China's official survey found that the source of Northwestern Polytechnical University was initially determined that the source of overseas network attacks was the US National Security Agency.
Comprehensive China CCTV News and Global Network reports, China National Computer Virus Emergency Treatment Center and Qihoo 360 Technology Co., Ltd. (September 5th) released the Northwest Institute of Technology's attack on overseas network attacks respectivelyInvestigation report.The survey found that the Office of Tailored Access Operation (TAO) under the National Security Agency (NSA) (TAO).Over the years, tens of thousands of malicious network attacks have been implemented in China's domestic network targets, controlling related network devices, and suspected high value data.
According to reports, Northwest University of Technology issued a statement on June 22, saying that hackers from overseas and criminals sent fishing emails containing Trojans procedures to teachers and students in the school, trying to steal the email data of relevant teachers and students and the email data andPersonal information of citizenship causes major risk hazards to the normal work and order of life.
On June 23, the Beilin Branch of Xi'an Public Security Bureau issued a police report, confirming that a number of samples from overseas were found in the information network of Northwestern Polytechnical University.The extracted Trojan and fishing email samples further develop technical analysis.
Xi'an Public Security Organs attach great importance to this, and immediately organize police forces and network security technology experts to set up a joint task force to investigate the case.China National Computer Virus Emergency Treatment Center and Qihoo 360 Technology Co., Ltd. jointly formed a technical team (referred to as technical team) to participate in the technical analysis of the case throughout the process.
The technical team has extracted a number of Trojan samples from multiple information systems and Internet terminals from Northwestern University of Technology, comprehensively used the existing data resources and analysis methods in China, and obtained from some countries in Europe and South Asia.The support of the partners has comprehensively restored the overall summary, technical characteristics, attack weapons, attack paths and attack source of related attacks. The initially determined that related attack activities originated from the specific invasive operation office of the National Security Agency.
This survey also found that in recent years, the Specific Action Office of the National Security Agency under the National Security Agency has implemented tens of thousandsEquipment, including network server, Internet terminal, network switch, telephone switch, router, firewall, etc., stealing more than 140GB of high -value data.
After complex technical analysis and traceability, the technical team restores the process of being attacked and stolen by the Northwestern Polytechnical University.Related evidence of cyber attacks and data theft involves 13 personnel who directly launch cyber attacks in China in the United States, and more than 60 contracts signed with US telecommunications operators by covering the company to build a network attack environment by covering the company.More than 170 electronic files.
Jin Qi, deputy director of the Beilin Branch of the Xi'an Public Security Bureau, said that the joint project has been reported to the relevant national departments.
