Many of you will recall the targeted security attacks on Google and others last November. The attacks let to Google’s exit from China.
Similar attacks were also made against Indian establishments last December. The Canadian researchers who first discovered the attacks have released a report titled ‘Shadows In The Cloud‘.
From the report:
The report analyzes the malware ecosystem employed by the Shadows’ attackers, which leveraged multiple redundant cloud computing systems, social networking platforms, and free web hosting services in order to maintain persistent control while operating core servers located in the People’s Republic of China (PRC). Although the identity and motivation of the attackers remain unknown, the report is able to determine the location (Chengdu, PRC) as well as some of the associations of the attackers through circumstantial evidence.
Documented evidence of a cyber espionage network that compromised government, business, and academic computer systems in India, the Office of the Dalai Lama, and the United Nations. Numerous other institutions, including the Embassy of Pakistan in the United States, were also compromised. Some of these institutions can be positively identified, while others cannot.
The Times of India has a report about the findings of the Canadian team.
Similar attacks against India have happened in the past as per this report.
India now wants to ban usage of Chinese made telecommunication equipment in certain states.
Here is a blog about Chinese hackers: The Dark Visitor.