Cyber spies break into government computers
Sunday 29 March 2009
A cyber spy network based mainly in China hacked into classified documents from government and private organisations in 103 countries, including the computers of the Dalai Lama and Tibetan exiles, Canadian researchers said.
The work of the Information Warfare Monitor initially focused on allegations of Chinese cyber espionage against the Tibetan community in exile, and eventually led to a much wider network of compromised machines, the internet-based research group said.
"We uncovered real-time evidence of malware (malicious software) that had penetrated Tibetan computer systems, extracting sensitive documents from the private office of the Dalai Lama," investigator Greg Walton said.
The research group said that while it's analysis points to China as the main source of the network, it has not conclusively been able to detect the identity or motivation of the hackers.
Students For a Free Tibet activist Bhutila Karpoche said her organisation's computers have been hacked into numerous times over the past four or five years, and particularly in the past year. She said she often gets e-mails that contain viruses that crash the group's computers.
The IWM is composed of researchers from Ottawa-based think tank SecDev Group and the University of Toronto's Munk Centre for International Studies. The group's initial findings led to a 10-month investigation summarised in the report to be released online today.
The researchers detected a cyber espionage network involving over 1,295 compromised computers from the ministries of foreign affairs of Iran, Bangladesh, Latvia, Indonesia, Philippines, Brunei, Barbados and Bhutan. They also discovered hacked systems in the embassies of India, South Korea, Indonesia, Romania, Cyprus, Malta, Thailand, Taiwan, Portugal, Germany and Pakistan.
Once the hackers infiltrated the systems, they gained control using malware - software they install on the compromised computers - and sent and received data from them, the researchers said.
Two researchers at the UK's Cambridge University who worked on the part of the investigation related to the Tibetans are also releasing their own report today.
In an online abstract for The Snooping Dragon: Social Malware Surveillance of the Tibetan Movement, Shishir Nagaraja and Ross Anderson write that while malware attacks are not new, these attacks should be noted for their ability to collect "actionable intelligence for use by the police and security services of a repressive state, with potentially fatal consequences for those exposed".
- 1 Man who was struck and killed by lightning in Brecon Beacons 'was carrying a selfie stick'
- 3 Tube strike: This pedestrian-friendly map tells you the time it takes to walk between stations
- 4 Pamplona Running of the Bulls 2015: Three men gored and 10 hospitalised on first day of festival
- 5 Sarah Jessica Parker explains why she is not a feminist: 'It's not just about women now'
Man who was struck and killed by lightning in Brecon Beacons 'was carrying a selfie stick'
Greece debt crisis: Greek future in the euro slips into deeper uncertainty as Alexis Tsipras arrives at emergency talks without a written plan
Man soars over Calgary after tying 110 balloons filled with helium to his lawn chair for PR stunt, gets arrested for mischief
Tube strike: This pedestrian-friendly map tells you the time it takes to walk between stations
Pamplona Running of the Bulls 2015: Three men gored and 10 hospitalised on first day of festival
More Britons believe that multiculturalism makes the country worse - not better, says poll
Osborne to cap family benefits at £23,000 – announced ahead of his post-election Budget
Nathan Collier: Montana man inspired by same-sex marriage ruling requests right to wed two wives
Sickness and disability benefits could be reduced by £30 a week as part of £12bn welfare cuts
Greece debt crisis: Angela Merkel and Francois Hollande issue Athens with 24-hour ultimatum to avoid crashing out of the euro
Greece crisis: Referendum exposes a gaping hole at the heart of the European Union – its lack of genuine legitimacy
£23000 - £27000 per annum: Recruitment Genius: A Business Analyst is required ...
£16000 - £23000 per annum: Recruitment Genius: To succeed, you will need to ha...
£8 per hour: Recruitment Genius: This is an opportunity to join an award winni...
£7 - £9 per hour: Recruitment Genius: Are you outgoing? Do you want to work in...