I'm hearing that its like 30 companies involved. What I'm wondering is how they attributed it to the Chinese. With so many compromised systems in china isn't that the perfect joe-job?
If I was Chinese and working to penetrate a bunch of us companies why would i do the deed from my own countries network. Rarely does a cyber criminal use networks within their own country to control asses, why do the Chinese? If I was from another nation I would look at the Chinese systems as a easy proxy, and throw off my trail by attempted crompromise of "freedom fighter" accounts. One thing I have learned is that attribution is very hard to do. -rick Paul Ferguson wrote: > On Tue, Jan 12, 2010 at 4:56 PM, Burian, Matthew J. <[email protected]> > wrote: > >> Google has posted some more information regarding this topic to their own >> blog: > >> http://googleblog.blogspot.com/2010/01/new-approach-to-china.html > > > If you'll notice, I posted that link below. > > Here's another related to to the same issue: > > http://blogs.adobe.com/conversations/2010/01/adobe_investigates_corporate_n > .html > > - ferg > >> On Tue, Jan 12, 2010 at 7:08 PM, Paul Ferguson <[email protected]> >> wrote: > >>> Via SFGate.com (AP). >>> >>> [snip] >>> >>> Google Inc. said Tuesday it might end its operations in China after it >>> discovered that the e-mail accounts of human rights activists had been >>> breached. >>> >>> The company disclosed in a blog post [1] that it had detected a "highly >>> sophisticated and targeted attack on our corporate infrastructure >>> originating from China." Further investigation revealed that "a primary >>> goal of the attackers was accessing the Gmail accounts of Chinese human >>> rights activists," Google said in the post written by Chief Legal >>> Officer David Drummond. >>> >>> Google did not specifically accuse the Chinese government. But the >>> company added that it is "no longer willing to continue censoring our >>> results" on its Chinese search engine, as the government requires. >>> Google says the decision could force it to shut down its Chinese site >>> and its offices in the country. >>> >>> [snip] >>> >>> More: >>> >>> http://www.sfgate.com/cgi-bin/article.cgi?f=/n/a/2010/01/12/financial/f1 >>> 503 41S73.DTL >>> >>> - - ferg >>> >>> [1] http://googleblog.blogspot.com/2010/01/new-approach-to-china.html >>> > _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
