IMF hit by 'very major' cyber security attack
by hydra - BBC - Reuters Saturday, Jun 11 2011, 9:35pm
international / mass media / other press
For those still under the spell of the mis/disinformation mass media -- the MESSAGE IS CLEAR, PEOPLE ARE FIGHTING BACK! Whether on the streets of Greece and other European nations or via other means, including DIGITAL WARFARE -- THE 'MAN' is GOING DOWN. A world led by mass murdering criminal Bankers and Corporatists is completely UNACCEPTABLE. Justice will prevail as WE will PREVAIL.
We are MANY -- We are ONE -- WE are UNSTOPPABLE!
From the BBC:
The International Monetary Fund (IMF) says it has been targeted by a sophisticated cyber attack.
Officials at the fund gave few details but said the attack earlier this year had been "a very major breach" of its systems, the New York Times reports.
Cyber security officials said the hack was designed to install software to create a "digital insider presence".
The IMF, which holds sensitive economic data about many countries, said its operations were fully functional.
The cyber attack took place over several months, and happened before former IMF chief Dominique Strauss-Kahn was arrested over sexual assault charges.
"I can confirm that we are investigating an incident," said spokesman David Hawley.
"I am not in a position to elaborate further on the extent of the cyber security incident."
The New York Times said IMF staff had been told of the intrusion on Wednesday by e-mail, but that the Fund had not made a public announcement.
The e-mail warned that "suspicious file transfers" had been detected and that an investigation had shown a desktop at the Fund had been "compromised and used to access some Fund systems".
There was "no reason to believe that any personal information was sought for fraud purposes," it said.
High profile breaches
A cyber security expert told Reuters the infiltration had been a targeted attack, which installed software designed to give a nation state a "digital insider presence" at the IMF.
"The code was developed and released for this purpose," said Tom Kellerman, who has worked for the Fund.
Bloomberg quoted an unnamed security expert as saying the hackers were connected to a foreign government [rubbish] - however such attacks are very difficult to trace.
The World Bank said it briefly cut its network connection with the Fund out "an abundance of caution".
"The World Bank Group, like any other large organisation, is increasingly aware of potential threats to the security of our information system and we are constantly working to improve our defences," said spokesman Rich Mills.
The incident is the latest in a string of high profile cyber security breaches.
In April, the Sony Playstation network was shut down after hackers stole the personal data of about 100 million accounts and in May, US defence firm Lockheed Martin said it had come under a significant cyber-attack.
CIA Director Leon Panetta told the US Congress earlier this week that a large-scale cyber attack while would cripples power, finance, security and governmental systems was "a real possibility in today's world".
UPDATE 4-IMF becomes latest known target of major cyber attack
by Jim Wolf and Jim Finkle
WASHINGTON, June 11 (Reuters) - The International Monetary Fund, the intergovernmental group that oversees the global financial system and brings together 187 member nations, has become the latest known target of a significant cyber attack on its computer systems.
A cybersecruty expert who has worked for both the Washington-headquartered IMF and the World Bank, its sister institution, said the intruders' goal had been to install software that would give a nation state a "digital insider presence" on the IMF network.
Such a presence could yield a trove of non-public economic data used by the Fund to promote exchange rate stability, support balanced international trade and provide resources to remedy members' balance-of-payments crises.
"It was a targeted attack," said Tom Kellerman, who has worked for both international financial institutions and who serves on the board of a group known as the International Cyber Security Protection Alliance.
The code used in the IMF incident "was developed and released for this purpose," [well, of course it was, IDIOT!] said Kellerman, formerly responsible for cyber-intelligence within the World Bank's treasury team and now chief technolgy officer at AirPatrol, a cyber consultancy.
The attack on the IMF was the latest to become known in a rash of cyber break-ins that have targeted high-profile companies and institutions, often to steal secrets with potentially far-reaching economic implications.
IMF spokesman David Hawley said Saturday the Fund was "fully functional," despite the attack.
"I can confirm that we are investigating an incident," he said, adding that he was not in a position to elaborate on the extent of it. He declined to respond to requests for comment on Kellerman's conclusion about the intruders' goal.
The U.S. Federal Bureau of Investigation has joined an investigation of the attack on the IMF, a U.S. Defense Department spokeswoman, Lieutenant Colonel April Cunningham of the Air Force, said in an email to Reuters Saturday night.
The FBI, the government's main criminal investigative body, said it could not comment on whether it was investigating.
FOREIGN GOVERNMENT CONNECTION [rubbish.]
Bloomberg News reported the IMF's computer system was attacked by intruders "believed to be connected to a foreign government, resulting in the loss of e-mails and other documents."
The attack occurred before the May 14 arrest of former IMF Managing Director Dominique Strauss-Kahn on sexual assault charges, Bloomberg said. It did not identify a suspect government. Cybersecurity experts say it is very difficult to trace a sophisticated cyber break-in to its ultimate source.
A World Bank official said the Bank had cut its network connection with the IMF out of "caution" even though the information shared on that link was "non sensitive."
Rich Mills, a Bank spokesman, said "the World Bank Group, like any other large organization, is increasingly aware of potential threats to the security of our information system and we are constantly working to improve our defenses."
The IMF is helping deal with a European debt crisis that has led to rescue loans for Ireland, Greece and Portugal. Such bailouts often entail economic hardships.
The New York Times cited computer experts as saying the IMF had been hit during the last several months by a large and sophisticated cyber attack. The newspaper said the IMF's board of directors was told on Wednesday about the attack.
Experts say cyber threats are increasing worldwide. CIA Director Leon Panetta told the U.S. Congress this week the United States faces the "real possibility" of a crippling cyber attack.
"The next Pearl Harbor that we confront," he said, could be a cyber attack that "cripples our power systems, our grid, our security systems, our financial systems, our governmental systems."
"This is a real possibility in today's world," Panetta told a June 9 confirmation hearing in his bid to become the next U.S. defense secretary.
LOCKHEED MARTIN ATTACK
Internal IMF memos had warned employees to be on their guard.
"Last week we detected some suspicious file transfers, and the subsequent investigation established that a Fund desktop computer had been compromised and used to access some Fund systems," said a June 8 email to employees from Chief Information Officer Jonathan Palmer.
Details of the email were first reported by Bloomberg. Reuters' sources confirmed the wording of the email.
"At this point, we have no reason to believe that any personal information was sought for fraud purposes," the message to employees said.
Lockheed Martin Corp (LMT.N), the Pentagon's No. 1 supplier by sales and the biggest information technology provider to the U.S. government, disclosed two weeks ago that it had thwarted a "significant" cyberattack. It said it had become a "frequent target of adversaries around the world."
Also hit recently have been Citigroup Inc (C.N), Sony Corp (6758.T) (SNE.N) and Google (GOOG.O). [ID:nL3E7H90JQ]
The attack on Lockheed followed the compromise of "SecurID" electronic keys issued by EMC's Ltd (EMC.N) RSA Security division.
SecurIDs are widely used electronic keys to computer systems, designed to thwart hackers by requiring two passcodes: one that is fixed and another automatically generated every few seconds by the security system.
At the World Bank, they are used for remote log-ins to the network.
As an extra precaution, employees receive an automatic email each time they log in from outside, to flag the operation in case it was originated fraudulently by someone else, a World Bank staff member said.
The IMF is seeking a new head following the resignation of Strauss-Kahn after he was charged with the sexual assault of a New York hotel maid.
(Reporting by Lesley Wroughton, Jim Finkle, Jim Wolf, Jim Vicini; Editing by Peter Cooney and Todd Eastham)
Copyright applies to external text.