[nsp-sec] [CNCERT/CC ANNUAL REPORT] Re: china -> india attacks?

Yonglin ZHOU yonglin.zhou at gmail.com
Mon May 5 22:30:25 EDT 2008 

In 2007, CNCERT/CC monitored some popular Trojans and discovered 995,154 IP
addresses of computers embedded with Trojans in Chinese mainland, which was
increased by 2125% compared with that of year 2006.
In 2007,
CNCERT/CC discovered over 3,624,665 IP addresses of computers embedded with
Botnet clients in Chinese mainland. Meanwhile, 10,399 Botnet servers outside
of
Chinese mainland were discovered controlling Botnet clients in Chinese
mainland.

Actually, China is one of the biggest victim of cyber attacks.

Since so great number of computers are compromised and used by hackers, it
is not surprise if you find an attack packet source from China at anywhere.

I just attached the Annual Report of CNCERT for your refercece.

Best,

Yonglin.
CNCERT/CC


On 5/6/08, Jose Nazario <jose at arbor.net> wrote:
>
> ----------- nsp-security Confidential --------
>
> folks
>
> saw this in my morning reading:
>
>
> http://www.ibnlive.com/news/china-mounts-cyber-attacks-on-indian-sites/64562-3.html
>
> i haven't been able to see any evidence of this in my ddos commands,
> suggesting that i may be missing some C&Cs.
>
> anyone have any info?
>
> China mounts cyber attacks on Indian sites
> CNN-IBN
>
> New Delhi: India's cyber security is under threat. For more than a year
> now, China has been regularly attacking the Indian cyberspace.
>
> Several big attacks have been sourced to China over the last few months
> include one on National Informatics Centre, which was aimed at the
> National Security Council, and on the MEA.
>
> Security experts fear apart from giving China a good idea of the content,
> it will also enable them to disable the networks during a conflict.
>
> Off the records senior government officials admit that these attacks are
> not isolated incidents of hacking but a more sophisticated and methodical
> one.
>
> India though has a dedicated team to deflect these attacks, is yet to come
> up with an aggressive strategy to counter them.
>
> Earlier in April, Chinese hackers targeted the Indian embassy computers in
> Beijing on Thursday.
>
> Official sources confirmed these attempts but said classified information
> has not been compromised.
>
> They said computers storing sensitive data are standalone systems not
> linked to the Internet. CERT-IN, the official watchdog that tracks hacking
> of government networks, has refused to comment on the matter.
>
> No website is 100 per cent safe. There are websites with high level of
> security but there is always some weakness, Chinas cyber hacker Xiao Chen.
>
> Chen and his friends run a hacking website from China. It claims 10,000
> registered users and 50,000 hits a day, thanks to the useful advice and
> free software it offers for breaking into computer systems.
>
> Chen boasts two of his colleagues have hacked into the Pentagon. CNN has
> no way of verifying that.
>
> --
> -------------------------------------------------------------
> jose nazario, ph.d.     <jose at arbor.net>
> security researcher, office of the CTO,  arbor networks
> v: (734) 821 1427             http://asert.arbornetworks.com/
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-security
> community. Confidentiality is essential for effective Internet security
> counter-measures.
> _______________________________________________
>



-- 
-------[CNCERT/CC]-----------------------------------------------
Zhou, Yonglin              【周勇林】
CNCERT/CC, P.R.China       【国家计算机网络应急技术处理协调中心】
Tel: +86 10 82990355  Fax: +86 10 82990399  Web: www.cert.org.cn
Finger Print: 9AF3 E830 A350 218D BD2C  2B65 6F60 BEFB 3962 1C64
-----------------------------------------------[CNCERT/CC]-------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CNCERTAnnualReport2007.pdf
Type: application/pdf
Size: 422808 bytes
Desc: not available
URL: <https://puck.nether.net/mailman/private/nsp-security/attachments/20080506/a885cb37/attachment-0001.pdf>

More information about the nsp-security mailing list