Opening the email that was used to hack RSA
Loading...
Uploaded by fslabs on Aug 26, 2011
In this video you can see us opening the very email that was used to break into RSA / EMC in March 2011. The email is opened to Outlook and the attachment is launched. The attachment is an XLS file which has no content except an embedded flash object. The object shows up as a [X] symbol in the spreadsheet. Flash is executed by Excel and it uses the CVE-2011-0609 vulnerability to execute code and to drop a Poison Ivy backdoor to the system. After this, the exploit code closes Excel and the infection is over. After this, the attacker has full remote access to the infected workstation and full access to network drives that the user can access. Video done by F-Secure Labs
- 24 likes, 1 dislikes
-
Top Comments
All Comments (14)
-
@newlookmedia You've lost your mind bro ._.
-
That's what I've just sad !
This video is just reconstruction of behavior of email and user.
So! What does this user (F-secure worker) done ? NOTHING!
He or she must IGNORE this suspicious behavior and let this thing work in their internal network for next few days. Until someone discovered security break.
So !?
Is it possible? In fully secured company which workers live from building security software or ..
.. someone trying to feed us some shit to cover real circumstances of
-
@newlookmedia What are you talking about? They're opening the mail in a sandboxed instance of windows, to show what happens when you open the file (which is nothing).
-
Ten film to lipa!
Gdzie w firmie zajmującej się ochroną antywirusową ten kto odebrał takiego maila zignorował by takie zachowanie arkusza !
Lepiej æeby poszukali sobie pracy na farmie na nie robili oprogramowanie do ochrony danych.
This video is FAKE !
If not then they must fire all F-secure workers and close company.
People who call themselfs security specialist and ignore that kind behavior ???!!!
They better look for jobs in farm! Not to sell security software.
-
@stupidjunk978 Ur grandma would get a computer virus from the ATM at the Mall
-
FS Labs sucks. XP Suck at security.
-
security is a dream?! no wonder we got all our RSA token replaced.
It is really funny, our IT shipped my colleague's token to me. Well, he got a token that was undocumented!!! The final solution was that we exchanged the token and our IT reassigned the undocumented token to me. LOL.
- 5:29
F-Secure Internet Security 2011by isidornetwork2,660 views
- 0:30
How To Hack Email Passwords - Email Password Crackerby wllowl117,255 views
- 1:45
Prizerebel Hack 1.0 NEW!!!by TheEric7856,951 views
- 1:38
F-SECURE INTERNET- SECURITY 2011 PLUS crack hack(valid for lifetime)by Tameka6443,224 views
- 1:10
Hack your friends pc (tutorial)by JulioCesarGarcia12387,438 views
- 4:28
Hitler and Cloud Computing Securityby gwcstudio139,148 views
- 0:32
lyoto machida's crane kickby MrMmakos88,281 views
- 6:38
Hacking: How To Forge Emailsby h4cksandtutorials1,885 views
- 9:30
Poison Ivy Tutorialby littlesmokie169,728 views
- 7:46
How to hack Wireless password with Ubuntu 10.10 Maverickby ThePegel54,289 views
- 1:54
Email Hackby HarryPotterOrPokemon6,673 views
- 7:22
How to Hack Emailby InternetTutorialGuru7,809 views
- 2:55
WEB MAIL HACK v 2.3 FREE DOWNLOADby AlexaMendala5,721 views
- 4:18
Malware Infecting a PCby Enigmasoftware3,038 views
- 0:32
KLM 747 Extremely Low Approach Into St. Maartenby jetlinersdotnet3,854 views
- 0:43
Lança Cuba Lançaby Gersonho2,600 views
- 4:01
Extreme Apartment Attic Internet Hack Attack! HowTo Hackby carmichael34341,902 views
- 0:32
Sukita A festaby chimbica91245,748 views
- 7:55
How to Hack Any Password (Facebook, Email, WiFi, YouTube and More - )by lisafpugliese1,249 views
- 6:46
Jackulator - Crazy Jack Willy Dickby Jackulator90003,185 views
Man, RSA are such noobs.
pathduck 6 months ago 16
LOL, RSA fell for a scam that even my grandmother wouldn't be suckered in to. Poor practice indeed.
stupidjunk978 6 months ago 10