Chinese web censors manipulate net users to hit anti-censorship pages

Cyber attacks climb notorious heights as experts ride on unsuspecting users of internet

GN Bureau | March 30, 2015


#cyber attack   #China   #Chinese   #GitHub   #Baidu   #internet  

Taking cyber attack to new and scary level, Chinese web experts have been targeting a popular US coding website.

From Thursday onwards, GitHub has been hit by distributed denial-of-service (DDoS) attacks that sent large volumes of web traffic to the site, particularly towards two Chinese anti-censorship projects hosted there. Specifically, the traffic was directed to two GitHub pages that linked to copies of websites banned in China, the experts said. One page was run by Greatfire.org, which helps Chinese users circumvent government censorship, while the other linked to a copy of the New York Times’s Chinese language website.

Greatfire.org’s GitHub page contains links to copies of 10 websites blocked in China, including an uncensored version of the popular social-media service Weibo.

Over the next few days, the attackers changed their DDoS tactics as GitHub defended the site, but as of Sunday, it appears the site was mostly working.  A GitHub service called Gists, which lets people post bits of code, was still affected, it said. On Twitter, GitHub said it continued to adapt its defenses.

The attacks appeared to focus specifically on two projects hosted on GitHub, according to a blogger who goes by the nickname of Anthr@X on a Chinese- and English-language computer security forum.

The attack on San Francisco-based GitHub Inc. points to brazenness of China’s Internet censors, who are increasingly reaching outside the country to clamp down on content they find objectionable.

GitHub services are used by programmers and major tech firms world-wide to develop software,

The modus operandi was to direct huge amounts of traffic from overseas users of Chinese search giant Baidu Inc. to GitHub, paralyzing GitHub’s website at times.

The attackers used a wide variety of methods and tactics, including new techniques “that use the web browsers of unsuspecting, uninvolved people to flood github.com with high levels of traffic,” GitHub said.

In late December, China cut off all access to Google’s Gmail service, after blocking Facebook’s Instagram app, and the phone messaging app Line.

Baidu said it wasn’t involved in the attack and its systems weren’t infiltrated. “After careful inspection by Baidu’s security engineers, we have ruled out the possibility of security problems or hacker attacks on our own products,” it said in a statement.

Though Baidu is the largest search engine in China, the attack appeared to use traffic from its users outside the country, security experts said. When a user navigated to the Baidu search engine, they said, a code was activated that sent continuous requests for data from the user’s computer to GitHub. By tapping overseas users, the hackers made the attack harder to block, because the requests to GitHub came from all over the world and looked like typical requests for information.

Comments

 

Other News

Pilot project in Ranchi for PDS subsidy transfer

After Chandigarh, Puducherry and Dadra & Nagar Haveli, the government is now looking at subsidy transfer scheme for Public Distribution System (PDS) in Ranchi through a pilot project.   But, there is a crucial difference between the Ranchi project and the initiative alrea

Terror funding through cross LoC trade in Valley unearthed

Much before the National Investigating Agency (NIA) had arrested seven Hurriyat leaders on Sunday in connection with the funding of terror activities in Kashmir, the agency had unearthed a racket involving undervaluation of the goods coming from the Pakistan occupied Kashmir for trade in Jammu and Kashmir

Key to India’s success is its diversity: President Kovind

“The key to India’s success is its diversity,” said Ram Nath Kovind after being sworn-in as president at the Central Hall of parliament on Tuesday.   “Our diversity is the core that makes us so unique. In this land we find a mix of states and regions,

AAI signs MoU with Uttarakhand govt to strengthen civil aviation

The Airports Authority of India (AAI) has signed an agreement with Uttarakhand government and Uttarakhand Civil Aviation Development Authority (UCADA) to develop the civil aviation sector in the state.   The agreement is aimed to identify relevant factors influencing the deve

Agreements signed to purchase 1050 MW of wind power

Union minister of state for power, coal, new and renewable energy and mines, Piyush Goyal was present at the signing of power purchase agreements (PPAs) for purchase of 1050 MW of wind power under the ministry of new and renewable energy’s (MNRE) first wind auction scheme.  

Timely delivery

Government projects typically suffer from time overrun and cost overrun. There appears to be no project management discipline, and extension of time and escalation of cost rarely attract the kind of serious attention they should. There is no system of fixation of accountability for these substantial deviat





Video

Madras High Court makes Vande Mataram mandatory in schools and colleges in Tamilnadu

Current Issue

Opinion

Facebook    Twitter    Google Plus    Linkedin    Subscribe Newsletter

Twitter