Joint Information Bulletin - Look Before You Click Trojan Horses …

Short Description
users and networks is email with concealed Trojan Horse … espionage — Trojan Horse programs had been installed on computers of some of the country’s …

Website: www.us-cert.gov | Filesize: 357kb

Content
UNCLASSIFIED
UNCLASSIFIED
Joint Information Bulletin
United States Department of Homeland Security
(U) Look Before You Click: Trojan Horses
And Other Attempts To Compromise Networks
21 December 2005
(U) ATTENTION: Federal Departments and Agencies, State Homeland Security
Advisors, Security Managers, State and Local Law Enforcement, International Partners,
and Information Sharing and Analysis Centers.
(U) DISTRIBUTION NOTICE: Secondary release, dissemination, or sharing of
this product is authorized.
(U) This is a Joint Information Bulletin produced by DHS and the Department of State
Bureau of Diplomatic Security, Office of Computer Security.
(U) KEY FINDINGS
(U) According to industry security experts, the biggest security vulnerability facing computer
users and networks is email with concealed Trojan Horse software-destructive programs that
masquerade as benign applications and embedded links to ostensibly innocent websites that
download malicious code. While firewall architecture blocks direct attacks, email provides a
vulnerable route into an organization’s internal network through which attackers can destroy
or steal information.
? (U) Attackers try to circumvent technical blocks to the installation of malicious code by
using social engineering-getting computer users to unwittingly take actions that allow
the code to be installed and organization data to be compromised….