U.S. Department of State: Response to May-July 2006 Cyber Intrusion on Department of State Computer Network

Excerpt:
"At this point, without full knowledge of how the exploit worked and not wanting to exacerbate the situation, network operations staff was directed to block communications to suspect external IPs and the information system security officer at post was directed to remove the infected devices from the network. In fact, we dispatched an overseas cyber security engineer to the post and began a detailed, on-site analysis of the infected computers. We also reported the malicious activity to US CERT at the Department of Homeland Security."

http://www.state.gov/m/ds/rls/rm/83256.htm

Alex

Sphere: Related Content