09/7/11

Chinese researchers finished the “AK47”of cyber warfare

I got this bit of information sent to my web mail for this site..from tiger.autumn@chinamail.com. Thank you Tiger Autumn, this is what the Chinese are doing and for some reason want me to spread the news of their capabilities so here it is hope this helps.

The researchers from Department of Computer Science ,Shanghai Jiaotong University have developped the high performance simulation machine for cyber warfare . It is a highly cost-effective simulation machine with 10 Gigabit throughput. It can shoot more than 14 million per second HTTP requests or more than 14 million per second DNS queries.

This machine has a variety of operation mode, can shoot flood-type network flow to single or multiple targets, It will crackdown the target system crash in the tens of seconds , because the external request is over the ability of targets , cause the target system crashed and have to interrupt the service. Especially for the DNS server in the central of internet it can shoot the flood-type request to crackdown the DNS server crashed, cause the whole network of one target country can’t be accessed .

The simulation machine is simple, easy development and maintenance , updates quickly, especially with a lower price. Compared foreign products which has the the same performance this simulation machine has more cost-effective advantage, it is called “AK47”of cyber warfare by the china researchers . It can be widely equipped for China network operation team , so it will help china network operation team occupy a advantage position in the future of cyber warfare.

Perfect Storm 2012

Product Briefing:

One Multi-Core Embedded CPU
8 GB MEMORY
Two 10Gbps Ethernet SPF+ Socket
Two GbE SPF Socket	For interconnect for system management and Cluster
4Gb Compact Flash Card	For Boot Image and Save data Record
Two SATA-II sockets
1U Box

Performance Indicators:

10 Gbps throughput

14M pps TCP Concurrent Connection

14M pps HTTP GET or POST Concurrent requests

14M pps DNS UDP Concurrent query requests

14M simulation IP address or every IP address with 60000 ports

Support IP v4 and IP v6

Release Date?September , 30 , 2012 in ShangHai , China

07/1/11

US – China Cyber Detente or Confrontation? – IEEE Spectrum

“Senior U.S. officials know well that the government of China is systematically attacking the computer networks of the U.S. government and American corporations. Beijing is successfully stealing research and development, software source code, manufacturing know how and government plans. In a global competition among knowledge-based economies, Chinese cyber operations are eroding America’s advantage.”

via US – China Cyber Detente or Confrontation? – IEEE Spectrum.

06/29/11

China sets up “Online Blue Army”

Chinese military has set up ”Online Blue Army”, a dedicated web network aimed to beef up internet security of its defence installations from cyber attacks.

The “Online Blue Army” is based on the Peoples Liberation Army, PLA needs and enforcing the ability of Internet security protection is an important issue in its military training programs, Chinese Defence Ministry spokesman Geng Yansheng said.

Gengs comments came in response to questions if the “Online Blue Army” is Chinas Internet squad aimed at carrying out attacks on other countries Internet systems, state run Peoples Daily reported. Geng said his country will not carry out cyber wars.

The PLA Daily had reported PLAs Guangzhou command had invested tens of millions of yuan in building the specialized Internet squad.

Geng said Internet security has become an international concern which affects not only the society but the military sector, adding that China, armed with comparatively lax online security protection is among the victims of Internet attacks.

The Daily said internationally, online military units have long been established. The United States destroyed Iraq’s air defence system using PC viruses during the Gulf War in 1991. Thereafter, the online army of the United States also played major roles in the wars in Kosovo and Iraq.

In addition to the United States, UK, Russia, Japan and India have established their online military units, Peoples Daily report said.

Li Li, a military expert at the National Defence University, said that compared with online military units of Western countries, China’s “Online Blue Army” is currently at its fledging period, and is more like an online manoeuvre mode than an organic, large-scale online army.

Zhang Shaozhong, a military expert and a professor from the PLA National Defence University, pointed out that though China’s dependence on the Internet is increasing, the root servers are not based in China.

In addition, various types of Internet hardware in China are made in the United States, including many types of software.

In this sense, China is only a computer “user,” and China’s Internet security is very fragile, he said.

“Just like the army and air forces, the ‘online blue army’ is a historical necessity. The reason is very simple.

“We must adapt to the new types of warfare in the information era. The ‘online blue army’ is of great strategic significance to China’s economic development and social stability,” Teng Jianqun, a research fellow at the China Institute of International Studies, said.

via China sets up “Online Blue Army”.

06/12/11

The Alarming Growth of Global Cyber Menace – Hacking | Asian Tribune

When gmail accounts of some of the US state officials were hacked two weeks ago, the Defence Department categorized any serious cyber attack, as an act of war. Since Google had tracked down the source of the attack to a certain province in China, it was all too clear that the Pentagon was not beating about the bush while taking the cyber threat seriously. The gmail attack came hot on the heels of another high-profile attack – Lockheed Martin Corporation, the high-tech defence firm.Having been annoyed by implicit accusation, China hit back at Google by warning that the company would face the music, if it accused the Chinese government of covert involvement.

The disturbing cyber nuisance did not end there. The servers of

Sony

, the entertainment giant, were subjected to two successive hacking within a matter of days. On the first occasion – the more serious one – the accounts of millions of had been hacked into and then details were stolen; the servers of

Nintendo

suffered the same fate. On June 3, the servers of

Codemasters

, the largest UK game publisher, were hacked. The hackers did not spare even the

National Health Service

of the UK; there has been a breach of security in some servers, according to media reports.

The spate of attacks has pushed millions of online users, not necessarily the folks who play games, into a state of perpetual anxiety. Since the hackers have been able to stay a few rungs above the security experts along the learning curve, it’s high time the threat was treated as something against the whole online community, not just selected strata of it.

The companies, which have been affected, are counting the cost in terms of loss of both revenue and reputation. Although, they assure the customers of better security mechanisms in future – and when the horse had left the barn, of course – restoring customer confidence is going to be an uphill struggle for the companies in question.

According to the details that came out so far, the hacking had been performed by duping the customers into web pages which looked identical to what they normally had been familiar with; once signed in, they had been taken for a ride, to say the least.

So, the companies affected implied that the customers should not have done that; well, how do ordinary folks distinguish between a real one and a fake one, when they look almost similar? The explanations have not gone far enough to address the serious side of the issue; all they can say is warning the public to be on their guard at all times – and they already are.

These high profile hackings are not the works of adventurous individuals, carried out in their bedrooms as a way of fighting boredom. Nor are they the works of teenagers, who could spare hours on computers in typing in endless combinations of characters into login names and passwords, in the hope that one of them would make them lucky by pure chance – one day. The nature of sophistication clearly shows the involvement of highly organized individuals – perhaps, with a substantial technical background – who are prepared to break hell lose, if they can get away with it.

The two groups, which are at the forefront of hacking, are Anonymous and LulzSec. The former claims to be a ‘leaderless structure’ while the latter introduces itself as the ‘world’s leaders in high-quality entertainment at your expense.’ Who can disagree with them?

Anonymous has been in the habit of hacking into government websites in order to teach them a ‘lesson’; it was at its peak of activities, known as ‘hacktivity’, when Wikileaks were coming out in dribs and drabs. LulzSec, meanwhile, claims that since fun is restricted to Fridays, they are going to extend it beyond that – and to the weekend. Whether what is fun for LulzSec, is certainly fun for everyone, remains to be seen in the days ahead!

In addition, there are clumsy hackers too. I keep getting an email from one such stupid hacker, who is in the habit of urging me to collect a parcel from a well-known courier service while clicking on a link provided. However, he could not completely conceal the tentacles of idiocy: the ‘To’ field of the email consists of a chain of email addresses, not just mine. So, I decided to keep getting the emails for academic purposes, without diverting them into a spam folder.

If a user can be duped by such an email, then of course, big companies cannot be blamed for mistakes of that kind. In short, users have to be a bit responsible too while login into similar-looking web sites and opening unsolicited emails.

As the menace of hacking reached fever pitch, some countries in South East Asia have started cracking down on potential hackers – finally. The arrests have been made in Malaysia, Indonesia and Taiwan. However, this is just the tip of the colossal iceberg.

The geography of the places where hackers were found, the time taken before the action being carried out and the abundance of other regional criminal activities, do not paint a serene picture for the online community in particular, and the law-abiding global citizens in general.

If the governments in question keep treating the threat as trivial or non-existent, the trend can easily give a cumulative nasty shock for all of us at an unexpected time – something from which we may not recover without paying a heavy collective price.

via The Alarming Growth of Global Cyber Menace – Hacking | Asian Tribune.

06/12/11

The Alarming Growth of Global Cyber Menace – Hacking | Asian Tribune

The disturbing cyber nuisance did not end there. The servers of

Sony

Nintendo

suffered the same fate. On June 3, the servers of

Codemasters

, the largest UK game publisher, were hacked. The hackers did not spare even the

National Health Service

of the UK; there has been a breach of security in some servers, according to media reports.

via The Alarming Growth of Global Cyber Menace – Hacking | Asian Tribune.

06/10/11

U.S. experts lodge ungrounded accusations of China “cyber spies” – People’s Daily Online

American cyber-security experts failed to provide sufficient evidence when accusing Chinese cyber spies of trying to break into computers belonging to China specialists and defense contractors in the United States, a Chinese cyber expert told Xinhua on Thursday.

via U.S. experts lodge ungrounded accusations of China “cyber spies” – People’s Daily Online.

06/8/11

Google’s Big Trouble in China Over Gmail Hacks

Google was hammered by China’s Communist newspaper for accusing the Chinese government of hacking into Gmail accounts. The publication claimed Google was trying to stir political unrest between China and the U.S.

A Chinese government newspaper took issue with Google’s accusation that it had traced cyber-attacks on Gmail accounts to that country, claiming that the search-engine giant was simply trying to stir political unrest.

Google (NASDAQ:GOOG) June 1 disrupted a phishing scam that duped senior U.S. government officials, Chinese political activists and others into giving up their Gmail passwords so that an attacker could read and forward their email messages.

The attack affected hundreds of users and appeared to hail from Jinan, China, which is home to one of the People’s Liberation Army’s technical reconnaissance bureaus, or China’s equivalent of the National Security Agency in the United States.

Google’s implication was that the Chinese government was behind the attacks. Hong Lei, spokesman for China’s Ministry of Foreign Affairs, denied his government had anything to do with the attacks, calling them “fabrication out of thin air” and “unacceptable.”

The People’s Daily, which writes on behalf of China’s Communist Party, said June 6 that Google made its claims out of “a vicious intent of sparking new disputes concerning Internet security between China and the U.S,” according to The Wall Street Journal.

People’s Daily editor Zhang Yixuan also lobbed a veiled threat at the search-engine company when he wrote in the front-page editorial: “Google shouldn’t engulf itself in the international political war as a tool for political gaming,” If there is “any change in the international atmosphere, I am afraid Google will become a target to be sacrificed by politics, and also will be discarded by the market.”

The implication is that Google would lose more face, political capital and market share if it pursued its allegations against the country. There is precedent for this.

The company lost search market share to market leader Baidu after tracing cyber-attacks on Gmail accounts of Chinese dissidents and human-rights activists to China. Google, which threatened to exit China entirely, ceased censoring search results there and sent users to the Google.hk domain in Hong Kong.

Google, which passed its evidence of the Gmail hacks along to the FBI, declined to comment directly on the editorial. However, a spokesperson told eWEEK: “We think users should be aware of the disturbing campaign we’ve uncovered to collect user passwords and monitor user email. Our focus now is on protecting our users and making sure everyone knows how to stay safe online.”

Meanwhile, House Oversight Committee Chairman Darrell Issa (R-Calif.) wrote to Google CEO Larry Page on Monday requesting more information on the Gmail phishing attacks. Issa asked Google not only to name all federal employees targeted in the attack, but also to disclose all communications related to Google’s response.

Google told eWEEK it is reviewing Issa’s letter, adding: “We believe that discussing security issues facing our industry helps users better protect themselves from phishing scams and other common threats.”

via Google’s Big Trouble in China Over Gmail Hacks – Security – News & Reviews – eWeek.com.

06/8/11

MoD faces daily cyber-attacks, Liam Fox says – Telegraph

Warning that Britain is now in continuous combat with an “invisible enemy” in cyberspace, the Defence Secretary said that the MoD last year detected and blocked more than 1,000 “potentially serious” attempts to infiltrate or disrupt its computer systems.

Speaking to the London Chambers of Commerce defence industry dinner, Dr Fox said electronic attacks on Britain doubled from 2009 to 2010. “There is a continuous battle being waged against us, day in, day out,” he said.

Dr Fox’s remarks are the latest Government warning about the scale and severity of electronic attacks on sensitive State computer networks. George Osborne, the Chancellor, last month said that Government computers are receiving more than 20,000 malicious email attacks every month.

The MoD and its highly sensitive electronic networks are a prime target for people trying to steal secrets or damage critical systems.

“Our systems are targeted by criminals, foreign intelligence services and other malicious actors seeking to exploit our people, corrupt our systems and steal information,” Dr Fox said. “The risks to defence are real, and I take them very seriously.”

Dr Fox did not disclose details about who is behind the electronic attacks, but officials say that cyber attackers include both private hackers and those working directly for foreign governments including China.

Last week, Google said it had discovered an attempt to steal the email passwords of hundreds of its email account holders, including US government officials, Chinese human rights activists and journalists.

US Computer security experts say the number of attacks emanating from China has jumped in recent months

As well as Government systems, major defence companies and other companies are under attack, the minister said, suggesting that successful electronic attacks on the defence industry would have both economic and strategic impact.

“Our national intellectual property in defence and security industries is at risk from a systematic marauding,” he said. “Not only could it severely affect the future success of British industry, our economic advantage, and the country’s financial recovery – but also directly impacts upon our national security today.

“This threat is growing in scale and sophistication – my Department is a prime target,” Dr Fox said, urging businesses and individuals to be vigilant.

“This is the war of the invisible enemy. Success cannot be achieved by government alone because, in cyber space, there are few boundaries between government, business and every individual internet user.”

Even as it cut many conventional forces, last year’s Strategic Defence and Security Review boosted British spending on cyberwarfare by £650 million. The money will pay for a new Global Operations and Security Control Centre to co-ordinate electronic defences, Dr Fox said.

Nick Harvey, Dr Fox’s deputy, last week revealed that as well as bolstering the UK’s defences against electronic attack, the programme will also involve the development of offensive capabilities, electronic weapons Britain could deploy against other states.

via MoD faces daily cyber-attacks, Liam Fox says – Telegraph.

06/7/11

US probes Google hints of China cyber-spying

PHOTO

Google says it has uncovered a campaign to collect Gmail passwords, but has stopped short of directly blaming China. [Reuters: Clay McLachlan]

VIDEO from Australia Network News

Cyber hacking

Created: Fri, 03 Jun 2011 11:29:53 GMT-0400

AUDIO

Australia cyber white paper to secure internet

Created: Fri, 03 Jun 2011 11:29:53 GMT-0400

Last Updated: Fri, 3 Jun 2011 18:31:00 +1000

The United States Government is investigating suggestions from Google that a cyber-spying campaign originated in China.

US Secretary of State Hillary Clinton says the FBI will investigate Google’s claims that suspected Chinese hackers tried to access the Gmail accounts of senior US officials by stealing passwords.

“These allegations are very serious. We take them seriously, we are looking into them,” she told reporters.

The Gmail accounts of Chinese activists and journalists were also reportedly targeted.

The claim has sparked an angry response from the Chinese Government, which has denied any involvement in the alleged hacking attack on Google’s email system.

Chinese foreign ministry spokesman Hong Lei says to put all of the blame on China is “unacceptable”.

“The Chinese Government has always opposed any kind of criminal activity that tries to harm the internet,” he said.

“The so-called allegation that the Chinese Government supports hacking attacks is completely fabricated with ulterior motives.”

Google statement

A statement from Google does not specifically point the finger of blame at Chinese authorities.

“We recently uncovered a campaign to collect user passwords, likely through phishing,” Google security team engineering director Eric Grosse said in a blog post.

“The goal of this effort seems to have been to monitor the contents of these users’ emails, with the perpetrators apparently using stolen passwords to change peoples’ forwarding and delegation settings,” he said.

Those affected included senior US government officials, Chinese political activists, military personnel, journalists and officials in several Asian countries, predominantly South Korea, Mr Grosse said.

“Google detected and has disrupted this campaign to take users’ passwords and monitor their emails,” Mr Grosse said.

“We have notified victims and secured their accounts. In addition, we have notified relevant government authorities.”

The “phishing” ruse used to trick Gmail users into revealing account names and passwords reportedly involved sending booby-trapped messages that appeared to come from legitimate associates, friends or organisations.

Google says the California-based firm’s systems and servers were not attacked.

There is no indication whether the Gmail spying campaign was related to a China-based cyber attack on Google that prompted the company in 2010 to stop bowing to internet censors and reduce its presence in the country.

Google had initially threatened to close its Chinese operations altogether because of censorship and cyber attacks it said originated from China.

At that time, Beijing virulently denied any state involvement in the cyber attacks that Google said targeted email accounts of Chinese human rights activists, saying such claims were “groundless”.

ABC Radio Australia News:Stories:US probes Google hints of China cyber-spying.

06/6/11

China linked to new breaches tied to RSA | InSecurity Complex – CNET News

Recent attacks on three U.S. defense contractors could be tied to cyber espionage campaigns waged from China, several security experts told CNET.

The incidents at Lockheed Martin, L-3 Communications, and Northrop Grumman appear to stem from a breach at RSA in March in which data was stolen related to RSA’s SecurID two-factor authentication devices–widely used by U.S. government agencies, contractors, and banks to secure remote access to sensitive networks.

Lockheed confirmed to The New York Times on Friday that hackers had used data stolen in the RSA breach and other methods to figure out the coded password of a Lockheed contractor, but that Lockheed had blocked the attack before any sensitive data could be exposed. The company said it was replacing 45,000 SecurID tokens.

L-3 told employees in April that it was targeted using information acquired from the RSA breach, Wired reported. And Northrop Grumman, meanwhile, unexpectedly shut down remote access to its network last month, leading to speculation that there had been a SecurID-related incident, according to FoxNews.com.

When RSA warned customers that their SecurID deployments could be affected by the intrusion, the industry was waiting for the proverbial other shoe to drop. Thus, word of the defense contractor attacks came as no surprise. And the timing is such that it seems unlikely to be coincidental, the experts said.

Two-and-a-half months is plenty of time for whoever stole the data to sell it to interested parties in underground channels and for buyers to prepare attacks that take advantage of the pilfered information–basically figuring out which key on the key chain goes to which door. But it’s also a small enough window of time to let those attackers catch some RSA customers before they can change the locks.

Having the key, or token, isn’t enough to break into a system. Attackers also need to have the passcode that token holders use when they are logging in to a network. Phishing e-mails that trick recipients into revealing their log-ins and e-mails bearing malware that infects the recipient’s computer are commonly used to get that information. Having done their homework, the attackers know to craft an official-looking e-mail coming from a person or organization the recipient would trust.

Such sophisticated attacks on a specific target that are designed to steal credentials in order to get into the network to access critical data are known as Advanced Persistent Threats, or APT.

The RSA breach was accomplished using an APT, and Google cited APT in early 2010 as the method used in an attack on its network in which intellectual property was stolen. Google specifically said the attack originated in China and that Gmail accounts of human rights activists in the U.S., China, and Europe were separately compromised. Yahoo, Symantec, Northrop Grumman, and Dow Chemical were reportedly among the 30 or so other targets.

“APT is a euphemism for China,” said Rich Mogull, chief executive of Securosis. “There is a massive espionage campaign being waged by a country. It’s been going on for years, and it’s going to continue.”

Chinese representatives in the U.S. could not be reached for comment Friday, but government officials denied any involvement in the Google attacks last year. They also denied any responsibility in phishing attacks targeting Gmail accounts of officials in the U.S. and Asian countries, political activists, and journalists that Google announced last week. In fact, a Chinese official turned the tables and accused the U.S. of launching an Internet war against other countries, according to The Associated Press.

Meanwhile, the Pentagon is now saying it plans to issue new strategy declaring that in certain circumstances it will view cyberattacks from foreign nations as an act of war meriting military response.

“The reality is, part of the basis of U.S. hegemony…has been the ability to leverage command of signals intelligence to have perspective on the motivations and activities of others. Cyberspace has equalized that, so all of a sudden we’re in a competitive intelligence environment,” said Rafal Rohozinski, a principal at SecDev who did research on targeted attacks on Tibet and others with supposed links to China. Those attacks were detailed in a “GhostNet” report in 2009.

Espionage is common among the major nations, but reports of cyberespionage from China have increased over the past decade, campaigns that are ostensibly focused on silencing dissidents and other detractors, or reducing China’s technology gap with the U.S. and other major countries.

“China has made no secret that they see cyberspace as the domain that allows them to compete with the U.S.,” Rohozinski said.

It’s easy to connect the dots between the various attacks, particularly considering what the motivation may be behind them. However, there is often no way to know for sure where a cyber attack originated because attackers can easily hide their tracks.

“I think [the attacks on the contactors] are completely related” to the RSA intrusion, said Chris Wysopal, chief technology officer at Veracode. “While I think they’re related, I don’t necessarily think it is the same group” that’s responsible.

Just like in the financially motivated credit card criminal underground, there is an ecosystem around information that can be used for corporate or government cyberespionage, according to Wysopal. “The RSA attackers knew that what they were stealing could be sold to lots of governments,” he said.

“If it’s any kind of military espionage, military adversaries are going to be high on the list,” Wysopal said. “The question then is who in China–is it government agents or independent contractors selling to the Chinese government?”

via China linked to new breaches tied to RSA | InSecurity Complex – CNET News.

Recent Post

gAtO’s Twitter Weekly 2012-05-19

Social Engineering XBox Live Accounts

Will the Real th3j35t3r Please Stand Up

bitCoin Mining Scam

gAtOmAlO2 is @_th3j35t3r

Is AnonymousIRC TangoDown?

LulzSec Court Date Postponed

Written by Topiary -Lulz Lizards

gAtO’s Twitter Weekly 2012-05-12

MarkMonitor Internet Kill Switch or Wiretapping?

@gAtOmAlO2 tweets
Loading tweets ...
Follow @gatomalo2 on twitter.

-0-1-0-1-0-1-0-1-0-1-0-1-
Anonymous Anonymous Hackers AntiSec Black Hats China Attacks china cyber china espionage China Hack China security China Weakness Chinese Goverment cyber-spies cyber-thieves Cyber Blue Team Cyber Criminals Cyber Dissident Cyber Espionage Cyber Intelligence Cyber Monitoring Cyber Notebook Cyber Policies Cyber Policy Cyber Politics Cyber Reputation Cyber Revenue Cyber Strategy Cyber Study Cyber Threats Cyber Tools Cyber USA Cyber War Cyber Warfare Cyber Weapon Goverment Hackers Hacks Hacktivist human rights Information Warefare Infrastructure Internet -Player Notes to Myself Social Media US- D.Homeland Security White Hat

M	T	W	T	F	S	S
« Apr
	1	2	3	4	5	6
7	8	9	10	11	12	13
14	15	16	17	18	19	20
21	22	23	24	25	26	27
28	29	30	31

US Cyber Labs – Blog

Cyber Security Notebook

Category Archives: china cyber

Chinese researchers finished the “AK47”of cyber warfare

US – China Cyber Detente or Confrontation? – IEEE Spectrum

China sets up “Online Blue Army”

The Alarming Growth of Global Cyber Menace – Hacking | Asian Tribune

The Alarming Growth of Global Cyber Menace – Hacking | Asian Tribune

U.S. experts lodge ungrounded accusations of China “cyber spies” – People’s Daily Online

Google’s Big Trouble in China Over Gmail Hacks

Google was hammered by China’s Communist newspaper for accusing the Chinese government of hacking into Gmail accounts. The publication claimed Google was trying to stir political unrest between China and the U.S.

MoD faces daily cyber-attacks, Liam Fox says – Telegraph

US probes Google hints of China cyber-spying

US probes Google hints of China cyber-spying

PHOTO

VIDEO from Australia Network News

Cyber hacking

AUDIO

Australia cyber white paper to secure internet

Google statement

China linked to new breaches tied to RSA | InSecurity Complex – CNET News

Google was hammered by China’s Communist newspaper for accusing the Chinese government of hacking into Gmail accounts. The publication claimed Google was trying to stir political unrest between China and the U.S.

RELATED ARTICLES

US probes Google hints of China cyber-spying

PHOTO

VIDEO from Australia Network News

AUDIO

Google statement