drain, “resulting in moderate reputational risk to the bank,” the report said.

Article source: http://www.nytimes.com/2013/03/12/technology/australian-central-bank-hit-by-cyberattack.html?partner=rss&emc=rss

Guatemala to Deport McAfee to U.S.

McAfee, 67, had been held for a week in Guatemala, where he surfaced after evading police in Belize for nearly a month following the killing of American Gregory Faull, his neighbour on the Caribbean island of Ambergris Caye.

A Reuters witness saw McAfee’s plane bound for Miami leaving Guatemala City just before 3:40 p.m. (9:40 p.m. British time). The flight is scheduled to arrive in Miami at 7:10 p.m. (12:10 a.m. British time Thursday).

The goateed McAfee has led the world’s media on a game of online hide-and-seek in Belize and Guatemala since he fled after Faull’s death, peppering the Internet with pithy quotes and colourful revelations about his unpredictable life.

“I’m happy to be going home,” McAfee, dressed in a black suit, told reporters shortly before his departure from Guatemala City airport on Wednesday afternoon. “I’ve been running through jungles and rivers and oceans and I think I need to rest for a while. And I’ve been in jail for seven days.”

Police in Belize want to quiz McAfee as a “person of interest” in Faull’s death, although the technology guru’s lawyers blocked an attempt by Guatemala to send him back there.

Authorities in Belize say he is not a prime suspect in the investigation. McAfee has denied any role in Faull’s killing.

Guatemala’s immigration authorities had been holding McAfee since he was arrested last Wednesday for illegally entering the country with his 20-year-old Belizean girlfriend.

The eccentric tech pioneer, who made his fortune from the anti-virus software bearing his name, has been chronicling life on the run in a blog, www.whoismcafee.com.

He said he had no immediate plans after reaching Florida.

“I’m just going to hang in Miami for a while. I like Miami,” he told Reuters by telephone just before his plane left. “There is a great sushi place there and I really like sushi.”

BELIZE STILL WAITING

Residents of the Belizean island of Ambergris Caye, where McAfee has lived for about four years, said McAfee and Faull, 52, had quarrelled at times, including over McAfee’s unruly dogs.

McAfee says Belize authorities will kill him if he turns himself in for questioning. He has said he was being persecuted by Belize’s ruling party for refusing to pay some $2 million in bribes.

Belize’s prime minister has rejected the allegations, calling McAfee paranoid and “bonkers.” [ID:nL1E8MEE1R]

Belize police spokesman Raphael Martinez said the country still wanted to question McAfee about the Faull case.

“He will be just under the goodwill of the United States of America. He is still a person of interest, but a U.S. national has been killed and he has been somewhat implicated in that murder. People want him to answer some questions,” he said.

Martinez noted that Belize’s extradition treaty with the United States extended only to suspected criminals, a designation that did not currently apply to McAfee.

“Right now, we don’t have enough information to change his status from person of interest to suspect,” he said.

Residents and neighbours on Ambergris Caye said McAfee was unusual and at times unstable. He was seen to travel with armed bodyguards, sporting a pistol tucked into his belt.

The predicament of McAfee, a former Lockheed systems consultant, is a far cry from his heyday in the late 1980s, when he started McAfee Associates. McAfee has no relationship now with the company, which was sold to Intel Corp.

McAfee was previously charged in Belize with possession of illegal firearms, and police had raided his property on suspicions that he was running a lab to produce illegal synthetic narcotics. He said he had not taken drugs since 1983.

“I took drugs constantly, 24 hours of the day. I took them for years and years. I was the worst drug abuser on the planet,” he told Reuters before his arrest in Guatemala. “Then I finally went to Alcoholics Anonymous, and that was the end of it.”

(Writing by Dave Graham and Michael O’Boyle; Editing by Peter Cooney)

Article source: http://www.nytimes.com/reuters/2012/12/12/world/americas/12reuters-belize-mcafee.html?partner=rss&emc=rss