How Did the Google Attack Happen?
Posted by: Rachael King on January 13, 2010
Researchers are busy trying to figure out just how hackers were able to plant malicious code in the corporate networks of Google and at least 20 other companies. That malicious code resulted in the theft of Google’s intellectual property and the attempted access of the Gmail accounts of Chinese human rights activists. It appears that Adobe may also have been hit by that same attack and Bloomberg News reported that Yahoo may have also been a victim. Another estimate said about 34 companies had been impacted but nobody knows at this point just how many companies will suffer from this attack. “I think the final number is going to be much larger than 34 companies,” says George Kurtz, chief technology officer at security firm McAfee.
Security experts are also scrambling to figure out which weaknesses in various software programs hackers were able to target. Typically, software vendors work to shore up their software against possible attacks with fixes known as patches but hackers sometimes discover holes before the software vendor does – a problem known as a zero day vulnerability. “We’ve looked at some of the samples of the [malicious code] and it does look like there’s a cocktail of zero day vulnerabilities,” says Kurtz, who declined to name the software vendors with those weaknesses. Kurtz has seen malicious code that exploits about 7 different weaknesses but he did not say how many of them were previously unknown to software makers.
Yesterday, at about the same time as Google’s announcement, Adobe also said that its network had been attacked. The [Google and Adobe] incidents appear to be related given the timing of the discoveries, but until our investigation is completed we won’t be able to confirm it,” says Jodi Sorensen, senior manager of corporate communications at Adobe.
Yesterday, Adobe also released patches for Adobe Reader and Acrobat zero day vulnerabilities. The timing of those announcements led some researchers to believe that the attack had been started with a targeted e-mail message sent to an employee who might have clicked on a PDF file that then used weaknesses in Adobe Reader to infect a PC with malicious code that then spread into the entire network. Based on discussions with people who were working on the case, Mikko Hyppönen, Chief Research Officer at security firm F-Secure, said he believed that the Adobe Reader vulnerability was one of the problems. Yet, Adobe says that in this particular instance, the company has no evidence at this time to suggest that a weakness in Adobe Reader or any other Adobe technology contributed to the attack. So far, McAfee’s Kurtz says his company has seen other problems but none so far with PDF and Adobe Reader.
Now, Kurtz and other security experts need to identify the software weaknesses so vendors can issue patches and companies can implement them, before anyone else loses intellectual property.
Reader Comments
Hacker
January 13, 2010 11:36 PM
I did it.
trh
January 14, 2010 12:02 AM
a long time ago,my grandfather told me that "you just can not keep prisoners from breaking out from time to time.they just have nothing better to do than think of ways to do it."so it is with the chinese.they have nothing better to do than try to steal our stuf.hell,their are not even any costs to try.a computer and internet is the key to stealing millions.better buy some gold,they can't steal that from over there!
parrry
January 14, 2010 04:00 AM
my guess is there can be more stronger reason behind the attack,is In the name of hacking email accounts of human right activist,( which all of the universe already blame china for this, but no one can take action), chinese companies aka govertment, want advance technology or IPR, with which they can build there own businesses and reduce dependance on software from non chiese companies or many be want to build there own chinese companies which can compete with western companies. All this they might be doing it just because they don't have brain power.
Larry Harris
January 14, 2010 10:52 AM
I was under the impression that PDF documents were safer and not vulnerable to virus and malice software. Are we saying that they are as unsafe as a Word and Excel document to open?
j p
January 14, 2010 01:37 PM
The Chinese government is corrupt because it is full of politicians that want to retain their positions. Like all other countries, politicians don't want to lose their power. That is why Tawain is in conflict with China which is what the politicians want but not the citizens. The Tawainese politicians want to keep their power. Politicial conflicts also occur in the United States. Many U.S. politicians will do anything to stay in power like starting a war. China is having problems with Google because it has E-mails that communicate political views which the government want to censor just as the United States has censorships on television and radio. As always, Americans are all dumb hypocrites. China is helping the United States recovery by allowing U.S. companies to do business in China. It doesn't matter if U.S. companies do business in China or not because they are becoming a capitalist society where profits mean more than stupid opinions. Many Chinese engineers and scientists are smarter than Americans that is why U.S. companies and other countries want to set up Research and Development there. Also R&D is not as restricted in China and it is less expensive to do R&D in China.
Ryan
January 14, 2010 05:58 PM
You guys need to find a new font for these articles - it's such a pain to read.
M Ok
January 15, 2010 06:04 AM
How pathetic google is. I was attacked by Chinese hackers. I want going home. Mommy, Daddy help me! Nowadays, are there any major companies not being attacked by hackers. Grown up kid.
Hoplala
January 18, 2010 10:53 AM
@ J P
Dear J P,
Long time ago, the majority of the world thought of the Chinese as a very wise and subtle population.
Your reaction here above as well as this last Chinese action as well as Chinese international behaviour in general proves that the rest of the world does not have any wisdom or subtlety to learn from you.
Frank
January 19, 2010 12:25 PM
Google said it may consider leaving China due to censorship policy. Where is the link from the attackers to the Chinese government and its policy? Is Google implying the Chinese government initiated the attack? At the same time, some two dozens US companies were reported to be attacked likewise. So are we to believe the Chinese government started a systemic cyber attack on all these companies?
Whoever is the attacker(s), it is Google responsibility to secure its network and staff. Google has more money, more brain power, more Net knowhow than anything its attackers may have, including governments. Fix its own vulnerability before blaming others or crying to leave a country.
LW
January 21, 2010 06:52 AM
Please be more specific, we need proof to make sure there was an attack.
Emmanuel Akpan
February 22, 2010 01:21 AM
it a high time the west should rise up to the threat from china. this cyber threat alone can cripple America with a short space of time if nothing is done to stop it. China has so advance it cyber war techniques more that any nation of the world. They can attack pentagon and infiltrate the CIA network within hours, what then do you expect? Soon they will have the ability to disable any American satellite in space. US should do something about the China threat. Chine is not happy with America for selling arms to Taiwan. This is the reason for the attack. I suggest Ameican Companies should enhance the programming code of their webserver, or develope a new webserver technology that is not known to chines hackers. Yet still i suspect that behind any attack there must be a spy working for the chines government in some of this American companies. The FBI should investigate all staff activity by conducting a torough Computer Forensics. Emmanuel Akpan is a Cyber Security Expert from Nigeria
Post a comment
About
Technology is transforming the workplace. In the Technology At Work blog, Rachael King and occasional guest bloggers explore how companies are using innovative software, hardware and other tools to revolutionize work spaces, cut costs of getting the job done, and make us better, faster and smarter at earning a living.
Recent Comments
- Social Sigma: Getting Customers to Improve your Product (1)
comment: Great article George. Most of executives that we speak to are afraid of - Pakistan, A Popular Outsourcing Destination? (70)
comment: Well, this is very much true, only the IT section in Pakistan is producing - What Your Blog Says About You (27)
comment: I ran Typealyzer on my blog and came up with a result that is almost exactl - How Did the Google Attack Happen? (11)
comment: it a high time the west should rise up to the threat from china. this cyber - Supply Chain Risk: Kanban Won’t Cut It (2)
comment: This article and the data shown aren't necessarily indications that kanban
Archives
- April 2010
- March 2010
- January 2010
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
