Cyber Threat SA for 20AUG2013

Good Tuesday morning Folks –

Much cyber news and situational awareness(SA) to take note of today…of mention is the extensive plan by the People’s Republic of China to increase bandwidth to consumers throughout the Middle Kingdom…Apple & Samsung get no love in China…Corruption in China’s State Owned Enterprise (SOE) China Mobile…

We also have a few stories on the Islamic Republic of Iran’s cyber plans and methodologies…ph yes, don’t forget about North Korean and Pakistan too.., for a complete discussion on the nation states – you really should view and apply to join their respective LinkedIn discussion Groups….
http://www.linkedin.com/groups/Iranian-Cyber-Warfare-4217323?trk=myg_ugrp_ovr and http://www.linkedin.com/groups/North-Korean-Cyber-Warfare-4223285?trk=myg_ugrp_ovr….

Enjoy tomorrow’s cyber news today…

Cyber – the good, the bad and the bug-free
http://www.nato.int/docu/review/2013/Cyber/EN/

中國人民共和國

China’s Report on US Military Cyber Troop Strength
http://goo.gl/0ouvjn
Broadband blueprint to facilitate China’s economic restructuring – Xinhua | English.news.cn |
http://news.xinhuanet.com/english/indepth/2013-08/19/c_132643900.htm
BEIJING: People’s Republic of China in big push against opinion-leading blogs – Technology
http://www.miamiherald.com/2013/08/19/3571859/china-in-big-push-against-opinion.html
Chang meets Hagel for Sino-US Pentagon talks
http://www.scmp.com/news/china/article/1297773/chang-meets-hagel-sino-us-pentagon-talks
Pacifying the Maoists
http://www.economist.com/blogs/analects/2013/08/bo-xilai-s-trial
Chinese Politiks…Blasts from the past
http://www.economist.com/blogs/analects/2013/08/chinese-politics
Degrees of Uncertainty in the People’s Republic of China’s Future –
http://english.caixin.com/2013-08-17/100571121.html

People’s Republic of China’s Huawei offends Pakistan with independence day message
http://www.techinasia.com/huawei-steps-political-minefield-independence-day-message-pakistan/?\
Yahoo’s email service is now closed in People’s Republic of China
http://www.techinasia.com/yahoo-china-email-service-now-shut/?
This new startup connects developers with China’s multitude of Android app stores
Significant cyber avenues of approach…

http://www.techinasia.com/appinchina-distributes-apps-to-top-china-android-app-stores/?
Philippines, Taiwan Conflict Results in Cyber Firefight | Analysis Intelligence
http://analysisintelligence.com/cyber-defense/philippines-taiwan-cyberwar/
China Steps Up Anti-Monopoly Probe in Oil and Telecom中国掀反垄断风暴 央企无豁免权_财经频道_一财网
http://www.yicai.com/news/2013/08/2942628.html
Another China Mobile Exec Investigated on Suspicion of Corruption –
http://english.caixin.com/2013-08-19/100571515.html
People’s Republic of China’s Alibaba Buys Stake in U.S. Online Vendor 阿里巴巴投资美国电商 “国际化”增加估值_财经频道_一财网
http://www.yicai.com/news/2013/08/2948460.html
People’s Republic of China’s Lenovo Continues Inexorable Rise Towards World Domination
http://www.ibtimes.co.uk/articles/499290/20130815/lenovo-continues-inexorable-rise-towards-world-domination.htm
Chinese consumers losing interest in Apple and Nokia and turn to Samsung and domestic brands
http://www.phonearena.com/news/Chinese-consumers-losing-interest-in-Apple-and-Nokia-and-turn-to-Samsung-and-domestic-brands_id46531?
Baidu Deal May Reduce App Piracy in the People’s Republic of China
http://www.nytimes.com/2013/08/19/business/global/baidu-deal-may-reduce-app-piracy-in-china.html?
US probes JP Morgan China staff
http://www.bbc.co.uk/news/business-23750199

Liaoning will serve as the commanding ship of PLA Navy:…
http://www.wantchinatimes.com/news-subclass-cnt.aspx?id=20130819000007&cid=1101

Not Really Made in China (or the United States)
http://economix.blogs.nytimes.com/2013/08/19/not-really-made-in-china-or-the-united-states/?

Cyber Security in South Korea: The Threat Within
http://thediplomat.com/2013/08/19/cyber-security-in-south-korea-the-threat-within/?all=true

Blogs begin to play a prominent political role | Russia
http://rbth.ru/politics/2013/08/19/blogs_begin_to_play_a_prominent_political_role_29015.html

MTNL’s Mumbai website hacked by Pakistani hacker:
http://www.ibtimes.co.in/articles/499648/20130817/mtnl-website-cyber-attack-pakistan-hacker-india.htm

The Convenient Timing of Iran-Linked Hacker Operations | Analysis…
http://analysisintelligence.com/cyber-defense/iran-linked-cyber-teams/?
Iran’s Top Diplomat to Take Key Nuclear Complex Post |
http://www.nti.org/gsn/article/irans-top-diplomat-takes-key-nuclear-post/
CIA Confirms Role in 1953 Iran Coup
Documents Provide New Details on Mosaddeq Overthrow and Its Aftermath
http://www2.gwu.edu/~nsarchiv/NSAEBB/NSAEBB435/

Al-Qaida Members Seen Using Chat Rooms to Plan Attacks |
http://www.nti.org/gsn/article/al-qaida-members-seen-using-chat-rooms-plan-attacks/

U.S. Dept. of Energy reports second security breach
http://www.csoonline.com/article/738230/u.s.-dept.-of-energy-reports-second-security-breach?
U.S. power plants, utilities face growing cyber vulnerability
http://www.homelandsecuritynewswire.com/dr20130819-u-s-power-plants-utilities-face-growing-cyber-vulnerability
Cyber security economics like a Ponzi scheme: Gartner
http://www.techworld.com.au/article/524067/cyber_security_economics_like_ponzi_scheme_gartner/?
ZeuS-P2P internals – understanding the mechanics: a technical report
http://www.cert.pl/news/7386/langswitch_lang/en
A Closer Look: Perkele Android Malware Kit — Krebs on Security
http://krebsonsecurity.com/2013/08/a-closer-look-perkele-android-malware-kit/
DIY automatic cybercrime-friendly ‘redirectors generating’ service spotted in the wild
http://blog.webroot.com/2013/08/19/diy-automatic-cybercrime-friendly-redirectors-generating-service-spotted-in-the-wild/

Enjoy!

Semper Fi,

謝謝
紅龍

International Cyber Situational Awareness for the Beginning of July 2013

Good day Folks;

My apologies for the late entry – international travel will do that to a person once in a awhile –

Nonetheless, here is a lengthy compilation of some of the latest International Cyber Situational Awareness for the Beginning of July 2013 –

Remember to search for “OP Middle Kingdom”

Enjoy!

U.S. to press People’s Republic of China on cyber theft: Lew

http://www.reuters.com/article/2013/07/01/us-treasury-china-idUSBRE96009X20130701

People’s Republic of China Accuses U.S. of Hypocrisy on Cyberattacks |

http://world.time.com/2013/07/01/china-accuses-u-s-of-hypocrisy-on-cyberattacks/?

People’s Republic of China’s Huawei’s Best-Kept Secret: An Army of Engineers

http://blogs.wsj.com/digits/2013/07/01/huaweis-best-kept-secret-an-army-of-engineers/?

U.S. Is a ‘Hacker Empire,’ Says Chinese Military Analyst

http://rendezvous.blogs.nytimes.com/2013/06/26/u-s-is-a-hacker-empire-says-chinese-military-analyst/?

U.S. Prism, Meet People’s Republic of China’s Golden Shield

http://rendezvous.blogs.nytimes.com/2013/06/28/u-s-prism-meet-chinas-golden-shield/?

LAP Green & the People’s Republic of China’s Huawei ink settlement agreement

http://www.telegeography.com/products/commsupdate/articles/2013/07/01/lap-green-huawei-ink-settlement-agreement/?

The Willie Suttons of the Cyberage – Can we stop bad guys from getting into U.S. networks? |

http://www.foreignpolicy.com/articles/2013/06/26/the_willie_suttons_of_the_cyberage_cybercrime?page=full

JFQ-70: Unpacking Cyberwar: The Sufficiency of the Law of Armed Conflict in the Cyber Domain
http://www.ndu.edu/press/unpacking-cyberwar.html

Awaiting Cyber 9/11

http://www.ndu.edu/press/awaiting-cyber-9-11.html

Snowden spy row grows as US is accused of hacking People’s Republic of China

http://www.guardian.co.uk/world/2013/jun/22/edward-snowden-us-china

EXCLUSIVE: NSA targeted People’s Republic of China’s Tsinghua University in extensive hacking attacks
“…Tsinghua University, widely regarded as the mainland’s top education and research institute, was the target of extensive hacking by US spies this year.”

http://www.scmp.com/news/china/article/1266892/exclusive-nsa-targeted-chinas-tsinghua-university-extensive-hacking

EXCLUSIVE: US hacked Pacnet, Asia Pacific fibre-optic network operator, in 2009

http://www.scmp.com/news/hong-kong/article/1266875/exclusive-us-hacked-pacnet-asia-pacific-fibre-optic-network-operator

EXCLUSIVE: Ex-Booz Hamilton NSA Contractor safe in Hong Kong, more US cyberspying details revealed

http://www.scmp.com/news/hong-kong/article/1266777/exclusive-snowden-safe-hong-kong-more-us-cyberspying-details-revealed

US hacks Chinese mobile phones: Booz Hamilton Contractor: US National Security FAIL

http://www.theaustralian.com.au/news/breaking-news/us-hacks-chinese-mobile-phones-snowden/story-fn3dxix6-1226668185301

Civic Party demands the US respond to hacking claims

http://www.scmp.com/news/hong-kong/article/1266716/civic-party-demands-us-respond-hacking-claims

Edward Snowden alleges US hacking People’s Republic of China phone firms

http://www.adelaidenow.com.au/news/world/edward-snowden-alleges-us-hacking-china-phone-firms/story-fnd11ay0-1226668186230

People’s Republic of China completes internet monitoring scheme in Tibet

http://www.guardian.co.uk/world/2013/jun/19/china-internet-monitoring-tibet

Xi Jinping’s Decade And The Future Of Sino-American Relations – Analysis

http://www.eurasiareview.com/22062013-xi-jinpings-decade-and-the-future-of-sino-american-relations-analysis/?

People’s Republic of China’s Xi harks back to Mao in party ‘cleanup’

http://wanderingchina.org/2013/06/20/chinas-xi-harks-back-to-mao-in-party-cleanup-ap-risingchina-corruption/

What to Make of Xi Jinping’s Maoist Turn

http://wanderingchina.org/2013/06/22/what-to-make-of-xi-jinpings-maoist-turn-wsj-risingchina-newleadership/

Hagel Vows to Prioritize Cyber, Nuclear Capabilities…Si vis pacem, para bellum
US DoD Defense.gov News Article…矽對海洋和平,帕拉戰爭


http://www.defense.gov/news/newsarticle.aspx?id=120339

People’s Republic of China: U.S. should not hold multiple standards in cyber world – People’s Daily Online

http://english.peopledaily.com.cn/90786/8290745.html

People’s Republic of China ~ Snowden spying claims rejected – People’s Daily Online

http://english.peopledaily.com.cn/90883/8287831.html

U.S. charges Snowden with espionage

http://www.washingtonpost.com/world/national-security/us-charges-snowden-with-espionage/2013/06/21/507497d8-dab1-11e2-a016-92547bf094cc_story.html

Edward Snowden: US government has been hacking Hong Kong and People’s Republic of China for years

http://www.scmp.com/news/hong-kong/article/1259508/edward-snowden-us-government-has-been-hacking-hong-kong-and-china

Snowden’s Leaks on People’s Republic of China Could Affect Its Role in His Fate |

http://www.nytimes.com/2013/06/15/world/asia/ex-nsa-contractors-disclosures-could-complicate-his-fate.html?

Chinese Ministry of Foreign Affairs sets up cyberdiplomacy office

http://www.scmp.com/news/china/article/1261181/chinese-ministry-foreign-affairs-sets-cyberdiplomacy-office

People’s Republic of China asks U.S. to explain Internet surveillance

http://www.reuters.com/article/2013/06/17/us-usa-security-china-idUSBRE95G06R20130617

People’s Republic of China’s Huawei, ZTE see vindication amid US cyber-spying scandal

http://www.scmp.com/business/companies/article/1263200/huawei-zte-see-vindication-amid-us-cyber-spying-scandal

People’s Republic of Acquisition: Nokia stock rises on rumors of Huawei acquisition
Operation Middle Kingdom – Finalnd technology now acquistion target of People’s Republic of China’s HUAWEI


http://www.washingtonpost.com/business/technology/nokia-stock-rises-on-rumors-of-huawei-acquisition/2013/06/18/3aca3fba-d83a-11e2-a016-92547bf094cc_story.html?

People’s Republic of China completes Internet, phone monitoring scheme for Tibet

http://www.reuters.com/article/2013/06/19/china-tibet-idUSL3N0EV1W920130619

People’s Republic of China’s Huawei says has no plans to buy Nokia

http://www.crn.com.au/News/347193,huawei-says-has-no-plans-to-buy-nokia.aspx

Soft Power: A U.S.-China Battleground?

http://thediplomat.com/china-power/soft-power-a-u-s-china-battleground/?

People’s Republic of China’s tyranny of uniqueness

http://cmp.hku.hk/2013/06/14/33486/

Reforming the People’s Republic of China’s State-Owned Enterprises

http://thediplomat.com/2013/06/19/reforming-chinas-state-owned-enterprises/?

People’s Republic of China lands three astronauts on Tiangong-1 space station

http://www.guardian.co.uk/world/2013/jun/13/china-astronauts-tiangong-1-space-station

Home Office Throws £4m At Educating Britain On Cyber Security
Awareness push from government celebrated by industry


http://www.techweekeurope.co.uk/news/home-office-4m-cyber-security-awareness-119696?

Report: UK spies hacked foreign diplomats

http://www.news.com.au/technology/report-uk-spies-hacked-foreign-diplomats/story-e6frfro0-1226665303140

GCHQ taps fibre-optic cables for secret access to world’s communications

http://www.guardian.co.uk/uk/2013/jun/21/gchq-cables-secret-world-communications-nsa?CMP=twt_gu

People’s Republic of China diversifies UK interests as Dalian Wanda invests £1bn in luxury brands

http://www.guardian.co.uk/business/2013/jun/19/china-uk-interests-dalian-wanda-luxury-brands

Use Tor, Get Targeted By the NSA –

http://yro.slashdot.org/story/13/06/21/1443204/use-tor-get-targeted-by-the-nsa?u

What the NSA Does With the Data It Isn’t Allowed to Keep

http://www.nextgov.com/cloud-computing/2013/06/what-nsa-does-data-it-isnt-allowed-keep/65324/

Schneier on Security: US Offensive Cyberwar Policy

http://www.schneier.com/blog/archives/2013/06/us_offensive_cy.html?

The keyboard: The weapon of choice in new type of warfare

http://www.irishexaminer.com/lifestyle/features/the-keyboard-the-weapon-of-choice-in-new-type-of-warfare-234768.html

Iran oil ministry denies cyber attack

http://en.trend.az/regions/iran/2164035.html

Semper Fi,

謝謝紅龍

MicroSolved, Inc. Adds Threat Expert Bill Hagestad to Team

Columbus, Ohio; April 10, 2013 –MicroSolved, Inc. is proud to announce the addition of Bill Hagestad to the team. Bill is one of the most internationally recognized subject matter experts regarding the People’s Republic of China and her use of the computer as a weapon system.

 
Prior to joining MSI, Bill created the Red Dragon Rising website which is dedicated to the identification and analysis of foreign language cyber threats. He has authored numerous papers related to the People’s Republic of China and the cyber demagoguery that revolves around the Middle Kingdom. Bill literally wrote the book on Chinese cyber warfare ~ “21st Century Chinese Cyberwarfare”, which is available on Amazon.com. The international intelligence, law enforcement and military experience from the cyber realm that Bill brings to MicroSolved is a very welcome addition to MSI’s industry leading
capabilities offered to clients for more than twenty years.

 

“We are very excited about Bill joining the team and about his emerging role in developing new relationships and offerings for our clients.”, said Brent Huston, CEO of MicroSolved. “With our growth in the critical infrastructure markets in the last several years and our continued focus on bringing rational information security products and services to ICS asset owners, utilities, government agencies and banks/credit unions, Bill brings us significant additional threat intelligence and educational capabilities. After turning 20 years old last November, we wanted to position MicroSolved to bring new, even more valuable insights to our customers and the community – and that begins with deep knowledge about the global threat landscape.”, he added.

About MicroSolved, Inc.

MicroSolved, Inc. was founded in 1992, making it one of the most experienced information security services companies in the world. Providing risk assessment, ethical hacking, penetration testing and security intelligence to organizations of all sizes has been their passion for more than two decades. MSI are the inventors of HoneyPoint Security Server, a patented honeypot intrusion detection platform designed for nuance and anomaly detection. Today, they secure businesses on a global scale and still provide expertise close to home. From governments to the Fortune 500 and from small business to YOUR business, they are the security experts you can trust.  

Press Contacts

Brent Huston

CEO & Security Evangelist

(614) 351-1237 x201

Info@microsolved.com


Bill Hagestad

Senior Cyber Security Strategist

(614) 351-1237 x 250

Info@microsolved.com

More Chinese Scans for Web Bugs

This morning I was checking through my usual HoneyPoint deployments and it was a normal day. As usual, the last 24 hours brought a large number of web application bug scans from hosts in China. They are the normal PHP discovery probes, some basic malware dropper probes against known web vulnerabilities and a ton of web server fingerprinting probes from various Chinese hosts.

China has now surpassed the US as the source of most global probes and attacks, a least according to Arbor. Check out the China profile here.

One of my close friends, JK, claims that there is a massive initiative underway in China to map the Internet on a global scale and to have a fairly up to date global vulnerability matrix for the world’s systems. While this could be true, and is certainly possible, with a large enough set of bot-infected hosts that dropped data back to a centralized database, it is an interesting thought.

For sure, these probes and scans exist on a global basis. Our international HoneyPoints pick up much of the same Chinese traffic as our US ones. Perhaps a quick check of some of your logs will show the same. Much discussion of pro-active blocks against Chinese address space is underway in several organizations. Perhaps this is something we should all think about?