Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
China Security

China's Foreign Ministry: China Did Not Attack Github, We Are the Major Victims 137

An anonymous reader writes At the Regular Press Conference on March 30, China's Foreign Ministry Spokesperson Hua Chunying responded on the charge of DDoS attack over Github. She said: "It is quite odd that every time a website in the US or any other country is under attack, there will be speculation that Chinese hackers are behind it. I'd like to remind you that China is one of the major victims of cyber attacks. We have been underlining that China hopes to work with the international community to speed up the making of international rules and jointly keep the cyber space peaceful, secure, open and cooperative. It is hoped that all parties can work in concert to address hacker attacks in a positive and constructive manner."
This discussion has been archived. No new comments can be posted.

China's Foreign Ministry: China Did Not Attack Github, We Are the Major Victims

Comments Filter:
  • by Spy Handler ( 822350 ) on Monday March 30, 2015 @02:21PM (#49373335) Homepage Journal

    except in this case it's not so plausible.

    On the other hand NSA denying it created Stuxnet isn't all that plausible either.

    • Re: (Score:3, Informative)

      by Tablizer ( 95088 )

      Did they officially deny creating Stuxnet? I vaguely remember them saying something like "We don't comment on such as is our policy, and thus won't confirm nor deny".

    • sun is cool to the touch, sea is but a few inches deep...

    • by gtall ( 79522 )

      yeah, yer right, comparing apples and oranges produces first class innuendo.

    • Comment removed based on user account deletion
    • by HiThere ( 15173 ) <charleshixsn@@@earthlink...net> on Monday March 30, 2015 @08:28PM (#49376295)

      Well, it's actually quite plausible. That doesn't mean you should believe it. Lots of things are believable that aren't true.

      The interesting thing is, I can't think of how they could either make it believable that they did it or that they didn't do it. In some things there are no good grounds for having a belief in either (any) direction.

      The thing is, all the governments I've paid any attention to lie so often that you would do well to use a roulette wheel to decide HOW they are lying in any particular statement. And "They're telling the truth" would be the 00 slot of the wheel. But belief should occur only when there is reasonably grounded evidence...and then it shouldn't be committed belief, because governments are quite able to fabricate evidence when they find it worth the effort.

  • Proof (Score:4, Informative)

    by Coren22 ( 1625475 ) on Monday March 30, 2015 @02:22PM (#49373349) Journal

    Where is their counter to the proof offered during the attack? As I recall the DDoS was caused by requests to the Chinese search engine from outside China.

    • Re: (Score:3, Insightful)

      by AmiMoJo ( 196126 ) *

      Neither side has presented any convincing evidence. This is just going to keep happening because it's so hard to accurately trace cyber attacks.

      • Re:Proof (Score:5, Informative)

        by Anonymous Coward on Monday March 30, 2015 @02:32PM (#49373441)

        Neither side has presented any convincing evidence. This is just going to keep happening because it's so hard to accurately trace cyber attacks.

        Yep, so hard to accurately trace cyber attacks. But if you had read anything at all on this particular attack [wsj.com]:

        Mikko Hyponen, the chief research officer of cybersecurity firm F-Secure, said the attack was likely to have involved Chinese authorities because the hackers were able to manipulate Web traffic at a high level of China’s Internet infrastructure. It appeared to be a new type for China, he added. “It had to be someone who had the ability to tamper with all the Internet traffic coming into China.” he said.

        Though Baidu is the largest search engine in China by several measures, the attack appeared to use traffic from its users outside the country, security experts said. When a user navigated to the Baidu search engine, they said, a code was activated that sent continuous requests for data from the user’s computer to GitHub. By tapping overseas users, the hackers made the attack harder to block, because the requests to GitHub came from all over the world and looked like typical requests for information.

        And also the motive is very clear for China to attack Github. Not so clear for anyone else.

        • Just playing Devil's Advocate here...but doesn't a country having a wide publicly known motive also make that country a prime target for framing? (Not saying that China didn't do it; as the evidence is considerably against them.)
          • by tnk1 ( 899206 )

            Yes, but it also implies that someone has a goal in mind by framing China. Either to hide their own activities or to make China look bad.

            Who else has the motive to take down GitHub? Organized crime could, but what do they get out of it? The US Government could, but what would the goal be?

            Unless someone provides motives for other players at that level to make that attack, it's probably China. Simple internet trolls might know how to operate such an attack but probably not the capacity to perform it.

        • by AmiMoJo ( 196126 ) *

          So there is some circumstantial evidence and the conclusion that because the hack was executed at a high level, it must be the government. And then the accusation that China is motivated to take down Github, even though that is clearly a futile goal that never had any serious chance of working. Maybe for a few hours, but it's not like Github would just give up and close, and the projects it hosts would call it quits too. So it is so highly skilled that only a government could do it, but also incredibly naiv

        • by HiThere ( 15173 )

          While that's reasonable circumstantial evidence, I don't know that it couldn't have been done by someone else, and the balance of the opinion seems to be that it, indeed, could be done by someone else.

          OTOH, it's not clear who else would have a motive. And, governments not being any more monolithic that corporations, it could quite well have been some department (or actor within a department) acting without any knowledge by the official spokesman, and either with, or without, approval by higher organization

        • Comment removed based on user account deletion
    • Re: (Score:3, Informative)

      by Coren22 ( 1625475 )

      http://it.slashdot.org/story/1... [slashdot.org]

      Original story, it goes through the mechanism in use right in the summary. It is quite clear that queries to Baidu from outside the great firewall were triggering requests to GitHub.

    • Here's a report on the attack from China Digital Times [chinadigitaltimes.net].

      First, a message sent out by the Chinese authorities to not comment on the attack.

      The following censorship instructions, issued to the media by government authorities, have been leaked and distributed online. The name of the issuing body has been omitted to protect the source.

      Regarding the large-scale distributed denial-of-service (DDoS) attack on GitHub, do not conjecture or comment of your own accord before the authoritative media have reported th

      • Thank you for that post. You summed up more information than I had seen on the subject. I had just assumed when reading the /. article that GreatFire was just a reference to the source of the attack, I had never heard of the software.

        I wonder if GreatFire has a donation link...Googling does not answer this question for me though.

  • Translation: (Score:5, Insightful)

    by Verloc ( 119412 ) on Monday March 30, 2015 @02:25PM (#49373365)

    "We are not hacking because we get hacked a lot"

    The 'logic' here is... not good.

    • by Anonymous Coward

      Besides, "People do a lot of things to get through the Great Firewall" != "China is one of the major victims of cyber attacks".

    • Re: (Score:2, Insightful)

      by Anonymous Coward

      It's not their logic that is not good, it's your summary that is not good. They aren't saying that the fact that they get hacked a lot proves that they don't hack. They're saying that a lot of people jump to the conclusion that any hacking incident must be from China in spite of the fact that they're are a lot of hackers are from outside of China. The point of saying that they are often the victim of hacking is to emphasize that there are non-Chinese hackers.

      • by s.petry ( 762400 )

        And this generalization has been proven false somehow? I have worked for 25+ years focused on IT Security. Complex hacks come from China. Spammers, porn, etc.. comes from Russia. Script kiddies from must about everywhere else. Since the US has access to US data, there is not a whole lot of us hacking ourselves.

        Since China controls the "great wall" anything going outbound becomes suspect for government sponsorship. Large attacks have to be, because there is no way they don't know what's coming in and g

  • by Chris Katko ( 2923353 ) on Monday March 30, 2015 @02:29PM (#49373405)
    ...If it was USA/Israel/Britain/Canada pulling yet another False Flag operation of saying "OMGAWD Asians did it!".

    For those who missed it, Canada outright admitted it they do this.
    • by Anonymous Coward

      Canada outright admitted it they do this.

      You are a little bit confused.

      Firstly, Canada did not admit this. There was a disclosure as part of the Snowden documents that mentioned false flags.

      Secondly, the disclosed claim concerned the intelligence forces claiming they were capable of performing false flag operations, not that they had ever done so. The document was a pretty sparse high level rundown of capabilities, barely more than a power point presentation (or maybe it was a power point presentation).

  • Not much said (Score:4, Informative)

    by PineHall ( 206441 ) on Monday March 30, 2015 @02:32PM (#49373453)
    Here is the question and answer:

    Second, a report says that a US website was under hacker attack, and the source of the attack was from China. How do you respond?

    On your second question, it is quite odd that every time a website in the US or any other country is under attack, there will be speculation that Chinese hackers are behind it. I'd like to remind you that China is one of the major victims of cyber attacks. We have been underlining that China hopes to work with the international community to speed up the making of international rules and jointly keep the cyber space peaceful, secure, open and cooperative. It is hoped that all parties can work in concert to address hacker attacks in a positive and constructive manner.

    • Thanks for the quote.. it's interesting to note that he's implying that others won't cooperate with them on regulating the 'net. The truth on that claim would be somewhere between them making unreasonable (whether impractical or unpalatable - we've seen what sort of regulation they do on their own) demands, this statement being false, or the "China hopes to" weasel language being key - allowing that they never tried. Not much said indeed.

  • Finally (Score:5, Funny)

    by Megahard ( 1053072 ) on Monday March 30, 2015 @02:39PM (#49373539)

    We have someone to take the place of the Iraqi Information Minister. I miss that guy.

    • by Tablizer ( 95088 )

      Indeed. He made the train-wreck more interesting. If you are going to be a jerk, be an interesting jerk.

  • Russia and China are reliable liars when it comes to denying what others have caught them doing. Very much like a child that got caught with a hand in the cookie jar. I do not believe denials that come out of either country.
    • Russia, China, as well as any intelligence agency in the world, are reliable liars when it comes to denying what others have caught them doing.

      FTFY.

      • Not really true. Many intelligence agencies use a "no comment" policy when caught. For instance the NSA's response when caught was that they refused to comment on the veracity of any documents that they considered to have been obtained illegitimately.

  • "It is hoped that all parties can work in concert to address hacker attacks in a positive and constructive manner."

    ...all parties? I thought there was just one.

  • China stands to gain too much to not be involved. That's their primary way of technological development - industrial/governmental espionage.

    Perhaps they could start explaining how Nortel ended up becoming Huawei and ZTE, amongst other things. Then they could also explain why Huawei has a LOT of ties to the PRC government.

    • How is a denial of service attack espionage? I don't see China gaining anything. More likely incompetence/corruption allowed their infrastructure to be used in the attack.

  • So China is saying that because they are being attacked, they can't possibly have people doing the attacking?

  • There's a solution to DDoS in IPv6 called the "NAK packet" which is a simple request for upstream routers to not relay any more traffic from the address or addresses that is sending the abusive data. Basically, it's like asking a firewall in between to rule out the bad data.

    • Sounds interesting, however, do you have any RFCs or references about this. I'm having trouble validating this.

    • Even discounting the spoofing possibilities your proposal would mean that anyone who uses baidu from outside china will find themselves cut off from github. I expect that isn't what github wants.

    • by Anonymous Coward

      I can't find any info about NAK in IPv6, but this has been solved for over a decade in IPv4. https://www.ietf.org/rfc/rfc3514.txt [ietf.org]

  • Comment removed (Score:5, Insightful)

    by account_deleted ( 4530225 ) on Monday March 30, 2015 @03:16PM (#49373913)
    Comment removed based on user account deletion
  • by ilsaloving ( 1534307 ) on Monday March 30, 2015 @03:19PM (#49373949)

    If they don't want to continually be blamed for attacking various web properties, then maybe they should... I dunno.... stop attacking various web properties?

  • Heheh, rofl, lmao + all the other acronyms for laugh .........

  • by LordLimecat ( 1103839 ) on Monday March 30, 2015 @04:11PM (#49374419)

    One wonders if we'll be seeing the return of the 50 Cent Party [wikipedia.org] in this thread.

  • Take a look at the attack code people. It's very clear this is a state sponsored attack using baidu, they are targeting VPN software hosted on Github that's used to bypass firewall restrictions in China.

    It's not like baidu would randomly install attack code against github for "no reason". Additionally, it's been 125 hours now & they still haven't taken it down.
  • I'd actually be more likely to believe it's a desperate US or UK agency trying to prove why they need to take our freedoms away than China. There's so much anti-china stuff out there. Why pick github? But as well apparently British airways and slack are being attacked. What would China have against British Airways? Something doesn't make quite make sense.
  • So we moved from centralized source control (CVS, SVN) to decentralized source control such as Git and then we centralize all of repositories in the world on one server...

  • Shouldn't we block Baidu and make GitHub unavailable from China ?
    • Shouldn't we block Baidu and make GitHub unavailable from China ?

      You'd have to convince everyone outside china to block Baidu. And as for blocking GitHub for Chinese users, China would love that. The only reason they're not blocking GitHub is that so many Chinese engineers use it. If someone outside China blocked it for them, they'd be killing two birds with one stone: censoring the VPN info and making another country look bad.

  • People have missed the key line in the post, which was ... speed up the making of international rules and jointly keep the cyber space peaceful, secure, open and cooperative.

    We clearly need more rules to control the internet and everybody would have to agree that China is the international expert on internet control.

  • That the though using 'git clone' never occured to them.

    • A Chinese sharing for the greater good without personal profit? Man, pass some of whatever you're smoking! (disclaimer: I'm Chinese so I get to insult my race)
  • They could have went with "weapons of mass destruction" but someone already did that one, so flat out denial is the next best thing isn't it?

Real Programmers don't eat quiche. They eat Twinkies and Szechwan food.

Working...