News / USA

Symantec Says Hacker Group Found in China, Linked to Big Cyberattacks

The website of the U.S. Central InaThe website of the U.S. Central Intelligence Agency (CIA) in Washington is unresponsive and unavailable after reports that the website had been attacked by internet hackers, June 15, 2011.
The website of the U.S. Central InaThe website of the U.S. Central Intelligence Agency (CIA) in Washington is unresponsive and unavailable after reports that the website had been attacked by internet hackers, June 15, 2011.
Reuters
Computer security experts have discovered a group of highly sophisticated computer hackers operating for hire, a U.S computer security firm said on Tuesday, and it linked the group to some of the best-known cyber-espionoge attacks out of China in recent years.

Symantec Corp said the hacker group, which it dubbed “Hidden Lynx,” was among the most technically advanced of several dozen groups believed to be running cyber espionage operations out of China. Unlike a previous report by another company, Symantec did not allege Chinese government involvement in the cyberattacks.

Symantec's 28-page report said its researchers believe the Hidden Lynx group may have been involved with the 2009 Operation Aurora attacks, the most well-known cyber espionage campaign uncovered to date against U.S. companies.

In Operation Aurora, hackers attacked Google Inc and dozens of other companies including Adobe Systems Inc. Google disclosed the attacks in January 2010, in which hackers tried to read Gmail communications of human rights activists and also attempted to access and change source code at targeted companies.

Symantec researcher Liam O'Murchu said his firm was unable to determine which individuals were behind Hidden Lynx or if it was linked to the Chinese government.

A separate study, released in February from the U.S. computer security firm Mandiant, said a secretive unit of the Chinese military was engaged in cyber espionage on American companies. Beijing vehemently denied the accusations in that document, which contained photos of the building that Mandiant alleged was the unit's headquarters.

Symantec believes the group is based in China, O'Murchu said, because much of the infrastructure used to run the attacks is based there and because the malicious software was written using Chinese tools and with Chinese code.

The Symantec report also provides new details about who is behind several recent attacks, including a breach at cyber security firm Bit9 and follow-on attacks at three Bit9 clients.

It also connects Hidden Lynx to a major campaign dubbed Voho, which was discovered last year by the security firm RSA, which is owned by EMC Corp. Voho targeted hundreds of organizations including financial firms, technology and healthcare companies, defense contractors and government agencies.

Symantec described the Hidden Lynx group as a “professional organization” staffed by between 50 and 100 people with a variety of skills needed to breach networks and exfiltrate data. The arsenal of tools included Trojan Naid and Trojan Moudoor, which the gang use to siphon data from infected computers.

Symantec, which sells software and services to protect corporate and consumer computer systems from cyber attacks like the ones mentioned in the report, said Naid was also used by hackers  in Operation Aurora.

The Hidden Lynx hackers “were either responsible for the Aurora attack or were working in conjunction with the Aurora attackers,” O'Murchu said.

You May Like

In China, Mixed Signals on Ebola Controls

How authorities are monitoring at-risk individuals remains unclear, including whether there are quarantines for Chinese health workers returning from West Africa More

Video Women Voters Anxious Ahead of US Elections

Analysts say if women are focused on national security, it could be bad news for Democrats More

Solar's Future Looks Brighter

New technology and dropping prices are contributing to a surge in solar power More

Featured Videos

Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
Women Voters Anxious Ahead of US Electionsi
X
October 31, 2014 4:10 AM
Public opinion polls show American voters are deeply dissatisfied with their government and anxious about threats from abroad. This is especially true for a key voting group both Republicans and Democrats are trying hard to win over: women. Analysts say if women are focused on national security, it could be bad news for Democrats, with majority control of the Senate at stake. VOA’s Cindy Saine looks at the crucial role women voters will play in deciding the elections.
Video

Video Women Voters Anxious Ahead of US Elections

Public opinion polls show American voters are deeply dissatisfied with their government and anxious about threats from abroad. This is especially true for a key voting group both Republicans and Democrats are trying hard to win over: women. Analysts say if women are focused on national security, it could be bad news for Democrats, with majority control of the Senate at stake. VOA’s Cindy Saine looks at the crucial role women voters will play in deciding the elections.
Video

Video Victorious Secularists Face Challenge to Form Government in Tunisia

Official results from Tunisia show the Islamist Ennahda party has failed to win the second free election since the so-called "Arab Spring" uprising in 2011. Ennahda, which handed power to a government of technocrats pending the elections, lost out to the secular party Nidaa Tounes. Henry Ridgwell reports from London that the relatively peaceful poll offers some hope in a volatile region.
Video

Video Africa Tells its Story Through Fashion

In Africa, Fashion Week is a riot of colors, shapes, patterns and fabrics - against the backdrop of its ongoing struggle between nature and its fast-growing urban edge. How do these ideas translate into needle and thread? VOA’s Anita Powell visited this year’s Mercedes Benz Fashion Week Africa in Johannesburg to find out.
Video

Video Smugglers Offer Cheap Passage From Turkey to Syria

Smugglers in Turkey offer a relatively cheap passage across the border into Syria. Ankara has stepped up efforts to stem the flow of foreign fighters who want to join Islamic State militants fighting for control of the Syrian border city of Kobani. But porous borders and border guards who can be bribed make illegal border crossings quite easy. Zlatica Hoke has more.
Video

Video China Political Meeting Seeks to Improve Rule of Law

China’s communist leaders will host a top level political meeting this week, called the Fourth Plenum, and for the first time in the party’s history, rule of law will be a key item on the agenda. Analysts and Chinese media reports say the meetings could see the approval of long-awaited measures aimed at giving courts more independence and include steps to enhance an already aggressive and high-reaching anti-corruption drive. VOA’s Bill Ide has more from Beijing.
Video

Video After Decades of Pressure, Luxembourg Drops Bank Secrecy Rules

European Union finance ministers have reached a breakthrough agreement that will make it more difficult for tax cheats to hide their money. The new legislation, which had been blocked for years by countries with a reputation as tax havens, was approved last week after Luxembourg and Austria agreed to lift their vetoes. But as Mil Arcega reports, it doesn’t mean tax cheats have run out of places to keep their money hidden.
Video

Video Kobani Refugees Welcome, Turkey Criticizes, US Airdrop

Residents of Kobani in northern Syria have welcomed the airdrop of weapons, ammunition and medicine to Kurdish militia who are resisting the seizure of their city by Islamic State militants. The Turkish government, however, has criticized the operation. VOA’s Scott Bobb reports from southeastern Turkey, across the border from Kobani.

All About America

AppleAndroid