[21978]
November 28, 2007
TO: TECHNOLOGY COMMITTEE No. 29-07 RE: CYBER INCIDENTS SUSPECTED OF IMPACTING PRIVATE NETWORKS
The Institute has received an alert from the United States Computer Emergency Readiness Team (US-CERT) via the Financial Services Information Sharing and Analysis Center about attempts to compromise private sector networks. According to the alert there is reason to believe that these attempts are coordinated and targeted at private sector systems. Additionally, there is evidence of use of Trojan e-mails and compromised websites redirecting users to malicious sites.
The US-CERT notice lists the signatures below to help detect potential malicious activity related to this alert. Additionally, the United States Department of Homeland Security has instructed that no independent investigation of these attacks take place and that these domains not be accessed. Lastly, this information is on a “need to know” basis and not for broad dissemination.
Windowupdates.net huigezi.com huigezi.org
localhost.3322.org 3322.net 3322.org
60.248.47.52 83.149.65.105 59.33.247.30
219.150.93.35 61.129.112.73 210.11.174.71
daystar.meibu.com mylostlove1.6600.org cvnxus.8800.org
sasi.xicp.net likeyoug.9966.org jieyu007.3322.org
8866.org 9966.org 8800.org.
If you have any questions regarding this please contact the undersigned at 202-326-5869 or salmon@ici.org.
Peter G. Salmon
Director - Operations/Technology