Risk
4/9/2012
12:48 PM
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Anonymous Continues Barrage Of Government Hacks

Hacktivist group Anonymous continues string of cyber attacks on governments worldwide, with attacks on China, Tunisia, Uganda, and the United Kingdom in the last few weeks.

Anonymous: 10 Facts About The Hacktivist Group
Anonymous: 10 Facts About The Hacktivist Group
(click image for larger view and for slideshow)
In the wake of a continuing series of reports of cyber attacks by the Anonymous hacking group against China, the Chinese government admitted Thursday that it had indeed recently fallen prey to those attacks.

Anonymous supporters also claimed to attack Ugandan government websites over the weekend, and said that they planned to begin attacks on United Kingdom government servers. Anonymous also claimed to have hacked the Tunisian prime minister's private email account, and released what it said was his email archive to the Web. The hackers' collective has targeted numerous governments in recent months, including U.S. federal agencies, NATO, and the Israeli government.

As for China, hackers have in the past few weeks defaced websites with messages calling China's government "evil" and warning Chinese Internet users to be "careful" because their "government has been in control of [the] network and filters harmful things."

The attacks have continued in recent days. Over the weekend, the recently launched Twitter handle @AnonymousChina announced the hacking of numerous additional Chinese websites, posting data dumps to Pastebin and Pastebay from alleged Chinese government servers. The @AnonymousChina account also announced its intention to take down Chinese censorship technology.

[ See Anonymous Vs. DNS System: Lessons For Enterprise IT. ]

Anonymous has claimed that its attacks have been in pursuit of Internet freedom. "All these years the Chinese Government has subjected their people to unfair laws and unhealthy processes," stated a recent Pastebin post attributed to the group. "People, each of you suffers from tyranny of that regime. Fight for justice, fight for freedom, fight for democracy."

In a press conference Thursday, Chinese Ministry of Foreign Affairs spokesman Hong Lei admitted that the Chinese government has fallen "victim to Internet hacker attacks," according to a transcript of his remarks.

The so-called Great Firewall of China blocks content that it labels subversive, and China has aggressively pursued online dissidents for years. Within the last few weeks, China's official state-run news service has reported that the country temporarily suspended comments on popular microblogging websites QQ and Weibo, shuttered 16 websites, and arrested six people for spreading rumors online.

However, in response to a question about the attacks, Lei claimed that "China's Internet is open," that Chinese Internet users "enjoy full freedom on the Internet," and that the large number of Chinese Internet users demonstrates the "openness of the Chinese Internet."

The Tunisian emails appear to include months' worth of emails in French and Arabic, including emails about political activity in the country. Anonymous claimed that the cache also includes bank transaction records and invoices from year's Tunisian election campaign.

In the United Kingdom, meanwhile, the government's Home Office website was offline for several hours on Saturday, and Anonymous claimed responsibility.

Secure Sockets Layer isn't perfect, but there are ways to optimize it. The new Web Encryption That Works supplement from Dark Reading shows four places to start. (Free registration required.)

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-8893
Published: 2015-01-28
Multiple cross-site scripting (XSS) vulnerabilities in (1) mainpage.jsp and (2) GetImageServlet.img in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allow remote authenticated users to inject arbitrary web script or HTML via a crafted URL.

CVE-2014-8894
Published: 2015-01-28
Open redirect vulnerability in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via the out parameter.

CVE-2014-8895
Published: 2015-01-28
IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allows remote attackers to bypass intended access restrictions and read the image files of arbitrary users via a crafted URL.

CVE-2014-8917
Published: 2015-01-28
Multiple cross-site scripting (XSS) vulnerabilities in (1) dojox/form/resources/uploader.swf (aka upload.swf), (2) dojox/form/resources/fileuploader.swf (aka fileupload.swf), (3) dojox/av/resources/audio.swf, and (4) dojox/av/resources/video.swf in the IBM Dojo Toolkit, as used in IBM Social Media A...

CVE-2014-8920
Published: 2015-01-28
Buffer overflow in the Data Transfer Program in IBM i Access 5770-XE1 5R4, 6.1, and 7.1 on Windows allows local users to gain privileges via unspecified vectors.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
If youíre a security professional, youíve probably been asked many questions about the December attack on Sony. On Jan. 21 at 1pm eastern, you can join a special, one-hour Dark Reading Radio discussion devoted to the Sony hack and the issues that may arise from it.