Malware Blamed in Latest SAIC Breach
Via The Office of Inadequate Security.
Science Applications International Corporation ("SAIC"), recipient of a number of large government contracts, notified [.pdf] the New Hampshire Attorney General on December 9th of a security breach involving malware. The specific malware was not named, but was described as "designed to provide backdoor access."
If their description and explanation sounds familiar, it may be because SAIC had another breach almost a year ago where malware (a keylogger) also evaded their detection system. In that breach, it was mostly corporate account data at risk. The nature of the data in this most recent incident is of more concern due to its security implications.