Google e-mail accounts compromised by 'Chinese hackers'

Gerald · 06-01-11, 08:15 PM

Hackers in China have compromised personal e-mail accounts of hundreds of top US officials, military personnel and journalists, Google has said.

The US company said a campaign to obtain passwords originated in Jinan and was aimed at monitoring e-mail.

Google said its security was not breached but indicated individuals' passwords were obtained through fraud.

Chinese political activists and officials in other Asian countries were also targeted, Google said.

"Google detected and has disrupted this campaign to take users' passwords and monitor their emails," the company said on Wednesday.

"We have notified victims and secured their accounts. In addition, we have notified relevant government authorities."

In Washington, the White House said it was investigating the reports but did not believe official US government e-mail accounts had been breached.

http://www.bbc.co.uk/news/world-us-canada-13623378

http://www.nytimes.com/2011/06/02/te...e.html?_r=1&hp

Note: 1 June 2011 Last updated at 22:36 GMT

August · 06-01-11, 09:09 PM

I love how it says "Hackers in China" as if we didn't know who was behind it.

Stealhead · 06-01-11, 09:46 PM

Those must have been the personal e-mail accounts of the military members not their military ones those are .mils and are lastnamefirstnamerank@base orcommand.mil I doubt they'd hack those so easily.

Still how did these Chinese hackers know that they where hacking the accounts of military members?

A good lesson in why OPSEC is so important(loose lips sink ships).I never spoke of military duties off base in any detail nor over the phone or in e-mails and I still don't say very much about my old job not any technical or ops details anyway.I have an old friend who is in military intelligence security he hates sites like Facebook with a passion because of OPSEC loopholes from members of Facebook who are the military and give out details even what seems minor is useful to someone who knows what to look for.

Gerald · 06-01-11, 09:48 PM

It is not only military personnel in the U.S as they tried to access, it affects other countries also.

the_tyrant · 06-01-11, 09:57 PM

this is old, very old

a few years ago, these guys had great success with targeted phishing
what they did was, they somehow attacked the DNS servers, and redirected everyone who tried to visit gmail.com to their attacks site

so in other words, lets assume you were in China, and you type gmail.com into
your browser's url bar
you are taken to a site that looks like the real deal, but instead it is a attack site, set up to trick you into entering your email and password.
you enter your email and password, and they end up getting your email and password.

what can you do to protect yourself? Well against attacks like this you stand little chance
you can either check the source code of the site itself (really hard), or edit your hosts file. I might post s tutorial in the computer hardware/software section if you guys are interested.

and i tell you, the honkers ("non government supported" commie hackers) has to have official support, and support from the ISPs, although they claim they are patriotic citizens working on their own

Gerald · 06-01-11, 10:16 PM

It is possible to protect themselves in many ways, before this stuff may be raised, it's all about knowledge and access to equipment in some cases, but of course there are easy solutions to this.

Gerald · 06-02-11, 04:15 AM

A Google office in Beijing. The company says recent attacks on Gmail apparently began in Jinan, a provincial capital in China.

Gerald · 06-02-11, 06:55 AM

Soon enough problem to be solved ... I guess

kiwi_2005 · 06-02-11, 08:23 PM

Quote:

Originally Posted by Vendor

top US officials, military personnel

Why would they use gmail? Gmail is for us nobodies.

Stealhead · 06-02-11, 08:55 PM

It was their personal e-mail accounts not their official duty .mil ones.

August · 06-02-11, 10:43 PM

Quote:

Originally Posted by kiwi_2005

Why would they use gmail? Gmail is for us nobodies.

Ease of access maybe?

Gerald · 06-03-11, 06:57 AM

Gmail, has a high safety level, and the goal was to try and test what protection it has against this stuff, and this has of course occurred other players.

06-01-11, 08:15 PM	#1
Gerald SUBSIM Newsman Join Date: May 2008 Location: Close to sea Posts: 24,254 Downloads: 553 Uploads: 0	Google e-mail accounts compromised by 'Chinese hackers' Hackers in China have compromised personal e-mail accounts of hundreds of top US officials, military personnel and journalists, Google has said. The US company said a campaign to obtain passwords originated in Jinan and was aimed at monitoring e-mail. Google said its security was not breached but indicated individuals' passwords were obtained through fraud. Chinese political activists and officials in other Asian countries were also targeted, Google said. "Google detected and has disrupted this campaign to take users' passwords and monitor their emails," the company said on Wednesday. "We have notified victims and secured their accounts. In addition, we have notified relevant government authorities." In Washington, the White House said it was investigating the reports but did not believe official US government e-mail accounts had been breached. http://www.bbc.co.uk/news/world-us-canada-13623378 http://www.nytimes.com/2011/06/02/te...e.html?_r=1&hp Note: 1 June 2011 Last updated at 22:36 GMT __________________ Nothing in life is to be feard,it is only to be understood. Marie Curie

06-01-11, 09:09 PM	#2
August Wayfaring Stranger Join Date: Apr 2005 Location: Massachusetts Posts: 23,197 Downloads: 0 Uploads: 0	I love how it says "Hackers in China" as if we didn't know who was behind it. __________________ Flanked by life and the funeral pyre. Putting on a show for you to see.

06-01-11, 09:48 PM	#4
Gerald SUBSIM Newsman Join Date: May 2008 Location: Close to sea Posts: 24,254 Downloads: 553 Uploads: 0	It is not only military personnel in the U.S as they tried to access, it affects other countries also. __________________ Nothing in life is to be feard,it is only to be understood. Marie Curie

06-01-11, 10:16 PM	#6
Gerald SUBSIM Newsman Join Date: May 2008 Location: Close to sea Posts: 24,254 Downloads: 553 Uploads: 0	It is possible to protect themselves in many ways, before this stuff may be raised, it's all about knowledge and access to equipment in some cases, but of course there are easy solutions to this. __________________ Nothing in life is to be feard,it is only to be understood. Marie Curie

06-02-11, 04:15 AM	#7
Gerald SUBSIM Newsman Join Date: May 2008 Location: Close to sea Posts: 24,254 Downloads: 553 Uploads: 0	A Google office in Beijing. The company says recent attacks on Gmail apparently began in Jinan, a provincial capital in China. __________________ Nothing in life is to be feard,it is only to be understood. Marie Curie

06-01-11, 09:46 PM	#3
Stealhead Navy Seal Join Date: Feb 2009 Location: Kentucky Posts: 5,421 Downloads: 85 Uploads: 0	Those must have been the personal e-mail accounts of the military members not their military ones those are .mils and are lastnamefirstnamerank@base orcommand.mil I doubt they'd hack those so easily. Still how did these Chinese hackers know that they where hacking the accounts of military members? A good lesson in why OPSEC is so important(loose lips sink ships).I never spoke of military duties off base in any detail nor over the phone or in e-mails and I still don't say very much about my old job not any technical or ops details anyway.I have an old friend who is in military intelligence security he hates sites like Facebook with a passion because of OPSEC loopholes from members of Facebook who are the military and give out details even what seems minor is useful to someone who knows what to look for.

06-01-11, 09:57 PM	#5
the_tyrant Admiral Join Date: Jun 2010 Location: Canada Posts: 2,272 Downloads: 58 Uploads: 0	this is old, very old a few years ago, these guys had great success with targeted phishing what they did was, they somehow attacked the DNS servers, and redirected everyone who tried to visit gmail.com to their attacks site so in other words, lets assume you were in China, and you type gmail.com into your browser's url bar you are taken to a site that looks like the real deal, but instead it is a attack site, set up to trick you into entering your email and password. you enter your email and password, and they end up getting your email and password. what can you do to protect yourself? Well against attacks like this you stand little chance you can either check the source code of the site itself (really hard), or edit your hosts file. I might post s tutorial in the computer hardware/software section if you guys are interested. and i tell you, the honkers ("non government supported" commie hackers) has to have official support, and support from the ISPs, although they claim they are patriotic citizens working on their own

06-02-11, 06:55 AM	#8
Gerald SUBSIM Newsman Join Date: May 2008 Location: Close to sea Posts: 24,254 Downloads: 553 Uploads: 0	Soon enough problem to be solved ... I guess __________________ Nothing in life is to be feard,it is only to be understood. Marie Curie

06-02-11, 08:55 PM	#10
Stealhead Navy Seal Join Date: Feb 2009 Location: Kentucky Posts: 5,421 Downloads: 85 Uploads: 0	It was their personal e-mail accounts not their official duty .mil ones.

06-03-11, 06:57 AM	#12
Gerald SUBSIM Newsman Join Date: May 2008 Location: Close to sea Posts: 24,254 Downloads: 553 Uploads: 0	Gmail, has a high safety level, and the goal was to try and test what protection it has against this stuff, and this has of course occurred other players. __________________ Nothing in life is to be feard,it is only to be understood. Marie Curie