Home > News > Nation
Wednesday August 20, 2014 MYT 12:00:00 AM
Wednesday August 20, 2014 MYT 1:53:51 PM
by nicholas cheng
EXCLUSIVE: KUALA LUMPUR: The computers of high-ranking officials in agencies involved in the MH370 investigation were hacked and classified information was stolen.
The stolen information was allegedly being sent to a computer in China before CyberSecurity Malaysia – a Ministry of Science, Technology and Innovation agency – had the transmissions blocked and the infected machines shut down.
The national cyber security specialist agency revealed that sophisticated malware (malicious software),
disguised as a news article reporting that the missing Boeing 777 had been found, was e-mailed to the
officials on March 9, a day after the Malaysia Airlines plane vanished during its flight from Kuala Lumpur to Beijing.
Attached to the e-mail was an executable file that was made to look like a PDF document, which released the malware when a user clicked on it.
A source told The Star that officials in the Department of Civil Aviation, the National Security Council and Malaysia Airlines were among those targeted by the hacker.
“We received reports from the administrators of the agencies telling us that their network was congested with e-mail going out of their servers,” said CyberSecurity Malaysia chief executive Dr Amirudin Abdul Wahab.
“Those e-mail contained confidential data from the officials’ computers, including the minutes of meetings and classified documents. Some of these were related to the MH370 investigation.”
About 30 PCs were infected by the malware, CyberSecurity Malaysia said. It discovered that the malware was sending the information to an IP address in China and asked the Internet service provider in that region to block it.
An IP (Internet Protocol) address is a unique numerical label assigned to each device on a computer network.
“This was well-crafted malware that antivirus programs couldn’t detect. It was a very sophisticated attack,” Amirudin said.
The agency and police are working with Interpol on the incident.
CyberSecurity Malaysia suspects the motivation for the hacking was the MH370 investigation.
“At that time, there were some people accusing the Government of not releasing crucial information,” Amirudin said.
“But everything on the investigation had been disclosed.”
Flight MH370 with 239 on board went missing on March 8 about 45 minutes after take-off.
Expert: Spearphishing needs lots of planning and work
Tags / Keywords:
Courts & Crime, MH370, Spear Phishing, CyberSecurity Malaysia, Hacking, hacker
Missing MH370: Investigators conclude plane was hijacked, reports say
Missing MH370: India tells Malaysia no sign of aircraft found, sources say
Malaysia Airlines launch internal probe over Australian woman's claims
Missing MH370: Malaysia 'mystified' as no jet debris found
MH370 crash: Too soon to launch undersea search, says French investigators
Moderation sustains racial unity, harmony, says Subra
MB: No food shortage in Negri Sembilan
Cops foil attempt to smuggle in RM4mil worth of drugs
‘Practise moderation to keep extremism at bay’
Search underway for missing Italian in Sabah
Sarawak CM furious over logging in national parks
The danger of sleep deprivation
Checked baggage not free on Air Canada
Reform-minded outsider Widodo takes over as Indonesia's president
Copyright © 1995-2014 Star Publications (M) Bhd (Co No 10894-D)