News / USA

Symantec Says Hacker Group Found in China, Linked to Big Cyberattacks

The website of the U.S. Central InaThe website of the U.S. Central Intelligence Agency (CIA) in Washington is unresponsive and unavailable after reports that the website had been attacked by internet hackers, June 15, 2011.
The website of the U.S. Central InaThe website of the U.S. Central Intelligence Agency (CIA) in Washington is unresponsive and unavailable after reports that the website had been attacked by internet hackers, June 15, 2011.
Reuters
— Computer security experts have discovered a group of highly sophisticated computer hackers operating for hire, a U.S computer security firm said on Tuesday, and it linked the group to some of the best-known cyber-espionoge attacks out of China in recent years.

Symantec Corp said the hacker group, which it dubbed “Hidden Lynx,” was among the most technically advanced of several dozen groups believed to be running cyber espionage operations out of China. Unlike a previous report by another company, Symantec did not allege Chinese government involvement in the cyberattacks.

Symantec's 28-page report said its researchers believe the Hidden Lynx group may have been involved with the 2009 Operation Aurora attacks, the most well-known cyber espionage campaign uncovered to date against U.S. companies.

In Operation Aurora, hackers attacked Google Inc and dozens of other companies including Adobe Systems Inc. Google disclosed the attacks in January 2010, in which hackers tried to read Gmail communications of human rights activists and also attempted to access and change source code at targeted companies.

Symantec researcher Liam O'Murchu said his firm was unable to determine which individuals were behind Hidden Lynx or if it was linked to the Chinese government.

A separate study, released in February from the U.S. computer security firm Mandiant, said a secretive unit of the Chinese military was engaged in cyber espionage on American companies. Beijing vehemently denied the accusations in that document, which contained photos of the building that Mandiant alleged was the unit's headquarters.

Symantec believes the group is based in China, O'Murchu said, because much of the infrastructure used to run the attacks is based there and because the malicious software was written using Chinese tools and with Chinese code.

The Symantec report also provides new details about who is behind several recent attacks, including a breach at cyber security firm Bit9 and follow-on attacks at three Bit9 clients.

It also connects Hidden Lynx to a major campaign dubbed Voho, which was discovered last year by the security firm RSA, which is owned by EMC Corp. Voho targeted hundreds of organizations including financial firms, technology and healthcare companies, defense contractors and government agencies.

Symantec described the Hidden Lynx group as a “professional organization” staffed by between 50 and 100 people with a variety of skills needed to breach networks and exfiltrate data. The arsenal of tools included Trojan Naid and Trojan Moudoor, which the gang use to siphon data from infected computers.

Symantec, which sells software and services to protect corporate and consumer computer systems from cyber attacks like the ones mentioned in the report, said Naid was also used by hackers  in Operation Aurora.

The Hidden Lynx hackers “were either responsible for the Aurora attack or were working in conjunction with the Aurora attackers,” O'Murchu said.

You May Like

Is Air Travel Safe?

Aviation expert says despite tragic losses of Malaysian Airlines flights 370 and 17, industry experienced lowest fatality rate in recorded history last year More

Multimedia 100 Days Later, Nigerian Girls Still Held

Activists holding rallies in Nigeria and several other countries to mark 100th day of captivity for more than 200 schoolgirls being held by Boko Haram More

Chocolate Too Bitter? Swap Sugar for Mushrooms

US food technology company develops fermentation process using mushrooms to reduce bitterness in cocoa beans, believes it will cut sugar content in candy More

Featured Videos

Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
US Carriers Suspend Travel to Israeli
X
Carolyn Presutti
July 23, 2014 1:21 AM
The United States is prohibiting American carriers from flying to Israel's airport in Tel Aviv for 24 hours, because of rising violence between Israel and Hamas militants. The action was announced on Tuesday, after a rocket fired by Hamas militants in the Gaza Strip landed near the airport. As VOA's Carolyn Presutti tells us, international officials soon may have to determine which combat zones are too dangerous for commercial flights.
Video

Video US Carriers Suspend Travel to Israel

The United States is prohibiting American carriers from flying to Israel's airport in Tel Aviv for 24 hours, because of rising violence between Israel and Hamas militants. The action was announced on Tuesday, after a rocket fired by Hamas militants in the Gaza Strip landed near the airport. As VOA's Carolyn Presutti tells us, international officials soon may have to determine which combat zones are too dangerous for commercial flights.
Video

Video NASA Focuses on Earth-Like Planets

For decades, looking for life elsewhere in the universe meant listening for signals that could be from distant civilizations. But recent breakthroughs in space technology refocused some of that effort toward finding planets that may harbor life, even in its primitive form. VOA’s George Putic reports on a recent panel discussion at NASA’s headquarters, in Washington.
Video

Video IAEA: Iran Turns its Enriched Uranium Into Less Harmful Form

Iran has converted its stockpiles of enriched uranium into a less dangerous form that is more difficult to use for nuclear weapons, according to the United Nations’ Atomic Energy Agency. The move complies with an interim deal reached with Western powers on Iran's nuclear program last year, in exchange for easing of sanctions. Henry Ridgwell reports for VOA from London.
Video

Video Relic of Saint Draws Catholics Worried About Immigration Issue

A Roman Catholic saint who is a figure of devotion for those crossing the border into the United States is attracting believers concerned about the plight of undocumented immigrants. Mike O'Sullivan reports from Los Angeles, where a relic of Saint Toribio has drawn thousands to local churches.
Video

Video US Awards Medal of Honor for Heroics in Bloodiest of Afghan Battles

U.S. combat troops are withdrawing from Afghanistan, on pace to leave the country by the end of this year. But on Monday, U.S. President Barack Obama took time to honor a soldier whose actions while under fire in Afghanistan earned him the Medal of Honor. VOA's Jeff Seldin has more from the Pentagon.
Video

Video Ukraine Rebels Surrender MH17 Black Boxes

After days of negotiations, a senior separatist leader handed over two black boxes from an airliner downed over eastern Ukraine to Malaysian experts early Tuesday. While on Monday, the U.N. Security Council unanimously demanded that armed groups controlling the crash site allow safe and unrestricted access to the wreckage.
Video

Video In Cambodia, HIV Diagnosis Brings Deadly Shame

Although HIV/AIDS is now a treatable condition, a positive diagnosis is still a life altering experience. In Cambodia, people living with HIV are often disowned by friends, family and the community. This humiliation can be unbearable. We bring you one Cambodian woman’s struggle to overcome a life tragedy and her own HIV positive diagnosis.
Video

Video Nature of Space Exploration Enters New Age

Forty-five years ago this month, the first humans walked on the moon. It was during an era of the space race between the United States and the Soviet Union. World politics have changed since then and -- as Elizabeth Lee reports -- so has the nature of space exploration.

AppleAndroid