Ongoing attacks against oil tankers

Ongoing attacks against oil tankers

This post is also available in: heעברית (Hebrew)

23498588_mA new report details a malicious and largely unknown targeted attacks on oil tankers. First discovered in January 2014, the ongoing attacks on oil cargos began in August 2013, and is designed to steal information and credentials for defrauding oil brokers. Despite having been compromised by this cyber-attacks, which has been dubbed the “Phantom Menace,” none of the dozens of affected companies have been willing to report the invasion and risk global attention for vulnerabilities in their IT security networks.

Panda Security has released Operation Oil Tanker: The Phantom Menace, a report which details a malicious and largely unknown targeted attacks on oil tankers. First discovered by Panda Security in January 2014, the ongoing attacks on oil cargos began in August 2013, and is designed to steal information and credentials for defrauding oil brokers. Despite having been compromised by this cyber-attacks, which Panda has dubbed the “Phantom Menace,” none of the dozens of affected companies have been willing to report the invasion and risk global attention for vulnerabilities in their IT security networks. Panda Security said it is issuing its report in an effort to draw attention to the attacks and urge companies in every industry to take precautions against these increasingly sophisticated and insidious attacks.

According t o HomeLand Security News Wire , the Phantom Menace is one of the most unique attacks that PandaLabs has discovered. No antivirus engine was able to detect it when first triggered, primarily because the attackers used legitimate tools in conjunction with a number of self-made scripts to bypass any warnings that traditional AV software would detect. It was only discovered when a secretary opened a nonspecific attachment to an e-mail — a type of file that Panda Security would later identify among ten different companies in the oil and gas maritime transportation sector.

Panda Security says it ready to identify the individual to authorities, but without any credible reports being volunteered by the alleged victims, the authorities are unable to launch their investigations or make any arrests. Panda Security says it hopes the release of its report will shed light on the potential damage of the Phantom Menace and encourage companies to take the necessary steps against the perpetrator.

SIMILAR ARTICLES