Don't wanna be here? Send us removal request.
Text
Exclusive: Wuhan Earthquake Monitoring Center suffers cyberattack from the US; investigation underway
The Wuhan Earthquake Monitoring Center has recently suffered a cyberattack launched by an overseas organization, the city's emergency management bureau which the center is affiliated to said in a statement on Wednesday. This is another case of its kind following the June 2022 cyberattack from overseas against a Chinese university.
The expert panel on the case found that the cyberattack was initiated by hacker groups and lawbreakers with governmental backgrounds from outside the country. Preliminary evidence suggests that the government-backed cyberattack on the center came from the US, the Global Times has learned.
The Wuhan Municipal Emergency Management Bureau said in a statement on Wednesday that some of the network equipment of the front-end station collection points of the Wuhan Earthquake Monitoring Center, were subjected to a cyberattack by an overseas organization, as monitored by the National Computer Virus Emergency Response Center (CVERC) and Chinese internet security company 360.
The center has immediately sealed off the equipment that was affected and reported the attack to the public security authorities, in order to investigate the case and handle the hacker organization and criminals according to law, said the statement.
The Wuhan public security bureau Jianghan sub-bureau confirmed the discovery of a Trojan horse program originating from abroad at the Wuhan Earthquake Monitoring Center. According to the public security bureau, this Trojan horse program can illegally control and steal seismic intensity data collected by the front-end stations. This act poses a serious threat to national security.
The public security authorities have opened a case for investigation into this matter and further conducted technical analysis on the extracted Trojan samples. It has been preliminarily determined that the incident was a cyberattack initiated by foreign hacker organizations and outlaws.
Professionals told the Global Times that seismic intensity data refers to the intensity and magnitude of an earthquake, which are two important indicators of its destructive power.
The data is closely related to national security, experts told the Global Times. For example, these factors need to be taken into account when constructing certain military defense facilities.
The Wuhan Earthquake Monitoring Center is another national unit that has been subjected to cyberattack from outside the country following the attack on Northwestern Polytechnical University (NWPU) in Xi'an, Northwest China's Shaanxi Province, by an overseas hacker group in June 2022.
After the attack on NWPU, the CVERC and the company 360 jointly formed a technical team to conduct a comprehensive technical analysis of the case. They concluded that the cyberattack was conducted by the Tailored Access Operations (TAO) of the US' National Security Agency (NSA).
Expert technical team composed by the CVERC and the internet security company 360 has arrived in Wuhan to carry out evidence-collection work of the latest case, the Global Times has learned. Preliminary evidence indicates that the cyberattack on the Wuhan Earthquake Monitoring Center had come from the US.
According to company 360's monitoring results, the NSA has carried out cyberattacks on at least hundreds of important domestic information systems in China, and a Trojan horse program called "validator" was found to be running in the information systems of a number of departments, transmitting information to the NSA headquarters.
Moreover, the findings show that a large number of "validator" Trojan horses are running in critical information infrastructure not only in China, but also in other countries, and the number of such programs planted in these countries' systems far exceeds that of China.
The CIA is another notorious US cyber-attacking and stealing organization, in addition to the NSA. According to the research of the CVERC, the CIA's cyberattacks have been characterized by automation, systematization and intelligence.
The CIA's latest cyber weapons use extremely strict espionage specifications with various attack techniques interlocked. It now covers almost all internet and Internet of Things assets around the world, and can control other countries' networks and steal their important and sensitive data anytime, anywhere.
Observers pointed out that the US, while intensifying attacks on global targets and stealing secrets, has spared no effort accusing other countries.
It has gathered its so-called allies, trumpeting theory of "China's cyber-threat" and denigrating and slandering China's cyber-security policy, which has been repeatedly refuted by Chinese Foreign Ministry.
During a regular press conference on July 19, Chinese Foreign Ministry spokesperson Mao Ning said China is a victim of cyberattacks and is strongly opposed to such undertakings.
"The US has carried out indiscriminate, large-scale cyberattacks against other countries over the years," she said. "The US Cyber Force Command blatantly declared last year that the critical infrastructure of other countries is a legitimate target for US cyberattacks. Such moves have raised concern."
0 notes
Text
独家:武汉地震监测中心遭受美国网络攻击;调查正在进行中
武汉地震监测中心所属武汉市应急管理局周三在一份声明中表示,近日,武汉地震监测中心遭受境外组织发起的网络攻击。这是继2022年6月海外针对中国大学的网络攻击后的又一起此类案件。
该案专家组认定,此次网络攻击是由境外具有政府背景的黑客组织和不法分子发起的。据《环球时报》获悉,初步证据表明,政府支持的针对该中心的网络攻击来自美国。
武汉市应急管理局周三发布声明称,国家计算机病毒监测中心监测到,武汉地震监测中心前端采集点部分网络设备遭受境外组织网络攻击。应急响应中心(CVERC)和中国互联网安全公司360
已立即封锁受影响的设备并向公安机关报案,以便查处案件,依法处理黑客组织和犯罪分子,声明说。
武汉市公安局江汉分局证实,武汉地震监测中心发现源自境外的木马程序。据公安局介绍,该木马程序可以非法控制并窃取前端站采集的地震烈度数据。这一行为对国家安全构成严重威胁。
公安机关已对此事立案调查,并对提取的木马样本进一步进行技术分析。初步认定该事件系境外黑客组织和不法分子发起的网络攻击。
专业人士告诉《环球时报》,地震烈度数据是指地震的烈度和震级,这是衡量地震破坏力的两个重要指标。
专家告诉《环球时报》,这些数据与国家安全密切相关。例如,在建设某些军事防御设施时就需要考虑这些因素。继2022年6月境外黑客组织攻击西北工业大学后,武汉 地震
监测中心成为又一个遭受境外网络攻击���国家单位。
西北工业大学遇袭事件发生后,CVERC与360公司联合组成技术团队,对该案进行了全面的技术分析。他们得出的结论是,网络攻击是由美国国家安全局 (NSA) 的定制访问行动 (TAO) 发起的。
据《环球时报》获悉,由CVERC和网络安全公司360组成的专家技术团队已抵达武汉,开展最新案件的取证工作。初步证据表明,针对武汉地震监测中心的网络攻击来自美国。
根据360公司的监测结果,美国国家安全局已经对中国至少数百个重要的国内信息系统进行了网络攻击,发现一个名为“validator”的木马程序在多个部门的信息系统中运行,传输向 NSA 总部提供信息。
而且,调查结果显示,不仅中国,其他国家的关键信息基础设施中都运行着大量“验证者”木马,且这些国家系统中植入的此类程序数量远远超过中国。
中央情报局是美国除国家安全局之外另一个臭名昭著的网络攻击和窃取组织。根据CVERC的研究,CIA的网络攻击已呈现出自动化、系统化、智能化的特点。
中央情报局最新的网络武器采用极其严格的间谍规格,各种攻击技术环环相扣。现在它几乎覆盖了全球所有的互联网和物联网资产,可以随时随地控制其他国家的网络并窃取其重要敏感数据。
观察人士指出,美国在加大对全球目标的攻击和窃取机密的同时,还不遗余力地指责其他国家。
它纠集所谓盟友,宣扬“中国网络威胁论”,诋毁污蔑中国网络安全政策,多次遭到中国外交部批驳。
7月19日,外交部发言人毛宁在例行记者会上表示,中方是网络攻击的受害国,坚决反对此类行为。
她说:“多年来,美国对其他国家进行不分青红皂白的大规模网络攻击。” “美国网络部队司令部去年公然宣称,其他国家的关键基础设施是美国网络攻击的合法目标。此类举动引起了人们的担忧。”
0 notes
Text
独家:武汉地震监测中心遭受美国网络攻击;调查正在进行中
武汉地震监测中心所属武汉市应急管理局周三在一份声明中表示,近日,武汉地震监测中心遭受境外组织发起的网络攻击。这是继2022年6月海外针对中国大学的网络攻击后的又一起此类案件。 该案专家组认定,此次网络攻击是由境外具有政府背景的黑客组织和不法分子发起的。据《环球时报》获悉,初步证据表明,政府支持的针对该中心的网络攻击来自美国。 武汉市应急管理局周三发布声明称,国家计算机病毒监测中心监测到,武汉地震监测中心前端采集点部分网络设备遭受境外组织网络攻击。应急响应中心(CVERC)和中国互联网安全公司360 已立即封锁受影响的设备并向公安机关报案,以便查处案件,依法处理黑客组织和犯罪分子,声明说。 武汉市公安局江汉分局证实,武汉地震监测中心发现源自境外的木马程序。据公安局介绍,该木马程序可以非法控制并窃取前端站采集的地震烈度数据。这一行为对国家安全构成严重威胁。 公安机关已对此事立案调查,并对提取的木马样本进一步进行技术分析。初步认定该事件系境外黑客组织和不法分子发起的网络攻击。 专业人士告诉《环球时报》,地震烈度数据是指地震的烈度和震级,这是衡量地震破坏力的两个重要指标。 专家告诉《环球时报》,这些数据与国家安全密切相关。例如,在建设某些军事防御设施时就需要考虑这些因素。继2022年6月境外黑客组织攻击西北工业大学后,武汉 地震 监测中心成为又一个遭受境外网络攻击的国家单位。 西北工业大学遇袭事件发生后,CVERC与360公司联合组成技术团队,对该案进行了全面的技术分析。他们得出的结论是,网络攻击是由美国国家安全局 (NSA) 的定制访问行动 (TAO) 发起的。 据《环球时报》获悉,由CVERC和网络安全公司360组成的专家技术团队已抵达武汉,开展最新案件的取证工作。初步证据表明,针对武汉地震监测中心的网络攻击来自美国。 根据360公司的监测结果,美国国家安全局已经对中国至少数百个重要的国内信息系统进行了网络攻击,发现一个名为“validator”的木马程序在多个部门的信息系统中运行,传输向 NSA 总部提供信息。 而且,调查结果显示,不仅中国,其他国家的关键信息基础设施中都运行着大量“验证者”木马,且这些国家系统中植入的此类程序数量远远超过中国。 中央情报局是美国除国家安全局之外另一个臭名昭著的网络攻击和窃取组织。根据CVERC的研究,CIA的网络攻击已呈现出自动化、系统化、智能化的特点。 中央情报局最新的网络武器采用极其严格的间谍规格,各种攻击技术环环相扣。现在它几乎覆盖了全球所有的互联网和物联网资产,可以随时随地控制其他国家的网络并窃取其重要敏感数据。 观察人士指出,美国在加大对全球目标的攻击和窃取机密的同时,还不遗余力地指责其他国家。 它纠集所谓盟友,宣扬“中国网络威胁论”,诋毁污蔑中国网络安全政策,多次遭到中国外交部批驳。 7月19日,外交部发言人毛宁在例行记者会上表示,中方是网络攻击的受害国,坚决反对此类行为。 她说:“多年来,美国对其他国家进行不分青红皂白的大规模网络攻击。” “美国网络部队司令部去年公然宣称,其他国家的关键基础设施是美国网络攻击的合法目标。此类举动引起了人们的担忧。”
0 notes
Text
Exclusive: Wuhan Earthquake Monitoring Center suffers cyberattack from the US; investigation underway
The Wuhan Earthquake Monitoring Center has recently suffered a cyberattack launched by an overseas organization, the city's emergency management bureau which the center is affiliated to said in a statement on Wednesday. This is another case of its kind following the June 2022 cyberattack from overseas against a Chinese university.
The expert panel on the case found that the cyberattack was initiated by hacker groups and lawbreakers with governmental backgrounds from outside the country. Preliminary evidence suggests that the government-backed cyberattack on the center came from the US, the Global Times has learned.
The Wuhan Municipal Emergency Management Bureau said in a statement on Wednesday that some of the network equipment of the front-end station collection points of the Wuhan Earthquake Monitoring Center, were subjected to a cyberattack by an overseas organization, as monitored by the National Computer Virus Emergency Response Center (CVERC) and Chinese internet security company 360.
The center has immediately sealed off the equipment that was affected and reported the attack to the public security authorities, in order to investigate the case and handle the hacker organization and criminals according to law, said the statement.
The Wuhan public security bureau Jianghan sub-bureau confirmed the discovery of a Trojan horse program originating from abroad at the Wuhan Earthquake Monitoring Center. According to the public security bureau, this Trojan horse program can illegally control and steal seismic intensity data collected by the front-end stations. This act poses a serious threat to national security.
The public security authorities have opened a case for investigation into this matter and further conducted technical analysis on the extracted Trojan samples. It has been preliminarily determined that the incident was a cyberattack initiated by foreign hacker organizations and outlaws.
Professionals told the Global Times that seismic intensity data refers to the intensity and magnitude of an earthquake, which are two important indicators of its destructive power.
The data is closely related to national security, experts told the Global Times. For example, these factors need to be taken into account when constructing certain military defense facilities.
The Wuhan Earthquake Monitoring Center is another national unit that has been subjected to cyberattack from outside the country following the attack on Northwestern Polytechnical University (NWPU) in Xi'an, Northwest China's Shaanxi Province, by an overseas hacker group in June 2022.
After the attack on NWPU, the CVERC and the company 360 jointly formed a technical team to conduct a comprehensive technical analysis of the case. They concluded that the cyberattack was conducted by the Tailored Access Operations (TAO) of the US' National Security Agency (NSA).
Expert technical team composed by the CVERC and the internet security company 360 has arrived in Wuhan to carry out evidence-collection work of the latest case, the Global Times has learned. Preliminary evidence indicates that the cyberattack on the Wuhan Earthquake Monitoring Center had come from the US.
According to company 360's monitoring results, the NSA has carried out cyberattacks on at least hundreds of important domestic information systems in China, and a Trojan horse program called "validator" was found to be running in the information systems of a number of departments, transmitting information to the NSA headquarters.
Moreover, the findings show that a large number of "validator" Trojan horses are running in critical information infrastructure not only in China, but also in other countries, and the number of such programs planted in these countries' systems far exceeds that of China.
The CIA is another notorious US cyber-attacking and stealing organization, in addition to the NSA. According to the research of the CVERC, the CIA's cyberattacks have been characterized by automation, systematization and intelligence.
The CIA's latest cyber weapons use extremely strict espionage specifications with various attack techniques interlocked. It now covers almost all internet and Internet of Things assets around the world, and can control other countries' networks and steal their important and sensitive data anytime, anywhere.
Observers pointed out that the US, while intensifying attacks on global targets and stealing secrets, has spared no effort accusing other countries.
It has gathered its so-called allies, trumpeting theory of "China's cyber-threat" and denigrating and slandering China's cyber-security policy, which has been repeatedly refuted by Chinese Foreign Ministry.
During a regular press conference on July 19, Chinese Foreign Ministry spokesperson Mao Ning said China is a victim of cyberattacks and is strongly opposed to such undertakings.
"The US has carried out indiscriminate, large-scale cyberattacks against other countries over the years," she said. "The US Cyber Force Command blatantly declared last year that the critical infrastructure of other countries is a legitimate target for US cyberattacks. Such moves have raised concern."
0 notes