97精品久久久久中文字幕_最近中文字幕mv免费高清视频免费_一本色道久久综合_污黄视频在线观看

網絡戰升級,FBI通緝五名中國軍方人員

日期:2014-05-27點擊:4825

        這個消息從5月19日就傳開了??梢岳斫鉃榫W絡戰的最新發展態勢——借由法律為名的公開化。

 

From left, Chinese military officers Gu Chunhui, Huang Zhenyu, Sun Kailiang, Wang Dong, and Wen Xinyu have been indicted on cyber espionage charges.

美國司法部認為有必要起訴的理由是認為這個刺探行動超越了他們“給自己劃定”的軍事、政治領域,而將刺探的信息用于經濟目的。在起訴書中大量列舉了受害者的失竊信息,我猜想他們都應該向FBI報案了。

 

起碼,他們知道他們有什么信息被竊取了,并且通過手段找到了他們認定的犯罪份子。單就這兩點而言,可見美國的信息與網絡安全取證的水平之高。

FBI的新聞稿中寫道:Wang Dong, Sun Kailiang, Wen Xinyu, Huang Zhenyu, and Gu Chunhui, who were officers in Unit 61398 of the Third Department of the Chinese People’s Liberation Army (PLA). The indictment alleges that Wang, Sun, and Wen, among others known and unknown to the grand jury, hacked or attempted to hack into U.S. entities named in the indictment, while Huang and Gu supported their conspiracy by, among other things, managing infrastructure (e.g., domain accounts) used for hacking.

受害人: Westinghouse Electric Co. (Westinghouse); U.S. subsidiaries of SolarWorld AG (SolarWorld); United States Steel Corp. (U.S. Steel); Allegheny Technologies Inc. (ATI); the United Steel, Paper and Forestry, Rubber, Manufacturing, Energy, Allied Industrial and Service Workers International Union (USW); and Alcoa Inc.

刺探的時間跨度: 2006-2014

31條犯罪指控: 31 counts as follow (all defendants are charged in all counts):

Count(s) Charge Statute Maximum Penalty
One

Conspiring to commit computer fraud and abuse

 18 U.S.C. § 1030(b) 10 years
Two through nine Accessing (or attempting to access) a protected computer without authorization to obtain information for the purpose of commercial advantage and private financial gain 18 U.S.C. §§ 1030(a)(2)(C), 1030(c)(2)(B)(i)-(iii), and 2 Five years (each count)
10-23 Transmitting a program, information, code, or command with the intent to cause damage to protected computers 18 U.S.C. §§ 1030(a)(5)(A), 1030(c)(4)(B), and 2 10 years (each count)
24-29 Aggravated identity theft 18 U.S.C. §§ 1028A(a)(1), (b), (c)(4), and 2 Two years (mandatory consecutive)
30 Economic espionage 18 U.S.C. §§ 1831(a)(2), (a)(4), and 2 15 years
31 Trade secret theft 18 U.S.C. §§ 1832(a)(2), (a)(4), and 2 10 years

Summary of Defendants’ Conduct Alleged in the Indictment

Defendant Victim Criminal Conduct
Sun Westinghouse

In 2010, while Westinghouse was building four AP1000 power plants in China and negotiating other terms of the construction with a Chinese SOE (SOE-1), including technology transfers, Sun stole confidential and proprietary technical and design specifications for pipes, pipe supports, and pipe routing within the AP1000 plant buildings.

Additionally, in 2010 and 2011, while Westinghouse was exploring other business ventures with SOE-1, Sun stole sensitive, non-public, and deliberative e-mails belonging to senior decision-makers responsible for Westinghouse’s business relationship with SOE-1.
Wen SolarWorld In 2012, at about the same time the Commerce Department found that Chinese solar product manufacturers had “dumped” products into U.S. markets at prices below fair value, Wen and at least one other, unidentified co-conspirator stole thousands of files including information about SolarWorld’s cash flow, manufacturing metrics, production line information, costs, and privileged attorney-client communications relating to ongoing trade litigation, among other things. Such information would have enabled a Chinese competitor to target SolarWorld’s business operations aggressively from a variety of angles.
Wang and Sun U.S. Steel In 2010, U.S. Steel was participating in trade cases with Chinese steel companies, including one particular state-owned enterprise (SOE-2). Shortly before the scheduled release of a preliminary determination in one such litigation, Sun sent spearphishing e-mails to U.S. Steel employees, some of whom were in a division associated with the litigation. Some of these e-mails resulted in the installation of malware on U.S. Steel computers. Three days later, Wang stole hostnames and descriptions of U.S. Steel computers (including those that controlled physical access to company facilities and mobile device access to company networks). Wang thereafter took steps to identify and exploit vulnerable servers on that list.
Wen ATI In 2012, ATI was engaged in a joint venture with SOE-2, competed with SOE-2, and was involved in a trade dispute with SOE-2. In April of that year, Wen gained access to ATI’s network and stole network credentials for virtually every ATI employee.
Wen USW In 2012, USW was involved in public disputes over Chinese trade practices in at least two industries. At or about the time USW issued public statements regarding those trade disputes and related legislative proposals, Wen stole e-mails from senior USW employees containing sensitive, non-public, and deliberative information about USW strategies, including strategies related to pending trade disputes. USW’s computers continued to beacon to the conspiracy’s infrastructure until at least early 2013.
Sun Alcoa About three weeks after Alcoa announced a partnership with a Chinese state-owned enterprise (SOE-3) in February 2008, Sun sent a spearphishing e-mail to Alcoa. Thereafter, in or about June 2008, unidentified individuals stole thousands of e-mail messages and attachments from Alcoa’s computers, including internal discussions concerning that transaction.
Huang   Huang facilitated hacking activities by registering and managing domain accounts that his co-conspirators used to hack into U.S. entities. Additionally, between 2006 and at least 2009, Unit 61398 assigned Huang to perform programming work for SOE-2, including the creation of a “secret” database designed to hold corporate “intelligence” about the iron and steel industries, including information about American companies.
Gu   Gu managed domain accounts used to facilitate hacking activities against American entities and also tested spear phishing e-mails in furtherance of the conspiracy.

撇開政治不談,我好奇的是他們的取證分析技術和方法。

根據指控書和相關材料顯示,有幾點比較有趣:

1)為何那么多起美國政府認定的來自的攻擊都沒有起訴,偏偏這次起訴了呢?原因就在于他們這次認定了攻擊行動獲取的企業機密信息被用于了經濟目的,并提供給了本國的企業,用于獲得競爭優勢。那么,他們是如何具體闡述的呢?他們說,這個部隊的人一方面有組織地對美國企業進行刺探,獲取機密情報信息,另一方面這個部隊的人也為國內的企業提供安全服務,在為客戶提供安全服務的時候,將之前獲取的信息透露給了這些國內企業(主要是幾家SOE——國有企業)。仔細一看,他們還真是分析的很深。

2)在認定是這個部隊的人的時候,用了N種方法互相印證,我猜想用到了之前Mandiant的APT1報告中列舉的那些證據或者類似的、更高級的證據。同時,他們還提到了一個論證,就是發現用于回傳機密數據的動態DNS的網站的流量的周期性波動,具有顯著的早8點到晚5點(中國時間)的波峰特性,而其他時間(還有中午1個小時)則呈現波谷,說這跟中國國有事業單位的上班時間很吻合。在指控書附錄中還貼出了幾幅流量圖。很有意思。

3)在指控書中還比較詳細的枚舉了受害人失竊的信息,細到了具體的主機名,信息類型,甚至個別條目。

 

看了這些你就明白為什么FireEye要收購Mandiant,檢測威脅很重要,數字取證分析和溯源也很重要??!結合到一起才NB。

上一篇:黑客就在你身邊 – 通過名片怎么黑掉你

下一篇:DNS DDoS攻擊類型分析

張生:13751841126
梁生:13826047785
.com
97精品久久久久中文字幕_最近中文字幕mv免费高清视频免费_一本色道久久综合_污黄视频在线观看

    <wbr id="flpi4"><legend id="flpi4"></legend></wbr>

    <em id="flpi4"></em>
    

      <nav id="flpi4"></nav>
      <em id="flpi4"><span id="flpi4"></span></em><form id="flpi4"></form><wbr id="flpi4"><pre id="flpi4"></pre></wbr>
      <strike id="flpi4"><pre id="flpi4"></pre></strike>
      

羞羞漫画18久久大片|
欧美三日本三级少妇三2023|
国产精品99久久久久久久久久久久|
国产欧美在线播放|
国产视频亚洲|
国产亚洲欧美日韩美女|
国内精品久久久久久久影视麻豆|
国产综合在线视频|
亚洲美女av网站|
国产亚洲欧美一区二区|
欧美中文字幕第一页|
国产精品狼人久久影院观看方式|
欧美日韩综合在线|
欧美精品福利视频|
欧美大香线蕉线伊人久久国产精品|
亚洲欧美影音先锋|
国产视频丨精品|在线观看|
99精品欧美一区二区三区综合在线|
欧美一区二区三区四区夜夜大片|
欧美亚洲一区二区在线观看|
国产精品a级|
久久久久久97三级|
国产无一区二区|
在线一区二区视频|
欧美日产国产成人免费图片|
欧美日韩精品免费观看视一区二区|
国产午夜精品视频|
亚洲韩国日本中文字幕|
亚洲精品免费电影|
久久精品一区二区三区不卡|
亚洲国产裸拍裸体视频在线观看乱了中文|
国产精品一区视频网站|
亚洲精品黄网在线观看|
国内外成人免费视频|
在线成人小视频|
久久午夜视频|
蜜臀av性久久久久蜜臀aⅴ|
麻豆91精品91久久久的内涵|
裸体丰满少妇做受久久99精品|
午夜精品一区二区三区在线播放|
一区二区三区视频在线播放|
欧美日韩一区二区视频在线|
久久一区二区三区四区|
亚洲一区二区三区精品在线|
国产美女精品在线|
国内成人精品2018免费看|
欧美日韩在线播放|
亚洲电影免费观看高清完整版在线观看|
狠狠色丁香婷婷综合久久片|
国产综合自拍|
亚洲韩国青草视频|
亚洲国产另类久久久精品极度|
国产精品久久9|
一个色综合av|
中文av字幕一区|
国产日韩综合一区二区性色av|
欧美日本韩国在线|
欧美四级在线|
一区二区久久|
久久九九全国免费精品观看|
看欧美日韩国产|
久久综合久久88|
欧美噜噜久久久xxx|
国产精品一区二区三区久久久|
欧美在线观看网址综合|
欧美性色aⅴ视频一区日韩精品|
亚洲精品午夜精品|
麻豆精品国产91久久久久久|
亚洲天堂网在线观看|
国产一区二区精品丝袜|
国产一区二区久久|
欧美性理论片在线观看片免费|
亚洲一区国产精品|
国内成人在线|
亚洲国产婷婷香蕉久久久久久99|
久久久久久久综合色一本|
国产精品日韩精品欧美在线|
亚洲精品社区|
欧美刺激午夜性久久久久久久|
亚洲午夜在线观看|
国产精品剧情在线亚洲|
亚洲免费在线观看视频|
亚洲韩国精品一区|
亚洲欧美中日韩|
性欧美大战久久久久久久久|
欧美一区二区在线免费播放|
亚洲桃花岛网站|
日韩亚洲欧美高清|
亚洲日本欧美在线|
亚洲美女尤物影院|
欧美视频网站|
久久久久久电影|
国产一区二区三区在线观看视频|
亚洲欧美国产日韩中文字幕|
国产欧美日韩综合|
日韩亚洲国产精品|
女生裸体视频一区二区三区|
西西裸体人体做爰大胆久久久|
欧美一区免费|
国产一级揄自揄精品视频|
久久精品在线免费观看|
国产色婷婷国产综合在线理论片a|
亚洲欧美中文字幕|
伊人久久综合97精品|
久久久久久久综合日本|
国产裸体写真av一区二区|
**性色生活片久久毛片|
亚洲免费综合|
欧美国产免费|
欧美伦理一区二区|
亚洲影音一区|
午夜精品免费视频|
亚洲一区尤物|
欧美日韩综合网|
在线观看视频日韩|
久久综合九色综合网站|
久久成人人人人精品欧|
激情婷婷亚洲|
亚洲电影在线|
99香蕉国产精品偷在线观看|
国产欧美日韩麻豆91|
极品尤物一区二区三区|
日韩一二三区视频|
午夜精品久久久久久99热软件|
一区二区三区精品视频在线观看|
另类春色校园亚洲|
欧美成年人视频网站欧美|
99视频精品免费观看|
亚洲欧美日本国产有色|
黄色影院成人|
免费不卡在线观看av|
一区在线播放|
久久乐国产精品|
亚洲三级色网|
久久精品国产第一区二区三区最新章节|
国产精品户外野外|
亚洲午夜精品视频|
久久久99久久精品女同性|
亚洲色图制服丝袜|
欧美视频在线观看一区二区|
亚洲女同精品视频|
欧美色视频在线|
国精产品99永久一区一区|
国产伦理一区|
国产精品久久波多野结衣|
亚洲欧美日韩精品久久久久|
久久婷婷麻豆|
欧美一激情一区二区三区|
国产香蕉97碰碰久久人人|
欧美日韩在线播放一区|
欧美日韩一区二区三区|
欧美日韩亚洲在线|
亚洲青涩在线|
国产精品成人在线|
国产精品乱码人人做人人爱|
欧美一区二区三区久久精品茉莉花|
avtt综合网|
在线精品视频一区二区|
亚洲视频综合在线|
欧美一区二区大片|
在线综合亚洲|
欧美精品videossex性护士|
欧美成人中文字幕|
欧美精品一区在线观看|