Re: Email based attack on University

To: "ML - debian user" <debian-user@lists.debian.org>
Subject: Re: Email based attack on University
From: "Jeremy Nicoll" <jn.ml.dbn.25@letterboxes.org>
Date: Wed, 02 Oct 2019 10:40:34 +0100
Message-id: <[🔎] 54ee1ddd-6324-4f70-8517-942c4a8e63aa@www.fastmail.com>
In-reply-to: <[🔎] dc2186e3-138a-ba0e-3243-fd7766b24db2@gmail.com>
References: <[🔎] dc2186e3-138a-ba0e-3243-fd7766b24db2@gmail.com>

On Wed, 2 Oct 2019, at 10:03, Keith Bainbridge wrote:

> Details are at
> 
> https://www.abc.net.au/news/2019-10-02/anu-cyber-hack-how-personal-information-got-out/11550578
> https://www.abc.net.au/news/2019-10-02/the-sophisticated-anu-hack-that-compromised-private-details/11566540

It seems to me that everything follows from whatever access the initial 'unclicked email' malware
gave to the hackers.

But how can malware jump from an email that's not "clicked", into some part of the university's 
systems?

Unless... the email was being viewed via a webmail system running on a server not owned by the
university?

Then... is this just malware of the sort that any website could deliver to any visitor? 

Even if it was, one might expect the viewer to have been using a desktop PC of some sort, with - 
surely - whatever anti-malware software the university deems appropriate for their PCs?

Or... do all their staff use a mish-mash of personal devices, and those don't have to have any 
anti-malware apps on them?

-- 
Jeremy Nicoll - my opinions are my own.

Reply to:

Follow-Ups:
- Re: Email based attack on University
  - From: "Torben Schou Jensen" <tsj@swampthing.dk>
- Re: Email based attack on University
  - From: Henning Follmann <hfollmann@itcfollmann.com>

References:
- Email based attack on University
  - From: Keith Bainbridge <keithrbau@gmail.com>

Prev by Date: Email based attack on University
Next by Date: Re: Email based attack on University
Previous by thread: Email based attack on University
Next by thread: Re: Email based attack on University
Index(es):
- Date
- Thread