Codebreaker

Threat level goes from orange to malware

Marc Sanchez Aug 17, 2012

Security firm Trusteer says it has uncovered malware on an airport computer system. It’s unclear if the motives behind the attack were for money or more nefarious reasons, and Trusteer won’t say which airport was attacked.

Business Week has the details:

The attack used Citadel Trojan malware—which computer users can unknowingly install simply by clicking on a Web link—to read the screens of employees who logged in remotely to the airport’s virtual private network (VPN). It also allowed the cybercriminals to capture the username, password, and one-time passcode of the victims with a form-grabbing technology, according to Trusteer. With the employee’s credentials in hand, the hackers would have unlimited access to the airport computer system’s software to the extent the worker’s account would allow.

Trustee says VPN access was immediately cut off after the breach was discovered.

There’s a lot happening in the world.  Through it all, Marketplace is here for you. 

You rely on Marketplace to break down the world’s events and tell you how it affects you in a fact-based, approachable way. We rely on your financial support to keep making that possible. 

Your donation today powers the independent journalism that you rely on. For just $5/month, you can help sustain Marketplace so we can keep reporting on the things that matter to you.