While keen to point out that Microsoft's TechNet portal security was "in no way compromised" by the tactic, researchers with security outfit FireEye [discovered](https://www.fireeye.com/blog/threat-research/2015/05/hiding_in_plain_sigh.html) that [a well established China-based hacking campaign called Deputy Dog](https://www.fireeye.com/blog/threat-research/2013/09/operation-deputydog-zero-day-cve-2013-3893-attack-against-japanese-targets.html) had managed to create profiles and posts on TechNet that contained embedded Command and Control codes for use with a BlackCoffee malware variant. This method of hiding in plain sight is nothing new, but it can make detection problematical as the data (especially within a technical forum such as TechNet) is simply 'lost' in a sea of similar code from genuine users of a well respected …

Member Avatar
+1 forum 0

Oh the irony. In what is starting to read very much like the script to a Hollywood movie itself, the latest twist to the Sony Pictures hacking plot took an unexpected turn yesterday. It would appear that at one stage yesterday access to the web across pretty much all of North Korea went down, with access to key sites such as the state-run Korean Central News Agency (KCNA) and Rodong Sinmun newspaper were down for most of the day. Not that most North Koreans would have noticed, of course, seeing as they are denied access to the Internet anyway. The …

Member Avatar
+1 forum 0

An increasing number of my acquaintances seem to be in the habit of buying cheap Android smartphones when in China on business and, increasingly, from online auction sites. More often than not these will be clones of flagship models but without the flagship price tag; however, cheap is not always cheerful. I've seen some of these devices with their look-alike operating systems and their flimsy construction, and given a quick once over have to say I wouldn't trust them with my calls, texts and data. That level of mistrust appears to be well founded, not least because it would seem …

Member Avatar
Member Avatar
+1 forum 2

According to a [report](http://www.fireeye.com/resources/pdfs/fireeye-operation-ke3chang.pdf) from researchers at US security outfit FireEye, a number of computers belonging to diplomats attending the G20 summit in Russia three months ago, including at least five European foreign ministries, were successfully targeted by Chinese hackers. FireEye researchers had monitored a server, one of 23, used by the Ke3chang group in August. This enabled them to observe the malware in action, although FireEye says no data was stolen as far as they were aware during this period of observation. Naturally the security firm contacted the relevant authorities as soon as it realised what was underway. The …

Member Avatar
+1 forum 0

Small groups of what are best described as cyber-mercenaries, willing and able to perform surgically precise hit and run hacking operations, are offering their services for hire out of China, Japan and South Korea. That's the conclusion of security researchers at [Kaspersky Lab](http://www.kaspersky.co.uk/) who have been following the progress of a newly discovered espionage campaign, known as Icefog and targeting the supply chain in South Korea and Japan which feeds companies in the West. Icefog is an APT, or Advanced Persistent Threat, and in the words of the Kaspersky Lab [report](http://www.securelist.com/en/blog/208214064/The_Icefog_APT_A_Tale_of_Cloak_and_Three_Daggers) a "small yet energetic" one. Although it appears to …

Member Avatar
Member Avatar
+1 forum 1

Back in December 2011, reports were circulating regarding a data breach at one of the big Chinese social networking sites, Tianya.cn that suggested the login credentials of some 40 million users were potentially exposed. Clear text usernames and password combinations were stolen by hackers during the breach, although a Tianya spokesperson at the time said that only those users who registered before November 2009 would have had clear text logins as after that the service had implemented encryption (!) - quite why the existing membership data could not have been encrypted at this point is, frankly, beyond me. Word on …

Member Avatar
Member Avatar
+0 forum 2

It has been just over a month now since North Korea gloated about its successful nuclear weapon test. A test which prompted the imposition of new UN sanctions against Pyongyang, and if the Korean Central News Agency (KCNA) which acts as a state mouthpiece for the Democratic People's Republic of Korea is to be believed, it has also prompted "intensive and persistent" cyber-attacks. Attacks, according to the North Koreans, which have been jointly launched by South Korea and the United States. ![28f2a88054ead0da521c67c6964c43a1](/attachments/small/0/28f2a88054ead0da521c67c6964c43a1.jpg "align-right") The KCNA claims that the attacks, which are believed to have taken down official state websites such …

Member Avatar
Member Avatar
+1 forum 8

A recent survey, conducted by IT risk management specialists nCircle, suggests that as many as 50% of IT security professionals think that the organisations they work for are a potential target for state-sponsored hackers. A number that Tim Keanini, nCircle Chief Research officer, thinks is rather on the low side in reality. "The number of organizations that are potential targets for state-sponsored cyber attacks is probably much higher than 50%, because if attackers can’t break into a targeted organization, they will go after partners and suppliers" Keanini insists, adding "Frankly, I’m surprised that the level of paranoia among information security …

Member Avatar
Member Avatar
+3 forum 3

An ongoing attack aimed at users of the Apple Mac platform is being reported by security researchers. [AlienVault,](http://www.alienvault.com) which has discovered these weaponised attacks in the wild, warns that regular Mac users without IT security software installed could be at risk of infection and hijacking. ![alien](/attachments/small/0/alien.jpg "align-right") The researchers suspect that the attack stems from the same anti-Tibetan, pro-Chinese, hacking group that has been [responsible for attacks](http://labs.alienvault.com/labs/index.php/2012/alienvault-research-used-as-lure-in-targeted-attacks/) targeting Tibetan activist organisations in recent weeks. According to the lead researcher who made the discovery, Jaime Blasco, the group is "delivering two different Mac trojans" including a new and improved one called …

Member Avatar
Member Avatar
+1 forum 1

A Google official has announced this morning that the search giant is back in action in China. Google, the second most popular search engine in China, behind Baidu, announced in January of this year that it would no longer censor its search results on the Chinese version of its website, against the wishes of the Chinese government. As a result, Google's stock price plummeted while Baidu's stock price saw all time highs, surpassing Google on the stock market. A couple months later, Google began redirecting users accessing the google.cn version of Google to the uncensored Hong Kong version. Unfortunately, Chinese …

Member Avatar
Member Avatar
+0 forum 9

The Iranian Cyber Army may be the latest elite military hacking squad to hit the headlines, but Iran has a long way to go if it's to catch up with China in terms of international data disruption. According to one newly published report into the threat from Chinese state-sponsored espionage activity, the true scale and nature of these cyber-attacks is really quite interesting. [ATTACH=RIGHT]24125[/ATTACH]Context Information Security argues in the '[URL="http://www.contextis.com/news/articles/targetedattacks/Targeted_Attacks_Whitepaper.pdf"]Hidden Tiger, Crouching Dragon, Stolen Data[/URL]' report that while cyber-attacks originating from China are nothing new, they have grown in both size and scope in recent years in order to support …

Member Avatar
Member Avatar
+0 forum 1

Sykipot is not a new Trojan Horse by any means, but the variation found to be attacking Department of Defense smart cards is certainly something that government agencies need to be worried about. United States government agencies, that is. It's doubtful the Chinese government will be too worried about them, considering that the Sykipot-led attacks against these US government agencies would appear to be originating from China itself. [ATTACH=RIGHT]23494[/ATTACH]Security specialist [URL="http://www.alienvault.com"]AlienVault[/URL] has uncovered evidence that the attacks might stretch right back as far as March 2011 and have been targeting a number of agencies which use ActivIdentity, or more specifically …

Member Avatar
Member Avatar
+0 forum 1

On Thursday 2nd June 2009 it will be the 20th anniversary of the Tienanmen Square massacre when an undisclosed number of student protesters were killed after tanks rolled into squash the protests. You might imagine, then, that in China services such as Twitter would be a-buzz with talk about the day. Well it probably would have been, had the Chinese authorities not closed it down on Tuesday. Various chatroom sources are saying that both Twitter and Hotmail have been blocked throughout the mainland of China since 5pm on Tuesday, China time. There have also been some reports of Windows Live …

Member Avatar
Member Avatar
+0 forum 2

Hi everyone, I'm a budding developer. I want to modify the OS of typical china mobile ([url]http://www.chinavasion.com/product_info.php/pName/direktor-wifi-dual-sim-quadband-worldphone/[/url]) and try to make it good as close as possible to a symbian OS. Even many popular companies like Fly, Lava, Micromax and many others are also using the more or less similar (china)OS. But, I haven't been able to track down its name yet. Could anyone pls pls let me know what this OS is called and if possible then where can I get it's source code. I believe its some free china OS but I'm unable to find it. Someone pls …

Member Avatar
+0 forum 0

I am told, by those who follow the sport, that the Netherlands soccer team stands a pretty good chance of lifting the FIFA 2010 World Cup trophy. The bad news for any Netherlands fans is that their side has already been defeated by India, in the World Cup of security that is. [attach]15695[/attach][URL="http://www.secureworks.co.uk"]A SecureWorks study analysed the locations of attempted cyber attacks[/URL] on its global client-base between January and June this year, and then compared this with the total number of active PCs in each country to produce a league table that determines which of the top 16 countries based …

Member Avatar
+0 forum 0

Many a gadget freak has claimed 'I would kill for an iPad' over the last few weeks, but as the world officially goes iPad crazy ask your self this: would you die for an iPad? That's the rather serious question being asked as the Chinese factory where the iPad is made comes under increasing scrutiny concerning the number of suicides amongst the workers there. According to [URL="http://www.morningstaronline.co.uk/index.php/news/content/view/full/90861"]The Morning Star[/URL] "Bosses at Apple contractor Foxconn admitted that at least 10 of their workers had now committed suicide while another 20 had tried to take their own lives at work" and the …

Member Avatar
Member Avatar
+1 forum 6

Who wants some forged educational documents that will help you get a job in some foreign country? The answer, it would seem, is lots and lots of people. At least that would explain why spam advertising fake diplomas has topped the list of junk mail subject matter for China, South Korea and Vietnam according to the latest McAfee [URL="http://www.mcafee.com/us/threat_center/white_paper.html"]Internet Threat Report[/URL] which was published today. The report, covering the threat landscape for the first quarter of 2010, also reveals that while email subjects vary greatly from country to country, diploma spam coming out of China and other Asian countries is …

Member Avatar
Member Avatar
+0 forum 2

According to new figures, published today by [URL="http://www.sophos.com"]Sophos[/URL], something strange has happened in the world of spam: China has dropped out of the list of the world's worst spam relaying countries for the first time ever. The Sophos 'Dirty Dozen Spammers' list has become something of a staple diet for security researchers, covering the top twelve countries in terms of how much spam they each relay every quarter. While there is no surprise in seeing the US remain firmly seated at the top of the guilty as hell pile, responsible for relaying an astonishing 13 percent of all [URL="http://www.daniweb.com/news/story258407.html"]global spam[/URL] …

Member Avatar
Member Avatar
+1 forum 2

[ATTACH=right]14127[/ATTACH] [I]We can be Heroes For ever and ever What d'you say ~David Bowie, Heroes [/I] Yesterday afternoon I read with some surprise that [URL="http://www.washingtonpost.com/wp-dyn/content/article/2010/03/24/AR2010032401543.html"]domain registrar Go Daddy was following Google out of China[/URL]. It seems they had had quite enough of the Chinese government's restrictions, and like Google, decided to take their ball and go home. I tweeted with my friend and fellow journalist [URL="http://twitter.com/Digiphile"]Alex Howard[/URL] after seeing this, that maybe all western technology companies should leave China in one big show of force. Leave them there dangling on the edge of their economic expansion without computers, gadgets and …

Member Avatar
Member Avatar
+0 forum 1

It's not exactly news that the relationship between Google and China has soured over the last month or two and it looks as though [URL="http://www.macworld.com/article/147096/2010/03/china_google.html?lsrc=rss_main"]Google may quit China soon[/URL] leaving the vastly lucrative Chinese market to Microsoft and others. What's not clear is what the implications will be for the search giant which has found itself caught up in the political machinations of a repressive Chinese government. The story sounds like the start of a [URL="http://en.wikipedia.org/wiki/John_le_Carré"]John le Carre novel[/URL], but the fact is it's very real and the stakes very high. [B]Chinese Fire First Volley[/B] It all started a couple …

Member Avatar
Member Avatar
+0 forum 4

I've seen a collection of articles about computer security breaches originating from China and would like to give a report from the ITYS Foundation. ITYS, for the unaware, is "I Told You So." I've discussed the use of Linux on the desktop for years, touting its security, stability, thousands of free software applications and feature-rich interfaces. I'm constantly told that Linux on the desktop is dead. I've even [URL="http://www.daniweb.com/news/story221561.html"]said[/URL] it myself after taking too many verbal lashings when touting Linux as a prospective desktop operating system. [URL="http://www.daniweb.com/news/story219001.html"]Novell[/URL] and [URL="http://www.daniweb.com/news/story220393.html"]RedHat[/URL] have both put the Linux Desktop out mind. So, I guess …

Member Avatar
Member Avatar
+0 forum 6

Three men have been arrested, and what is thought to be a training site for hackers closed down, as Chinese officials get tough in the wake of the [URL="http://www.daniweb.com/news/story252590.html"]Google Gmail human rights hacking scandal[/URL]. While China has something of a history of being [URL="http://www.daniweb.com/blogs/entry4434.html"]tough on political activists[/URL], online [URL="http://www.daniweb.com/news/story235672.html"]multi-player gaming[/URL] and not forgetting [URL="http://www.daniweb.com/news/story218464.html"]the big pornography crackdown[/URL] it has, until now, shown little appetite for a Chinese hacker takeaway. Yet the Black Hawk Safety Net website, the largest hacking site in China according to officials from the Hubei province, has been shut down according to Chinese state sources as the …

Member Avatar
+0 forum 0

For a while it looked like the [URL="http://www.daniweb.com/news/story252590.html"]Google threat[/URL] to pull out of China was just a load of hot air, and pretty late hot air at that considering [URL="http://www.daniweb.com/news/story253371.html"]it had taken years[/URL] for the search giant to realise that [URL="http://www.daniweb.com/blogs/entry4434.html"]state censorship is a bad thing[/URL]. But that has all changed now that Google landed a well aimed kick right to the Chinese commercial nads by 'delaying' the launch of a couple of new [URL="http://www.itpro.co.uk/blogs/daveyw/2009/09/09/battle-of-the-apps-android-v-apple/"]Android[/URL] OS powered mobile devices. Although there is, as of yet, no official response from China over this latest move it has previously stated that Google …

Member Avatar
Member Avatar
+1 forum 1

If it is so concerned about the online rights of users, as the [URL="http://www.daniweb.com/news/story252590.html"]Google statement about pulling out of China[/URL] would suggest, maybe it should consider pulling out of Italy next. Unless of course the China crisis is more to do with commercial failure to dominate an emerging and important online market and less to do with censorship after all. As I may have mentioned before, it is nice to see Google taking a stand but a real shame that it has taken so long for the company to locate its backbone. Now it has a chance to act a …

Member Avatar
Member Avatar
+0 forum 2

Google has signalled, in the strongest possible manner, that it will be pulling out of China unless something is done to address censorship of searches. It has also accused China of launching a "highly sophisticated and targeted attack" on the Google corporate infrastructure, along with another twenty large companies from a range of business sectors in the US. Such attacks are nothing new, just last year the Pentagon was allegedly subject to a [URL="http://www.daniweb.com/blogs/entry4266.html"]successful hacking attack[/URL] with details of the F35 Lightning II, also known as the Joint Strike Fighter and the most expensive jet fighter ever, the target. However, …

Member Avatar
Member Avatar
+2 forum 2

It would seem that there is something of an ongoing battle in the world of online Chinese gaming, and World of Warcraft is right in the midst of it. As I [URL="http://www.daniweb.com/news/story220683.html"]reported[/URL] back in July, the company behind World of Warcraft (Blizzard Entertainment) was having problems in getting The Burning Crusade expansion pack up and running in China. Best not even mention Wrath of the Lich King then. It's all a little, well a lot, complicated and just a tad political, of course. Here's [URL="http://www.daniweb.com/news/story220683.html"]what I said[/URL] a few months ago: "A planned upgrade to the game which involved moving …

Member Avatar
+0 forum 0

With some [URL="http://www.daniweb.com/blogs/entry3427.html"]11.5 million subscribers[/URL] playing it worldwide, there is no denying that World of Warcraft is one popular online game. Nowhere more so than in China, where it has been reported around 5 million of those subscribers are based. It should [URL="http://www.daniweb.com/blogs/entry4434.html"]come as no surprise[/URL] that not everyone in China is a fan, however. Unfortunately for game developers Blizzard Entertainment it would appear that the Chinese government might be in the dislike camp, no surprise there then. A planned upgrade to the game which involved moving to a new operator in China, an online gaming outfit by the name …

Member Avatar
+0 forum 0

Everyone knows that China is not exactly the most Internet friendly country, in fact the Chinese government pretty much hates it. Despite being a truly [URL="http://www.daniweb.com/blogs/entry1269.html"]connected superpower[/URL], the Chinese government has already [URL="http://www.daniweb.com/blogs/entry1407.html"]declared war on Internet porn[/URL]. Of course, the Internet is a cool tool when used as a weapon by the [URL="http://www.daniweb.com/blogs/entry2427.html"]army of Chinese government sponsored hackers[/URL] against other countries. Now it seems that the Chinese authorities are turning their weapons of mass censorship on all citizens. It seems that as from next month, every PC sold in China will have Green Dam software installed. Green what? Well, the …

Member Avatar
+0 forum 0

According to [URL="http://www.guardian.co.uk/world/2009/apr/21/hackers-us-fighter-jet-strike"]reports[/URL], the Pentagon has been subject to a successful hacking attack with details of the F35 Lightning II, also known as the Joint Strike Fighter and the most expensive jet fighter ever, the target. Apparently, design data including that of the $300 billion jet project electronics system, have been stolen. Several terabytes of data in all are said to have been successfully stolen from a computer system that deals with in-flight maintenance fault diagnosis. Insiders say that the attacks have originated in China, but this has unsurprisingly been ferociously denied by Chinese government officials. A spokesman for the …

Member Avatar
+0 forum 0

Charlie Payne, sounding a lot like Revolutionary War pamphleteer Thomas Paine, says that we're in the 2009 version of “these are the times that try men’s souls”. Of course, the historical Paine once also said that those who want to reap the benefits of this great nation must bear the fatigue of supporting it. So it goes in the stock market these days. It’s volatile, moving up one day and down the next, worn down by $1 trillion in new taxes and a $9.3 national deficit, and waylaid by frightened consumers who figure the best strategy right now is to …

Member Avatar
+0 forum 0

The End.