Vast Spy System Loots Computers in 103 Countries

Source: NYT

March 29, 2009

Vast Spy System Loots Computers in 103 Countries
By JOHN MARKOFF

TORONTO — A vast electronic spying operation has infiltrated computers and has stolen documents from hundreds of government and private offices around the world, including those of the Dalai Lama, Canadian researchers have concluded.

In a report to be issued this weekend, the researchers said that the system was being controlled from computers based almost exclusively in China, but that they could not say conclusively that the Chinese government was involved.

The researchers, who are based at the Munk Center for International Studies at the University of Toronto, had been asked by the office of the Dalai Lama, the exiled Tibetan leader whom China regularly denounces, to examine its computers for signs of malicious software, or malware.

Their sleuthing opened a window into a broader operation that, in less than two years, has infiltrated at least 1,295 computers in 103 countries, including many belonging to embassies, foreign ministries and other government offices, as well as the Dalai Lama’s Tibetan exile centers in India, Brussels, London and New York.






Read more: http://www.nytimes.com/2009/03/29/technology/29spy.html?hp

And we think we're the most technologically advance nation in the world. Hells bells, the Chinese have been kicking ass and taking secrets for some time now.

Just wait for next week's fabrications about Chinese human rights violations or Tonkin-esque provocations in China's economic zone.

The beast must be fed. Just because we have Democrats in charge doesn't mean the war monster has been satiated. Remember Vietnam?

Very interesting, and disturbing.

Work backwards from that premise.

persecutes the Tibetan people, stuffs melamine into [et food and baby formula, would attempt to get any info to bolster itself.

The PRC (Peoples' republic of China) is largest political entity on earth. In history. It deals with issues of scale and effect no one truly understands. It was born in blood only a few generations ago (1949) and the true story can never be known. The west has a relationship with China based upon exploitation, and China literally had to throw off foreign domination- Taiwan resulted from 'Nationalists' fleeing mainland and setting up separate country right off the cost; with American/western help. Taiwan's old regime claimed it had legal rights to rule- the revolution didn't really count, no matter how successful. Thus, technically, the PRC is an interim regime, and MUST eventually take over Taiwan somehow, in order for it to be legit in court of law. Why do you think the west has stepped carefully around China, including allowing Vietnamese to kick USA to the curb in mid 70's? Cuz we're nice people?
no.
It's because China is a nuclear power that is changing into a less oligarchial/communist type top down political entity, and if it ever came apart at the seams, which is possible, there'd be hell to pay...

It wasn't the Chinese that developed it.

.... always suspect the NSA's ECHELON system first, and then work down the food chain.

Anyone? Anyone? Bueller? Bueller?

You people from the former *bush misadministration can put your hands down- we KNOW you're total fools...

I know it used to be a government thing, but it's not anymore. They need to physically segregate the networks, and only allow people to use the internet on computers without sensitive information.

Most of the time the governments need the information that's found only on the Internet. Remember the internet was once DARPAnet. It would mean the government would have to abandon the system they built and recreated it from scratch.

It's damn difficult and expensive, too, to have separate redundant systems. It looks like that's what they're going to have to do.

Of course, that doesn't help the rest of us who are on a contaminated system.

Then we'll hear about how none of it could have been foreseen... We need to de-Reaganize our government.

"The malware is remarkable both for its sweep . . . It can, for example, turn on the camera and audio-recording functions of an infected computer, enabling monitors to see and hear what goes on in a room. The investigators say they do not know if this facet has been employed."

Umm . . . I thinking it's a pretty good bet it has been used.

Well I guess if he does it would be a MAC. He seems like a MAC kind of guy.

If they really want to know what's going on with a certain individual.

Even if the cellphone is off.

:tinfoilhat:

Tinfoil doesn't do it these days.

My tv has been acting funny lately so that must be it. I think I better make sure I am dressed well and sit like lady when watching tv now.

It makes me feel important !!

:woohoo:

How hard would it be to set up or co-opt some systems in China to work though? It is intuitively obvious to the casual observer that anyone 1337 enough to break into so many different things would cover their tracks, and everyone is already willing to accept that the PRC has an army of cyber ninjas. They'd make the perfect scape goat.

It seems to me that the PRC would put state security above everything: including feeding its people. It would put computer espionage and security at a very high priority. I don't think the "Great Firewall of China" only works one way, so spoofing its network is more difficult than it successfully spoofing other networks. When after security investigations are over and they've worked past the spoofs, if the arrows point to within China, than it's probably usually China. Especially when its identifiable enemies are involved.

North Korea put building a nuke over feeding their people. So for China to do the same thing is not too much of a strain on the imagination.

or someone. It's not that hard to add an extra hop.

But these snoops were able to catch it and continue to follow the trail into China. As its last line of defense, China could just deny, deny, deny. What is the world supposed to do even then?

I'm thinking, though, that China is not the only player in the game. The snoops only looked at who was cracking the Dali Lama's computer and then looked for similar cracks throughout the world. That was only one modus operandi. I'm certain if you look at other cracks, you'll follow the networks back to Israel and Russia, among others.

I mean I get so many hits on my firewall from China. It is amazing. So, either they have hackers everywhere all in cafes around China, or they have some kind of government program to train.

I think we ought to put a major firewall around China till they absolutely stop this.

I have many posts at DU warning of exactly these types of vulnerabilities, including risk of the malware enabling the microphone or camera. In June 2007, an attack of this type was spread hidden within ads at several sites, where they were then served to the visitors at sites like DU, and including DU itself. Months earlier, the Naval War College was hacked, forcing the NWC to replace all the systems.

I will add a couple more of my posts in this area to my journal.

The methods of attack require almost no special skills and are almost impossible to stop and they might not depend on any action by the user. The simplest attacks require that you open or display a SWF or PDF file that hides the malware.

Here is a link to a list of recent Flash (SWF) vulnerabilities. Do a quick Google and you find not only instructions but software products that allow you to spy on employees, spouses, or anyone -- capturing screen images, recording conversations, taking pictures -- all without being detected.

http://news.cnet.com/security/?keyword=Flash


Linux and OS X are vulnerable too.

Furthermore, I'd bet that we're at, or near, the top of the list.

:shrug: