[nsp-sec] One Internet, One Olympic Games

Tue Jul 29 04:04:49 EDT 2008

Dear all,

I was reminded that the list does't support attachment. So I paste the
text below.
Sorry for 'spam' you.

------------------

Dear teams,

Over the past four years we have experienced high-speed development in
computer network technology.
Now we are about to witness the IT technology to play its huge role in
Beijing Olympic Games and internet to become the most attractive
platform for audience to watch the games besides the means of stadium,
radio and television. As defenders of network security, we are
responsible to protect the security of the Internet, and obliged to
safeguard the secure operation of the internet platform of the Beijing
Olympic Games, for we are keenly aware that the athletes deserve a
splendid game after four-year hard training and the global internet
users deserve to enjoy a safe and joy Olympic summer.

As the national CERT of China, CNCERT/CC is working with the Olympics
Organizing Committee to protect the Olympics online systems. Since we
know, we cannot make it unless we get supports from other CISRTs/CERTs
around the world, we'd like to ask all teams here to work together, to
contribute to the great events.

What we are protecting?
A.	Official website of Beijing Olympic Games, including
www.beijing2008.cn and other sub-domains with suffix of
'beijing2008.cn'
B.	The internet infrastructures, including backbone network, public DNS, … etc.

What attacks/threats we are mostly focusing on?
A.	DDOS
B.	DNS attacks ( e.g., DNS poison, Domain name hijack)
C.	Web server intrusion (e.g., Defacement, SQL injection, Malware
injection, Data theft,…etc)
D.	Phishing
E.	Serious vulnerabilities in network system and main applications
F.	Cyber attack attempts of hackers, criminals towards above systems

What you can help?
A.	Provide information and data about above attacks and threats, as
well as suggestion and solutions
B.	Monitor local networks and give us early warning on above attacks and threats
C.	Stop or alleviate attacks from your network or constituency

Who are the contacts in CNCERT/CC?
A.	We have several teams rotating on 7*24 duties. Each teams has a
person responsible for communications who will answer the phones and
check the email box as below:
a)	Fix line: + 86 10 8299 0000, +86 10 8299 0999,
b)	Cell phone: +86 139 1019 6910
c)	Fax: +86 10 8299 0399
d)	Email: cncert at cert.org.cn
B.	For matters of great importance or confidentiality that need to
escalated to senior managers, following people's personal contact
information is suggested:
a)	Mr. Yonglin ZHOU, +86 10 8299 0355 (Fix line), +86 139 1122
6677(Cell phone), zyl at cert.org.cn, yonglin.zhou at gmail.com
b)	Mr. Patrick JIANG, +86 10 8299 0391(Fix line), +86 139 1079
5602(Cell phone), patrick at cert.org.cn
c)	Weimin SUN, +86 10 8299 0103(Fix line), +86 139 1121 8086(Cell
phone), swm at cert.org.cn

What to encrypt confidential information for email exchange?
A.	We usually use PGP tools to encrypt and sign confidential emails.
CNCERT/CC's public key can be found in the annex and all our staff's
public keys can be found at keyserver.cert.org.cn:389
B.	Zipped file or MS word docs with password can be also used if the
pgp tool is not available. Make sure to send the password separately
from the doc files.

How can CNCERT/CC contact you?
A.	We would like to have the general contact information of your
teams, especially the 7*24 contacts. Please send us the contact
information to cncert at cert.org.cn and CC to zyl at cert.org.cn.
B.	If possible, we would like to have you POC information (better
including cell phones) which will only be used in URGENT by our team
senior managers. It is very appreciated If you could provide the POC
information. For the POC information, make sure to encrypt with
Yonglin ZHOU's pgp key and send to him only. Your POC information will
be kept as confidential materials in CNCERT/CC.

Teams, the Beijing Olympic Games is coming soon. Here we are preparing
to win the game with network security threats. Here we are looking
forward to your supports. Let's work as a great team together!

Sincerely,

CNCERT/CC.

ANNEX:
CNCERT/CC's PGP Public Key

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: PGP Desktop 9.8.3 (Build 4028) - not licensed for commercial
use: www.pgp.com

mQGiBDzaNUURBADGAOuMWzOrtZP7M3LAdUlZmYrkuqNbsyE8OOdzlRiO2gTsyWzh
qOryRechbRcpX0lBNji/FG54DEJ8LZI1zMl/NXfdpBz9ANc/nN8rIEAwsCI8vd+A
2jgNeqIaEHJDQYs+YiTKNm5w+YpF5NzN41Sccb+6FKWJ4tOLjm8o6ld/uwCg/6EE
uOYIomMOV5iaPrYk1fV8m7UD/i3jFuWNjqHnKd4FsIKMM4am8YnrgGwu6EEtROLw
LfUE1P1k7hHSq9YcgFSzRDlqstbdnhSKZiGuxEGd6gUzwcZLbnRLdw15Fbm9LwCs
gkGXSKnave4VMWnlSG4qAMnUtAIheE3oy/oEcIS0yCU+G61d6bArrPol4mKOAAK+
9+pdBACoPmoWLEu78sTlhhsfoXBcM1fYp5Frx8wwVGVRDWyAO/nMmFGHg7Dj729d
a5do70TpBw8uXV/EQ9hthBVHDM3hJQ0AVqlEEjP74HDUWfNMmhJabcIYIj1axQZN
glLkYVOGu23RpKpXDYIvyCG+3vgL7S5kMH17cIpFhk0EwgovB7QbQ05DRVJUIDxj
bmNlcnRAY2VydC5vcmcuY24+iQBYBBARAgAYBQI82jVFCAsBAwkIBwIKAhkBBRsD
AAAAAAoJEF0ZIoQMlkWNd3YAn0liQjDbuuhc9/0zZMl8TUYrJv9RAJ4liRn/OzRR
qkfj0ThVapShKut9wrkCDQQ82jVFEAgA9kJXtwh/CBdyorrWqULzBej5UxE5T7bx
brlLOCDaAadWoxTpj0BV89AHxstDqZSt90xkhkn4DIO9ZekX1KHTUPj1WV/cdlJP
PT2N286Z4VeSWc39uK50T8X8dryDxUcwYc58yWb/Ffm7/ZFexwGq01uejaClcjrU
GvC/RgBYK+X0iP1YTknbzSC0neSRBzZrM2w4DUUdD3yIsxx8Wy2O9vPJI8BD8KVb
GI2Ou1WMuF040zT9fBdXQ6MdGGzeMyEstSr/POGxKUAYEY18hKcKctaGxAMZyAcp
esqVDNmWn6vQClCbAkbTCD1mpF1Bn5x8vYlLIhkmuquiXsNV6TILOwACAgf/fxVh
QGuAOKnPm35w3cMXB+XF6HXNZX9mknU7FnH7EbtAdCKl8dt+LqKmuhD8qlWqUQk8
EPiGJPqdmoEX7zNTtgGvLamPSJCuOHUqX7VLRniTeSt2BOjGOct4nzMWA9IASNkb
O9IGxIA+fIcGtX+NUQw5tN91dHv+o7lwelVYGnMlNw9VzznxHQ/mGBXImSV8F9l+
WHRi5Ifv4nn3dpTsmZe2Dp8irxCL9o0OZiEXCqA7wO1c2KWvgXiZWUfgPvOiLArB
kndn3v3Jze+rmPtzQSPnDlEUf3Gb56qdY7zNf4vfXnOjAo6hyL+1Qpd/LAkn1HYG
KyqCeHqMFIbJUPgruokATAQYEQIADAUCPNo1RQUbDAAAAAAKCRBdGSKEDJZFjbu6
AKCKD9IMKpzI7qiAacK2G97/zmaNXACfQrBTD3Jym/EHj/XXkiAFGZca5Rw=
=5EkK
-----END PGP PUBLIC KEY BLOCK-----

On Tue, Jul 29, 2008 at 3:37 PM, Yonglin ZHOU <yonglin.zhou at gmail.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Dear teams,
>
> The Beijing 2008 Olympic Games is coming soon. As the national CERT of
> China, CNCERT/CC is working with the Olympics Organizing Committee to
> protect the Olympics online systems. Since we know, we cannot make it
> unless we get supports from other CISRTs/CERTs around the world, we'd
> like to ask all teams here to work together, to contribute to the great
> events.
>
> Attached you will find a cooperation requirement. Hope your team could
> provide us significant supports then.
>
> If you have any questions, please feel free to contact me.
>
> I'm sorry if you receive this email more than once.
>
> Note:
> This email and the attachment are allowed to be circulated in your team
> ONLY.
> Please don't forward to any third party. If you think it is necessary to do
> that, please contact us for permission.
>
>
> Best Regards,
>
> Yonglin ZHOU
> CNCERT/CC
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGP Desktop 9.8.3 (Build 4028) - not licensed for commercial use:
> www.pgp.com
> Charset: utf-8
>
> wj8DBQFIjsavXRkihAyWRY0RAgleAJ0aE/BpDXneBU8wDVAZEy3x3WMIUwCfa29f
> roaZIZpre/6mFr5EhVu7Xh8=
> =I++N
> -----END PGP SIGNATURE-----
>

-- 
-------[CNCERT/CC]-----------------------------------------------
Zhou, Yonglin 【周勇林】
CNCERT/CC, P.R.China 【国家计算机网络应急技术处理协调中心】
Tel: +86 10 82990355 Fax: +86 10 82990399 Web: www.cert.org.cn
Finger Print: 9AF3 E830 A350 218D BD2C 2B65 6F60 BEFB 3962 1C64
-----------------------------------------------[CNCERT/CC]-------