A new version of malware is targeting Defense Department smart cards.
AlienVault Labs said it has found evidence of a trojan that tries to compromise the standard authentication cards, by working its way into the card readers, Info Security Magazine reports. It uses a keylogger to steal the smart card PIN numbers in targeted email phishing attacks. It then allows the hacker to access sensitive information remotely when the user swipes in.
DoD uses the cards to ID active duty military staff, reserve personnel, civilian employees, and contractors. Infosecurity reports, AlienVault labs have detected the malware may have originated in China.
This story is part of Federal News Radio’s daily Cybersecurity Update. For more cybersecurity news, click here.
Tom Temin is the host of The Federal Drive, 6 a.m.-10 a.m. on 1500 AM in the Washington, D.C. region and online everywhere.
Tom also writes a weekly commentary. Subscribe to Federal Drive's daily audio interviews on iTunes or PodcastOne