Two Chinese firms traced as sources of mass hacking attacks, IT Security News, ET CISO


Two Chinese hackersGothic Panda and Stone Panda – have been traced as the alleged orchestrators of a majority of hacking attacks on Indian entities last month. Mumbai Mirror was the first to report the story on its website on June 20. Sources at a cybersecurity firm said though both the agencies are private, they are known to act allegedly at the behest of Chinese agencies.

A source on condition of anonymity said the hacking activities in India last month were conducted behind the cloak of virtual privacy network or proxy servers. “On closer scrutiny, the attacks were traced to Gothic Panda and Stone Panda,” the source said.

The swarm of 40,000-plus hacking attacks by groups purportedly operating from China had used a type of malware to access and then encrypt sensitive data of targeted private/public entities to extort ransom. The ‘Chinese’ hackers managed to breach, to varying extent, the safety protocols of at least six private /public targets across the country, including Delhi and Mumbai, and a government-run utility provider in Jammu and Kashmir. Most hacking activities were allegedly traced to China’s south-western province, Sichuan.

The hackers also tried to cripple or crash websites connected to utility providers and organisations involved in banking and information management services via ‘Internet Protocol Hijack’ and ‘Distributed Denial of Service’ (DoS) attacks. These attacks, also referred to as ‘probes’, looked for flaws in security features of websites.

“Most of these probes were not successful,” sources said.

In one case, in which the ‘probe’ succeeded, the home page of a website was breached and original content was replaced with text in a foreign language. Sources emphasised the need to develop strong cybersecurity measures, including firewalls and counter-virus capabilities as protection against hacking attempts.

As part of the DoS attacks, hackers seek to simply crash cyber-based systems, like a website. For instance, if a website of a utility provider can handle 1,000 requests per second, the hacker will bombard it with 10 lakh requests so that the system breaks down. Under the Internet Protocol Hijack, there is an attempt to divert internet traffic of a target, by routing it via China, for surveillance purposes.





Source link

Recent articles

Commemorate Universal’s Halloween Horror Nights at Home With These NEW Face Masks!

If we’re honest, the cancellation of Universal’s Halloween Horror Nights broke our little fright night loving hearts this year! Tribute Store Even though we know...

Bank of America strategist: ‘I’m so bearish, I’m bullish’

Only on Wall Street would an investment research report titled, “I’m so bearish, I’m bullish”...

Genshin Impact PS4 Release Date to Land This Fall

The team at miHoYo is currently working on a gorgeous open-world action-RPG, Genshin Impact. PlayStation 4 players worldwide will be able to venture into...

Triumph preps to sell G650 and composites work as refocus continues | News

Aerospace supplier Triumph Group this week progressed with a plan to divest its aerostructures divisions, saying it has signed deals to sell business-jet...

Brent Scowcroft, a Force on Foreign Policy for 40 Years, Dies at 95

Long after his retirement, Mr. Scowcroft remained a pillar of the Republican national security establishment. In the run-up to the 2016 presidential election,...

Marvel’s Avengers Beta – New Gameplay Today Live

After years of anticipation, Marvel's Avengers is almost here. But before we get to the full release of Crystal Dynamics' take on Earth's...

Leave a reply

Please enter your comment!
Please enter your name here