Hi guest, Register | Login | Contact Us
Welcome to Phayul.com - Our News Your Views
Sun 23, Apr 2017 10:54 AM (IST)
Search:     powered by Google
WATCH GCMGC 2017 LIVE FROM DHONDENLING SETTLEMENT, KOLLEGAL
 MENU
Home
News
Photo News
Opinions
Statements &
Press Releases

Book Reviews
Movie Reviews
Interviews
Travels
Health
Obituaries
News Discussions
News Archives
Download photos from Tibet
 Latest Stories
103rd head of Gelug tradition of Tibetan Buddhism passes away
An all-Tibetan IT start-up and their vision to digitize Tibetan Diaspora
Tibetan Opera festival of ‘Shoton’ underway
China's reaction to Dalai Lama’s visit Childish: Noted expert on renaming six places in Arunachal
Kirti monk released after completing prison term
Himalaya FC becomes new Champion of Gyalyum Chenmo football tournament
China the reason for fallout with big Hollywood studios, says Richard Gere
5 Tibetans arrested in Kardze after self immolation by Tibetan
Himalaya FC to clash against Dhondupling FC in the final of 23rd GCM
China names six places in disputed region of ‘Southern Tibet’
 Latest Photo News
President of TWA Dolma Yangchen speaks at a candle light march organized by TWA, TYC and SFT for the latest Tibetan self immolator from Kardze, April 17,2017 Phayul Photo: Kunsang Gashon
Tibetans participate in a candlelight vigil following news of the self immolation protest by a 24 yr old Tibetan named Pema Gyaltsen in Nyarong, Kham, on March 18, 2017. McLeod Ganj, March 19, 2017 Phayul Photo:Kunsang Gashon
His Holiness the Dalai Lama gazes at devotees as he visits the Mahabodhi temple near the Kalachakra venue, a day after the conclusion of 34th Kalachakra. Jan. 15, 2016 Phayul Photo: Kunsang Gashon
more photos »
Advertisement
Hacker connected to the Chinese government likely behind Tibet attacks
Phayul[Sunday, September 16, 2012 23:55]
DHARAMSHALA, September 16: Security software company AlienVault has made rare revelations linking the long-running malware assault on Tibetan groups with a Chinese programmer connected to the Chinese government.

Although Tibetan groups have long been the target of highly sophisticated and well-funded cyber attacks, security firms and researchers have until now stopped short of naming Chinese firms or hackers in China for the relentless assaults.

However, AlienVault, while researching PlugX RAT Trojan’s binaries, started noticing similarities in some of the software’s debug paths with a programme distributed by a Chinese company based in Chengdu, the capital of Sichuan province.

The firm traced the PlugX’s ‘whg’ subfolder to a programme called SockMon distributed from a named domain connected to a company, Chinansl.com Technology Ltd that had published security vulnerabilities in the past.

Further research revealed that ‘Whg’ worked for the company with references to which described him as “Virus expert. Pro?cient in assembly.”

If sources are to be believed, China’s People’s Liberation Army is the sponsor of the WHG’s company.

“At this point you can be thinking we cannot accuse whg of being related to the Xplug RAT and the targeted campaigns just for a couple of debug paths inside the binary, can we?,” AlienVault said.

“With the information we have, we can say that this guy is behind the active development of the Xplug RAT and he probably has some inside on the operations since this path.”

Last week, security software maker Symantec had said that groups involved with the issue of Tibet were amongst the top targets of a hacker group that attacked Google in 2009 and has launched hundreds of other cyber assaults since then.

Eric Chien, a manager in Symantec's research group said the same group of hackers, over the past year, have focussed “almost exclusively on stealing data from companies that supply parts to big defense contractors, rather than targeting the firms themselves.”

“The second most common group of targets was non-government organisations involved in Tibetan human rights issues,” Symantec said while hinting at the involvement of a nation-state in the large network of hackers.
Print Send Bookmark and Share
  Readers' Comments »
Be the first to comment on this article

 Other Stories
Hacker connected to the Chinese government likely behind Tibet attacks
The Dalai Lama arrives in Happy Valley
Advertisement
Advertisement
Photo Galleries
Advertisement
Phayul.com does not endorse the advertisements placed on the site. It does not have any control over the google ads. Please send the URL of the ads if found objectionable to editor@phayul.com
Copyright © 2004-2017 Phayul.com   feedback | advertise | contact us
Powered by Lateng Online
Advertisement