Mysterious Forces Hack Pro-Tibet, Save Darfur, Falun Gong Sites
March 26, 2008 10:15 AM
comment(s) - last by
Who could be behind the wave of online attacks that have the internet community seeing red?
A series of online strikes has been carried out in the last few months on several high profile international targets. Among those targets are the Falun Gong and pro-Tibetan liberation organizations. Also targeted is the Save Dafur campaign.
As Sherlocke Holmes might say, "The game is afoot!"
Internet Storm Center
, an news organization focusing on online threats,
announced this week
, "On Friday we reported on targeted attacks against various pro-Tibet non-governmental organizations (NGO) and communities, as well as Falun Gong and the Uyghurs."
One technique that is being used to attack these organizations is a fake memo with a malicious attachment. This memo claims to have a human rights report about Tibet attached. Analysts state that the memo uses several key social engineering tricks to lull the readers into a false sense of security. Among these are the use of pertinent language in the memo and official looking numbers and titles.
Even trickier, the attachment is actually two files -- a legitimate flier for a real life book on the state of Tibet and a separate malicious trojan binary.
Eight types of trojans have been employed by the attackers, including the well known
attacks. While some machines are merely crippled, others are maintained and controlled through remote access using the
tool. The majority of control servers were
identified to be on Chinese netblocks
. However some originated from the U.S., South Korea and Taiwan.
Tibet has been under Chinese rule since military occupation in 1951. The Falun Gong claims its a spiritual organization focusing on meditation, boasting as many as 70 million members in China. The organization has been labelled as a cult by China. China regularly breaks up its public practices and jails its leaders.
The Save Darfur group has been under heavy attack from hackers. The FBI is currently investigating these attacks, which they say
may have a possible Chinese connection
. The Save Darfur campaign is a rather altruistic-spirited, nonprofit group whose well-intentioned goal is to bring attention to the ongoing genocide in western Darfur region of Sudan.
Allyn Brooks-LaSure, a spokesman with the group, says the group contacted the FBI after someone last week gained unauthorized access to its email and web servers. While Brooks-LaSure is certain the identity of the attackers, he did note that the IP addresses of the hackers were located in China. He states, "Someone in Beijing is trying to send us a message."
The hackers appeared to have focused primarily on gathering data on the group. Save Darfur has been trying to convince China to pressure Sudan, one of its largest trading partners, into stopping the bloodshed. Experts warn that while the attacks appear to have originated in China, they may merely have been routed through China.
Groups affiliated with the Save Darfur group have also been hit. Among the attacks they have noticed are emails with malicious attachments, very similar to those used against the Tibetan organizations. FBI Spokeswoman Debbie Weierman confirmed that the FBI was investigating, stating that they were "looking into the matter."
With the latest rash of attacks, one is left to wonder -- who might want to attack Save Darfur, pro-Tibetan liberation and the Falun Gong? Is this just an innocent set of unrelated attacks, or perhaps is it, along with other attacks in past months, the sign of a
growing online military campaign
This article is over a month old, voting and posting comments is disabled
3/27/2008 2:54:46 AM
in good old day they use merc ,spy and criminal to do this ,these days hackers in exchange of some jail time
..maybe somewhere in tibet they have a lot of oil reserve or something value to china .. a good plot for c&c general 2.0
"If you can find a PS3 anywhere in North America that's been on shelves for more than five minutes, I'll give you 1,200 bucks for it." -- SCEA President Jack Tretton
Cyber Tensions Flare Amongst U.S., Chinese Military
March 12, 2008, 5:28 PM
Chinese Hackers Take On the World with Ease
March 7, 2008, 7:26 PM
Microsoft to Discontinue Free, Ad-supported Xbox Music Service on December 1
October 23, 2014, 10:03 AM
Christian Bale Confirmed to Play Steve Jobs in Upcoming Film
October 23, 2014, 8:43 AM
Monica Lewinsky Speaks Out, Calls Herself "Patient-Zero" for Internet Cyberbullying
October 21, 2014, 2:25 PM
Google Fiber Finally Heading to Austin, Texas in December
October 16, 2014, 11:48 AM
Dropbox Flexes Security Muscle, Appears to Have Squashed Password Breach
October 15, 2014, 12:12 PM
U2’s Bono Apologizes for Forced “Songs of Innocence” Album Downloads
October 15, 2014, 7:55 AM
Most Popular Articles
Chinese Government Declares Digital War Against America's Top Tech Firms
October 20, 2014, 12:07 PM
Report: 2015 Ford Focus Electric MSRP Slashed by $6,000, Will Retail for $29,995
October 18, 2014, 6:23 PM
Apple Releases iOS 8.1; Adds Apple Pay Support, SMS Relay, Instant Hotspot
October 20, 2014, 1:00 PM
Windows 8.1 + Android "Sell Mini PC" w/ Bay Trail Creates New PC Form Factor
October 20, 2014, 5:07 PM
Update: Motorola Droid Turbo Coming Oct 28, 48-hour Battery Life Confirmed
October 19, 2014, 9:19 PM
Latest Blog Posts
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information