Slashdot Mirror

← Back to Stories (view on slashdot.org)

China's Foreign Ministry: China Did Not Attack Github, We Are the Major Victims

Posted by samzenpus on from the it-wasn't-us dept.

An anonymous reader writes At the Regular Press Conference on March 30, China's Foreign Ministry Spokesperson Hua Chunying responded on the charge of DDoS attack over Github. She said: "It is quite odd that every time a website in the US or any other country is under attack, there will be speculation that Chinese hackers are behind it. I'd like to remind you that China is one of the major victims of cyber attacks. We have been underlining that China hopes to work with the international community to speed up the making of international rules and jointly keep the cyber space peaceful, secure, open and cooperative. It is hoped that all parties can work in concert to address hacker attacks in a positive and constructive manner."

23 of 137 comments (clear)

  1. Plausible Deniability by Spy+Handler · · Score: 4, Insightful

    except in this case it's not so plausible.

    On the other hand NSA denying it created Stuxnet isn't all that plausible either.

    1. Re:Plausible Deniability by Tablizer · · Score: 3, Informative

      Did they officially deny creating Stuxnet? I vaguely remember them saying something like "We don't comment on such as is our policy, and thus won't confirm nor deny".

      --
      Table-ized A.I.
    2. Re:Plausible Deniability by HiThere · · Score: 3, Insightful

      Well, it's actually quite plausible. That doesn't mean you should believe it. Lots of things are believable that aren't true.

      The interesting thing is, I can't think of how they could either make it believable that they did it or that they didn't do it. In some things there are no good grounds for having a belief in either (any) direction.

      The thing is, all the governments I've paid any attention to lie so often that you would do well to use a roulette wheel to decide HOW they are lying in any particular statement. And "They're telling the truth" would be the 00 slot of the wheel. But belief should occur only when there is reasonably grounded evidence...and then it shouldn't be committed belief, because governments are quite able to fabricate evidence when they find it worth the effort.

      --

      I think we've pushed this "anyone can grow up to be president" thing too far.
  2. Proof by Coren22 · · Score: 3, Informative

    Where is their counter to the proof offered during the attack? As I recall the DDoS was caused by requests to the Chinese search engine from outside China.

    --
    APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
    1. Re:Proof by AmiMoJo · · Score: 2, Insightful

      Neither side has presented any convincing evidence. This is just going to keep happening because it's so hard to accurately trace cyber attacks.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    2. Re:Proof by Coren22 · · Score: 2, Informative

      http://it.slashdot.org/story/1...

      Original story, it goes through the mechanism in use right in the summary. It is quite clear that queries to Baidu from outside the great firewall were triggering requests to GitHub.

      --
      APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?
    3. Re:Proof by Anonymous Coward · · Score: 5, Informative

      Neither side has presented any convincing evidence. This is just going to keep happening because it's so hard to accurately trace cyber attacks.

      Yep, so hard to accurately trace cyber attacks. But if you had read anything at all on this particular attack:

      Mikko Hyponen, the chief research officer of cybersecurity firm F-Secure, said the attack was likely to have involved Chinese authorities because the hackers were able to manipulate Web traffic at a high level of China’s Internet infrastructure. It appeared to be a new type for China, he added. “It had to be someone who had the ability to tamper with all the Internet traffic coming into China.” he said.

      Though Baidu is the largest search engine in China by several measures, the attack appeared to use traffic from its users outside the country, security experts said. When a user navigated to the Baidu search engine, they said, a code was activated that sent continuous requests for data from the user’s computer to GitHub. By tapping overseas users, the hackers made the attack harder to block, because the requests to GitHub came from all over the world and looked like typical requests for information.

      And also the motive is very clear for China to attack Github. Not so clear for anyone else.

    4. Re:Proof by tnk1 · · Score: 2

      Yes, but it also implies that someone has a goal in mind by framing China. Either to hide their own activities or to make China look bad.

      Who else has the motive to take down GitHub? Organized crime could, but what do they get out of it? The US Government could, but what would the goal be?

      Unless someone provides motives for other players at that level to make that attack, it's probably China. Simple internet trolls might know how to operate such an attack but probably not the capacity to perform it.

    5. Re:Proof by dos1 · · Score: 3, Informative

      But the actual traffic is international and there's nothing odd in it. It's the actual source of the attack - the hijacked Baidu script that changed non-Chinese visitors of Chinese pages into botnet (well, not really, but very botnet-like) nodes instructed to attack GitHub - that without any doubt came from the Great Firewall of China. It might not be the government, but unless there's a massive man-in-the-middle attack covering the whole non-Chinese Internet, it's definitely something that comes from China.

  3. Translation: by Verloc · · Score: 4, Insightful

    "We are not hacking because we get hacked a lot"

    The 'logic' here is... not good.

    1. Re:Translation: by Anonymous Coward · · Score: 2, Insightful

      It's not their logic that is not good, it's your summary that is not good. They aren't saying that the fact that they get hacked a lot proves that they don't hack. They're saying that a lot of people jump to the conclusion that any hacking incident must be from China in spite of the fact that they're are a lot of hackers are from outside of China. The point of saying that they are often the victim of hacking is to emphasize that there are non-Chinese hackers.

  4. I would not be surprised... by ckatko · · Score: 3, Interesting

    ...If it was USA/Israel/Britain/Canada pulling yet another False Flag operation of saying "OMGAWD Asians did it!".

    For those who missed it, Canada outright admitted it they do this.

    1. Re:I would not be surprised... by dos1 · · Score: 5, Informative

      Have you even checked how this attack looks like? The traffic is *NOT* coming from Chinese servers, but that's not the point. That's actually why it's so powerful. Baidu serves the malicious JavaScript in place of their analytics tracking script. Inside of China it's normal, but when it goes through the Great Firewall it gets changed to malicious script that turns any visitors of webpages with Baidu script (Google Analytics equivalent) attached to them into part of DDoS. The way that script worked initially was actually pretty hilarious. It attached new tag to the page with src attribute being github URL. This allowed github to replace content under those URLs to "alert('WARNING: malicious script detected');", which got executed in every browser that was turned into an attacker (and due to blocking nature of alert, limiting the impact). Of course there's more to that and the techniques used by attackers changed over past days - for instance, now TCP SYN floods started as well. But the fact is that there's definitely some big Chinese player behind it, even if it's actually not the most likely one - the government.

    2. Re:I would not be surprised... by dos1 · · Score: 2

      the <script> tag*

      Mistakenly turned on the HTML formatting. Hopefully it's still readable without the new lines :P

  5. Not much said by PineHall · · Score: 3, Informative
    Here is the question and answer:

    Second, a report says that a US website was under hacker attack, and the source of the attack was from China. How do you respond?

    On your second question, it is quite odd that every time a website in the US or any other country is under attack, there will be speculation that Chinese hackers are behind it. I'd like to remind you that China is one of the major victims of cyber attacks. We have been underlining that China hopes to work with the international community to speed up the making of international rules and jointly keep the cyber space peaceful, secure, open and cooperative. It is hoped that all parties can work in concert to address hacker attacks in a positive and constructive manner.

  6. Finally by Megahard · · Score: 4, Funny

    We have someone to take the place of the Iraqi Information Minister. I miss that guy.

    --
    I eat only the real part of complex carbohydrates.
  7. Always deny by ITRambo · · Score: 2

    Russia and China are reliable liars when it comes to denying what others have caught them doing. Very much like a child that got caught with a hand in the cookie jar. I do not believe denials that come out of either country.

    1. Re:Always deny by Flavianoep · · Score: 2

      Russia, China, as well as any intelligence agency in the world, are reliable liars when it comes to denying what others have caught them doing.

      FTFY.

      --
      Linux is for people who don't mind RTFM.
  8. All parties? by rippeltippel · · Score: 2

    "It is hoped that all parties can work in concert to address hacker attacks in a positive and constructive manner."

    ...all parties? I thought there was just one.

  9. Re: Yeah, sure. by Anonymous Coward · · Score: 3, Interesting

    Wait...really? You'd don't believe the NSA but you'll believe a government official from a country that has killed millions of its OWN people? Wow. I mean, NSA basically stands for National Shitfilled Agency, but I'll believe them in a heartbeat over these buggers.

    Look up mass murder by communist regimes. Look up what happened to the democracy movement in China. Well, assuming you aren't in China, where you aren't free to to so.

    Get your head out of your rear and actually get a clear picture of the regime in China. The NSA may not be the good guys...but the Chinese regime actually IS the bad guys. They only look good in comparison to Pol Pot and the Kim regimes.

  10. Hilarious defense by MikeRT · · Score: 4, Insightful

    Your honor, I'd like to remind you that as a member of the Crips, my client is constantly facing risks to his life including up to being gunned down in the street. Therefore he clearly could not have committed that drive by shooting of the Bloods.

  11. If they don't want to be blamed... by ilsaloving · · Score: 2

    If they don't want to continually be blamed for attacking various web properties, then maybe they should... I dunno.... stop attacking various web properties?

  12. Quick, get damage control out here by LordLimecat · · Score: 3, Interesting

    One wonders if we'll be seeing the return of the 50 Cent Party in this thread.