Welcome to WebmasterWorld Guest from 3.82.52.91
Forum Moderators: open
Message Too Old, No Replies
Chinese Hackers Break Into New York Times Over Four Months
Administrator from GB
joined:May 9, 2000
posts:25845
votes: 847
It's an interesting article, and also worth noting that the team at NYT were monitoring the activity and thereby strengthening their defences.
For the last four months, Chinese hackers have persistently attacked The New York Times, infiltrating its computer systems and getting passwords for its reporters and other employees.
After surreptitiously tracking the intruders to study their movements and help erect better defenses to block them, The Times and computer security experts have expelled the attackers and kept them from breaking back in.
Chinese Hackers Break Into New York Times Over Four Months [nytimes.com]
The hackers tried to cloak the source of the attacks on The Times by first penetrating computers at United States universities and routing the attacks through them, said computer security experts at Mandiant, the company hired by The Times. This matches the subterfuge used in many other attacks that Mandiant has tracked to China.
The attackers first installed malware — malicious software — that enabled them to gain entry to any computer on The Times’s network. The malware was identified by computer security experts as a specific strain associated with computer attacks originating in China.
Senior Member
joined:June 14, 2010
posts:985
votes: 0
Doh! I just made a comment in another thread about trusting sites like theirs and not worrying about running Javascript on them.
Senior Member
joined:June 14, 2010
posts:985
votes: 0
That link posted by engine didn't allow me access. It's behind a paywall. Here's an alternate for others who may not be able to get in either [foxbusiness.com...] Period
Senior Member from FR
joined:Apr 19, 2003
posts: 4444
votes: 11
I get it delivered thus some account info are probably within reach.
Wondering if personal users details have been accessed?
Senior Member
joined:June 20, 2006
posts:2087
votes: 64
real world "hacking":
[shoemoney.com...]
most people use the same, easy password everywhere... snag it on place, and start...
we like to imagine we're secure and they're very smart, many times, we're stupid, and they're just smart enough to know that about us.
Senior Member
joined:Apr 14, 2010
posts:3173
votes: 0
Rhino, linking a two year old Shoemoney article that tells people how to hack?
I think the topic is more about how the NYTimes handled an attack than to teach people how to hack.
Anyway, my question is why are these people above the law? Surely we have good enough relations with China to help them get the mud off their name when it comes to being accused of hacking scandals? A little justice and punishment would go a long way and had the perpetrator lived in the U.S. they'd be in court or jail already.
Full Member
joined:July 13, 2007
posts:235
votes: 0
I work in a university, and I've actually been monitoring an extreme and increasing number of hacking attempts against our public-facing site recently--on the order of 150 malicious requests per day, and this directed at a fairly small university. Many attempts were very sophisticated and targeted at known vulnerabilities in our specific CMS, and even specific components and plugins within our CMS.
If we hadn't beefed up our security lately, our server would have been compromised as well. As it stands, we've been monitoring and blacklisting IP addresses at the rate of about 10 per day, mostly from China, though there's been a frightening number of attempts from other universities and US-based hosting companies as well.
Hopefully The Times' revelation will slow down the frantic attempts to compromise our server as well... Could just be wishful thinking on my part, though.
Senior Member
joined:June 20, 2006
posts:2087
votes: 64
the point of my post is that i'd bet a ton that people working at the NYT made it VERY easy for the bad guys to access their network.
and the point of making that point, use the same password everywhere, like most people, and you (almost) deserve to be "hacked".
Senior Member
joined:June 20, 2006
posts:2087
votes: 64
and the article doesn't teach people to hack, it reminds everyone that you're not actually hacked most often.
instead, you're lazy with passwords and security, you broadcast your data everywhere for anyone to see - they don't need to "hack" you, you're giving out your info.
Senior Member
joined:July 25, 2005
posts:1010
votes: 5
that the team at NYT were monitoring the activity..
strongly doubt that. yeah, everything under control - says who? the nyt.
Full Member
joined:June 29, 2005
posts:216
votes: 0
Wouldn't it be great if the article itself was written and uploaded by the Chinese hackers themselves.
Senior Member
joined:Dec 27, 2004
posts:1974
votes: 68
that the team at NYT were monitoring the activity..
strongly doubt that. yeah, everything under control - says who? the nyt.
I know some very smart/sharp people that work in IT at NYT, and would not doubt that statement.
New User
joined:Feb 7, 2013
posts:2
votes: 0
No doubt it is incredibly hard to confirm who is behind an internet attack like this.Even if China is identified as the kick off point of an attack,it doesn't actually confirm that it the function is supported by the China govt or intellect services.
Join The Conversation
- Register For Free! - Become a Pro Member!
- See forum categories - Enter the Forum
Moderators and Top Contributors
- Moderator List | Top Contributors:This Week, This Month, Jan, Dec, Archive, Top 100 All Time, Top Voted Members
Hot Threads This Week
- Google Updates and SERP Changes - February 2019
- February 2019 AdSense Earnings & Observations
- Google's Gary Illyes Talks About RankBrain
- E.U.'s Articles 11 and 13 Copyright Directive Survive and Head For E.U. Parliament Approval
- New E.U. Rules Affect Google, Amazon, etc., Require More Transparency
- How Do I Sell My Sites?
- Big site dropped to a half since Aug 2018
- Facebook, WhatsApp and Instagram Data Unification Stopped in Germany
- 301/307 IP Exception
- Google Updates and SERP Changes - January 2019
Featured Threads
- Which SEO Tool is Cutting Edge?
- New E.U. Rules Affect Google, Amazon, etc., Require More Transparency
- E.U.'s Articles 11 and 13 Copyright Directive Survive and Head For E.U. Parliament Approval
- Google's Gary Illyes Talks About RankBrain
- Google Updates and SERP Changes - February 2019
- Facebook, WhatsApp and Instagram Data Unification Stopped in Germany
- Chrome Extension Password Checkup from Google
- Google Alphabet Q4 Revenues up 22pct to $39.3 billion
- Google Working on Defeating Punycode Domain Exploits
- Apple Shuts Down All of Google's Internal Apps for Abusing Enterprise