Feeds

Chinese hackers target media in anniversary run-up

News organisations, NGOs hit by trojan attacks

Top 5 reasons to deploy VMware with Tegile

Chinese workers in foreign media outlets within China are in the firing line of a new wave of malware-laden emails.

The timing of the emails, in the run-up to the 60th anniversary of the Communist Party's rise to power in mainland China on 1 October, has sparked dark accusations (supported by circumstantial evidence) that the Chinese government might be behind the attacks.

Human rights groups are also getting targeted in the latest wave of cyber-attacks, which are far from unprecedented.

"There is definitely a pattern of virus attacks in the run-up to important dates on the Chinese political calendar," Nicholas Bequelin of Human Rights Watch in Hong Kong told Reuters.

"Whether the government is behind it, closes its eyes to it, supports it or has nothing to with it is unclear. There are also patriotic hackers, so there is no way to know for sure who is behind it."

The latest wave of attacks involves the forwarding of kosher emails from activist organisations together with a fake malware-ridden attachment. The tactic gets around earlier tell-tale signs of malicious emails, such as poor spelling. In addition, email addresses are spoofed to disguise their true origin.

Reuters reports that Chinese workers at foreign news organisations across China received identical emails on Monday, each containing an attachment designed to exploit a recently-patched flaw in Adobe Acrobat. Flaws in Adobe's software applications are becoming a favourite in targeted attacks, second only to Microsoft Office-themed assaults.

The tainted emails posed as a request by a fictitious economics editor called Pam Bouron to line-up interviews in advance of a supposed visit to Beijing. The messages were tailored so that Bouron appeared to work for each of the targeted news outlets: Reuters, the Straits Times, Dow Jones, AFP, and Italian news agency Ansa.

The "Pam Bouron" emails targeted Chinese workers whose names were not typically included in news reports. These workers are hired through an agency which reports to the Chinese Foreign Ministry, a fact seized on by some as circumstantial evidence of possible Chinese government involvement in the ruse.

Many foreign reporters in Beijing and Shanghai received malware-laden emails shortly after the initial attack.

Trojan tainted emails were also sent to foreign news agencies and non-government organisations in the run-up to last year's Beijing Olympics, Reuters adds.

In related developments, Beijing authorities have reportedly tightened physical security in the run-up to a military parade and other celebrations to celebrate National Day. The government has also reportedly mandated the use of stricter ISP-level censorware filters in an attempt to further control internet access in the run-up to 1 October. ®

Intelligent flash storage arrays

More from The Register

next story
Knock Knock tool makes a joke of Mac AV
Yes, we know Macs 'don't get viruses', but when they do this code'll spot 'em
Shellshock over SMTP attacks mean you can now ignore your email
'But boss, the Internet Storm Centre says it's dangerous for me to reply to you'
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
China is ALREADY spying on Apple iCloud users, claims watchdog
Attack harvests users' info at iPhone 6 launch
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
New hybrid storage solutions
Tackling data challenges through emerging hybrid storage solutions that enable optimum database performance whilst managing costs and increasingly large data stores.
Website security in corporate America
Find out how you rank among other IT managers testing your website's vulnerabilities.