Just in:
Hope for Respite as UAE Endorses UN Plea for Gaza Truce // First-Ever Fortune Innovation Forum Draws Top Global Leaders to Hong Kong, Promoting Agendas On Collective Cross-Sector Advancement // 2024 Lok Sabha Elections Will Be The Costliest One Till Now In The Whole World // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // Following the Money Trail: US and UK Investigate $20 Billion in USDT Transfers Tied to Sanctioned Russian Exchange // Saudi Arabia Unveils Green Financing Tool to Achieve Net-Zero Goals // Emirati Aid Reaches Ukraine as Food Shortages Bite // U.S. Compliance Takes Center Stage at OKX Following Industry Jitters // New Nylon Constant Torque Hinge From Southco Provides Position Control In A Compact Package // CABSAT 2024 Ushers in 30 Years of Media Innovation // Universal Language for Healthcare: General Authority Embraces Global Coding System // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // US reiterates concern over Kejriwal arrest, Cong accounts // No running of govt from jail, says Delhi Lt Governor // Arvind Kejriwal Was Used By BJP In 2011 Movement To Take On The Congress // Global Audience to Witness Thrill of Dubai World Cup // Samsung Partners National Heritage Board to Bring a Slice of Singapore’s Cultural Heritage to Samsung The Frame TV // Sharjah Chamber Breaks Ground on Final Expansion with New HQ Pact // Ajman Celebrates Conclusion of Ramadan Activities with Grand Ceremony // Melco Style Presents “SANRIO CHARACTERS STUDIO CITY CARNIVAL” – Explore a SANRIO World of Unlimited Love and Cuteness //
HomeBiz TechLone hacker Rasputin breaches 60 universities, federal agencies

Lone hacker Rasputin breaches 60 universities, federal agencies

1487246598 screen shot 2017 02 16 at 07 21 47

screen-shot-2017-02-16-at-07-21-47.jpg

Recorded Future

A hacker has compromised at least 60 universities and US government organizations, utilzing SQL injections as his weapon of choice.

Rasputin, believed to be a Russian hacker, is most well-known for the December 2016 attack against the US Electoral Assistance Commission through an unpatched SQL injection (SQLi) vulnerability.

ADVERTISEMENT

At the time, the hacker offered to sell access to the system to a Middle Eastern broker, and according to researchers, the hacker is also attempting to sell access to systems he has compromised in his latest round of attacks.

Rasputin’s latest victims, revealed by cybersecurity firm Recorded Future, span across both the United Kingdom and the United States.

Universities are a top target, with Cornell University, the New York University (NYU), Purdue University, Michigan State University, the Rochester Institute of Technology and the University of Washington among those affected in the US.

Over in the UK, Rasputin has also targeted academic institutions including the University of Cambridge, University of Oxford, the University of Edinburgh and the Architectural Association School of Architecture.

Rasputin has also struck the US Postal Regulatory Commission, the US Department of Housing and Urban Development, Health Resources and Services Administration and National Oceanic and Atmospheric Administration.

In addition, a number of institutions in US states have also become the victims of SQLi exploit. These include the Oklahoma State Department of Education, the Rhode Island Department of Education, Madison County, Alabama, the West Virginia Department of Environmental Protection and the Washington State Arts Commission.

Recorded Future says that SQL injection attacks are to blame. While they have been around for over a decade, “poorly programmed web applications and/or third-party software from being used by government, enterprises, and academia” are allowing cyberattackers like Rasputin to take advantage and steal valuable data or flog access credentials — especially as free tools such as Havij, Ashiyane SQL Scanner, SQL Exploiter Pro and SQLSentinel can be used to automate the identification of security vulnerabilities in these systems.

While intended for white-hat purposes, this does not stop cyberattackers exploiting every tool in their arsenal.

Rasputin was able to access the US and UK establishments by taking advantage of systems weak to SQL injection attacks. While it is not known exactly which systems have been compromised, in theory, the hacker — or those he sells access rights to — could steal private information about staff and students, intellectual property and potentially sensitive government data.

Recorded Future notified Rasputin’s targets prior to making the vulnerabilities public.

“Cyber criminals continue to find, exploit, and sell access to vulnerable databases, targeting web applications by industry vertical, as demonstrated by Rasputin’s latest victims,” Recorded Future says. “Even the most prestigious universities and US government agencies are not immune to SQLi vulnerabilities.”

“This well established, but easy-to-remediate problem (though often costly), continues to vex public and private sector organizations. Economics must be addressed to fully eradicate this issue. Despite the government’s penchant for employing sticks to modify behavior, perhaps it’s time to offer financial carrots to address and fully eradicate this issue,” the security firm added.

(via PCMag)

ADVERTISEMENT

ADVERTISEMENT
Just in:
New Nylon Constant Torque Hinge From Southco Provides Position Control In A Compact Package // U.S. Compliance Takes Center Stage at OKX Following Industry Jitters // Samsung Partners National Heritage Board to Bring a Slice of Singapore’s Cultural Heritage to Samsung The Frame TV // TUMI Hosts Global Launch Event in Singapore to Unveil Women’s Asra Collection and Announce Global Ambassador, Mun Ka Young // US reiterates concern over Kejriwal arrest, Cong accounts // Global Audience to Witness Thrill of Dubai World Cup // First-Ever Fortune Innovation Forum Draws Top Global Leaders to Hong Kong, Promoting Agendas On Collective Cross-Sector Advancement // CABSAT 2024 Ushers in 30 Years of Media Innovation // Lisboeta Macau’s world first LINE FRIENDS PRESENTS CASA DE AMIGO and BROWN & FRIENDS CAFE & BISTRO has officially opened // Hope for Respite as UAE Endorses UN Plea for Gaza Truce // Melco Style Presents “SANRIO CHARACTERS STUDIO CITY CARNIVAL” – Explore a SANRIO World of Unlimited Love and Cuteness // 2024 Lok Sabha Elections Will Be The Costliest One Till Now In The Whole World // German Job Market Resilience Bodes Well for Economic Recovery // Ingdan Announces 2023 Annual Results // Sharpening the Focus: Sharjah Health Department Refines Evaluation Criteria for “Healthy Schools Programme” // Infineon and HD Korea Shipbuilding & Offshore Engineering jointly develop ship electrification technology // No running of govt from jail, says Delhi Lt Governor // Andertoons by Mark Anderson for Thu, 28 Mar 2024 // Sharjah Chamber Breaks Ground on Final Expansion with New HQ Pact // Arvind Kejriwal Was Used By BJP In 2011 Movement To Take On The Congress //