Intel has suffered a breach that cost it twenty gigabytes of sensitive corporate intellectual property from “Intel exconfidential Lake.” CyberScoop says Intel is investigating, but that a corporate representative said, “We believe an individual with access downloaded and shared this data.”
At Black Hat yesterday, CyCraft researchers described a Chinese government threat group, Chimera, that’s successfully targeted Taiwan’s semiconductor industry. (Or “pillaged” the industry, as WIRED puts it: their goal was source code, chip designs, software development kits, and similar intellectual property.) CyCraft calls the action against chip manufacturers “Operation Skeleton Key” after its use of SkeletonKeyInjector, which implanted a skeleton key into domain controller servers for continuous lateral movement. Its ability to make direct syscalls enabled it to bypass security systems. Additionally, by making direct syscalls, the malware could bypass security systems dependent on API hooking. The operators’ principal remote access Trojan was Cobalt Strike.
The US State Department reward being offered for information concerning attempts to hack US elections has been communicated in…
