Chinese fingerprints found on Google breach

NY Times:

An American computer security researcher has found what he says he believes is strong evidence of the digital fingerprints of Chinese authors in the software programs used in attacks against Google.

...

In the week since the announcement, several computer security companies have made claims supporting Google’s suspicions, but the evidence has remained circumstantial.

Now, by analyzing the software used in the break-ins against Google and dozens of other companies, Joe Stewart, a malware specialist with SecureWorks, a computer security company based in Atlanta, said he determined the main program used in the attack contained a module based on an unusual algorithm from a Chinese technical paper that has been published exclusively on Chinese-language Web sites.

The malware at the heart of Google attack is described by researchers as a “Trojan horse” that is intended to open a back door to a computer on the Internet. The program, called Hydraq by the computer security research community and intended to subvert computers that run different versions of the Windows operating system, was first noticed earlier this year.

Mr. Stewart describes himself as a “reverse engineer,” one of a relatively small group of software engineers who disassemble malware codes in an effort to better understand the nature of the attacks that have been introduced by the computer underground, and now possibly by governments as well.

“If you look at the code in a debugger you see patterns that jump out at you,” he said. In this case he discovered software code that represented an unusual algorithm, or formula, intended for error-checking transmitted data.

...


This is good forensic work on unraveling how the attack was done and giving clues to who was responsible. Pushing deeper into the evidence surrounding the attacks on Google and others should reveal a pattern.

We still need to get to the point where we can also walk back the cat on the Zombies used in the attack and get back to the source of the attacks.

Comments

Post a Comment

Popular posts from this blog

Should Republicans go ahead and add Supreme Court Justices to head off Democrats

Washington Post: Some Democrats eye adding more justices to the Supreme Court to change its ideological bent The once-remote idea has gained the attention of liberals angered by the GOP push to remake the federal courts. Probably the easy way to defeat this court-packing scheme is for Trump to propose doing the same thing now.  It would lead to Democrat denunciations and claims that it would be wrong, thereby blowing up any attempt by them in the unfortunate event of Democrats winning a presidential election.
Read more

Is the F-35 obsolete?

Headline USA: Pentagon Fires Back after Musk Calls Its Most Expensive Project ‘Obsolete’ 'Yeah, as I'm sure you can appreciate, Mr. Musk is, currently, a private citizen, I'm not going to make any comments about what a private citizen may have to say about the F-35....'   ... ... Drones appear to be replacing jets for many operations.  The Russia-Ukraine war is an example of that.  Drones are often hard to detect and can be used for intelligence operations as well as for attacking enemy targets.  It would not surprise me to see drones engaging other drones in combat.  They also cost much less than manned fighters.  
Read more

Apple's huge investment in US including Texas facility

Blaze: Apple announced a $500 billion commitment to infrastructure in the United States over four years, its largest commitment to domestic spending to date. Apple said it will expand teams and facilities in Arizona, California, Iowa, Michigan, Nevada, North Carolina, Oregon, Texas, and Washington as part of its new spending. With a new facility in Houston, Texas, Apple will reportedly double its investment in advanced manufacturing along with increasing investments in AI and silicon engineering. The company said in a press release that the Houston facility will produce servers to support Apple Intelligence, the "personal intelligence system that helps users write, express themselves, and get things done." ... The Texas facility will be for advanced technologies.   Texas has become a place that is very supportive of the tech industries.  Austin and Houston have seen much of the tech growth in the state.  Texas universities have been active in the AI field.
Read more