Hacker attacks in US linked to Chinese military

JDMurray

Hacker attacks on U.S. military installations are not new, but if they can prove this series of attacks came from the bona fide Chinese military then this would be the first publicized "virtual attack" upon American soil (that I know of).

I'm sure the U.S. has "probed" a few foreign military installations itself in the past and present.

http://www.terra.net.lb/wp/Articles/DesktopArticle.aspx?ArticleID=260955&ChannelId=16

http://news.zdnet.com/2100-1009_22-5969516.html

http://it.slashdot.org/it/05/12/14/1634247.shtml?tid=172&tid=219

http://www.schneier.com/blog/archives/2005/12/titan_rain_1.html

seuss_ssues

it has been going on for almost a decade......


they steal what they cannot develop.....

fondue

Both are true statements, the latest attacks have been non-stop for over a week. I just keep adding additional subnets to the router acl so the firewalls don't have to deal with the unnecessary traffic. I'm currently blocking all of 211.x.x.x and 212.x.x.x plus most of 202.x.x.x and a few others. It's funny the whois data points to names like National Information Technology or a university.

forbesl

fondue wrote:

Both are true statements, the latest attacks have been non-stop for over a week. I just keep adding additional subnets to the router acl so the firewalls don't have to deal with the unnecessary traffic. I'm currently blocking all of 211.x.x.x and 212.x.x.x plus most of 202.x.x.x and a few others. It's funny the whois data points to names like National Information Technology or a university.

We've gone one step further and have blocked ALL networks registered to APNIC at the 8 bit level. If for some reason someone needs connectivity to an APNIC registered host, we open up a hole for only that host and port(s) needed.