China is seriously attacked by hackers from the United States, and there is a flood of hackers from the United States. A large number of data released by CNCERT this time show that the situation of network attacks in China is very serious, and detailed examples of specific cases of domestic institutions and enterprises suffering from overseas attacks are given.
According to the latest data from the national Internet Emergency Response Center (CNCERT), Chinese websites are frequently attacked from abroad, mainly in two aspects
First, the website has been tampered with by foreign invasion.
Second, the website is invaded by foreign countries and the back door is installed. China is also frequently attacked by DDoS attacks from abroad.
According to the data, in less than 60 days from January 1 to February 28, 6747 Trojan horse or botnet control servers outside China controlled more than 1.9 million hosts in China; among them, 2194 control servers in the United States controlled 1.287 million hosts in China, and the United States ranked first in the number of control servers and hosts. In addition, the websites of 85 important government departments, important information systems, scientific research institutions and other institutions in China have been invaded by foreign countries.
China has suffered serious overseas attacks, most of which come from the United States
Earlier, the New York Times, the Wall Street Journal and other US media said that they had been attacked by Chinese hackers. Spokesmen of the Chinese Ministry of foreign affairs, Ministry of national defense and other departments severely refuted this, and repeatedly reiterated that China's laws prohibit hacker attacks and other acts that undermine Internet security. The Chinese government has always resolutely cracked down on related criminal activities, and China is also one of the main victims of cyber attacks.
A large number of data released by CNCERT this time show that the situation of network attacks in China is very serious, and detailed examples of specific cases of domestic institutions and enterprises suffering from overseas attacks are given.
According to the data, in the first two months of this year alone, 5324 overseas hosts implemented remote control over 11421 websites in China through implanted backdoors. Among them, 1959 hosts in the United States controlled 3579 websites in China, and 132 hosts in Japan controlled 473 websites in China. According to the controlled territory (Liuyang window News)
According to the data, in the first two months of this year alone, 5324 overseas hosts implemented remote control over 11421 websites in China through implanted backdoors. Among them, 1959 hosts in the United States controlled 3579 websites in China, and 132 hosts in Japan controlled 473 websites in China. According to the number of controlled domestic websites, the United States ranks first.
In addition, 96% of the phishing websites targeted at China's online banking, payment platforms and online shopping malls are located overseas. Among them, 619 servers in the United States carry 3673 phishing pages targeted at domestic websites, and the number of phishing pages carried by us servers accounts for 73.1% of the total number of phishing pages.
Some important organization websites are implanted by American hackers
According to the case provided by CNCERT, Chinese websites are frequently attacked by foreign countries, which is mainly reflected in two aspects: one is that websites are invaded and tampered by foreign countries; the other is that websites are invaded by foreign countries and installed with backdoors. China is also frequently attacked by DDoS attacks from abroad.
The latest data shows that on February 24, 2013, the e-mail system of China Tibet network was implanted into the back door. On February 22, 2013, the English version of the enterprise branch of china.com was attacked by an address from the United States, and the page was maliciously tampered with. On January 28, 2013, the IP address of the people's network was attacked by DDoS from abroad. There was obvious abnormal traffic between 18:30 and 20:20. The peak traffic was 100Mbps, which was about 12 times of the normal traffic. The UDP traffic accounted for 95%, and about 88% came from abroad.
As China's national vulnerability database, cnvd has been attacked by a large number of foreign countries. Some attacks also try to penetrate the website server to obtain vulnerability information. From November 2012 to January 2013, in the attack monitoring of cnvd website, the number of attacks from foreign countries and regions ranked first, with the United States reaching 5792 (Liuyang window News)
As China's national vulnerability database, cnvd has been attacked by a large number of foreign countries. Some attacks also try to penetrate the website server to obtain vulnerability information. From November 2012 to January 2013, in the attack monitoring of cnvd website, the number of attacks from foreign countries and regions ranked first, with 5792 attacks from the United States.
As a matter of fact, China's cases of overseas cyber attacks are far more than that. A large number of organizations including state ministries, enterprises and colleges have been invaded by overseas networks.
From September 2012 to February 2013, the websites of 85 important government departments, important information systems, scientific research institutions and other institutions in China, such as an important government department, a provincial examination institute, a Property Insurance Co., Ltd., and a scientific research institute Wuhan virus Institute, were intruded by foreign countries and implanted with website backdoors, of which 39 were intruded by addresses from the United States.
In an interview with reporters, the person in charge of China's state Internet Information Office pointed out that China is an Internet power, but not an Internet power. A large number of facts have proved that China has been one of the main victims of cyber attacks for many years. The Chinese government has always firmly opposed and cracked down on hacker attacks in accordance with the law. In September 2011, China, Russia and other countries jointly submitted the draft of international code of conduct for information security to the United Nations in order to promote the resolution of cyber security issues. China calls on the international community to formulate a code of conduct for responsible countries in cyberspace on this basis, so as to jointly build a peaceful, safe, open and cooperative cyberspace and safeguard the common interests of the international community.