WebProNews Ad Rates Click Now!
Read WebProNews
With Friends!

Google May Quit China

Discovers Sophisticated Chinese Hacking of Gmail

Get the WebProNews Newsletter!
By · January 12, 2010 · 4 Comments

Google released a stunning blog post that details a "sophisticated and targeted attack" on Gmail that "resulted in the theft of intellectual property from Google".

Google notes that the attack was not just on Google infrastructure but also on more than twenty other companies from various industries. Google states that they are working with the authorities in the U.S. and will be notifying the companies of the breaches.

The attack, Google says, appears to be aimed at "accessing the Gmail accounts of Chines human rights activists". Google does not believe the Chinese gained that objective and states that the Chinese hackers were only able to obtain information such as subject lines and dates, not the content of the emails themselves.

Google’s Chief Legal Office David Drummond states that "these attacks and the surveillance they have uncovered– have led us to conclude that we should review the feasibility of our business operations in China".

Additionally, Google blogs that they "are no longer going to censor search results on Google.cn". 

From the Official Google Blog:

Like many other well-known organizations, we face cyber attacks of varying degrees on a regular basis. In mid-December, we detected a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google. However, it soon became clear that what at first appeared to be solely a security incident–albeit a significant one–was something quite different.

First, this attack was not just on Google. As part of our investigation we have discovered that at least twenty other large companies from a wide range of businesses–including the Internet, finance, technology, media and chemical sectors–have been similarly targeted. We are currently in the process of notifying those companies, and we are also working with the relevant U.S. authorities.

Second, we have evidence to suggest that a primary goal of the attackers was accessing the Gmail accounts of Chinese human rights activists. Based on our investigation to date we believe their attack did not achieve that objective. Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves.

Third, as part of this investigation but independent of the attack on Google, we have discovered that the accounts of dozens of U.S.-, China- and Europe-based Gmail users who are advocates of human rights in China appear to have been routinely accessed by third parties. These accounts have not been accessed through any security breach at Google, but most likely via phishing scams or malware placed on the users’ computers.

We have already used information gained from this attack to make infrastructure and architectural improvements that enhance security for Google and for our users. In terms of individual users, we would advise people to deploy reputable anti-virus and anti-spyware programs on their computers, to install patches for their operating systems and to update their web browsers. Always be cautious when clicking on links appearing in instant messages and emails, or when asked to share personal information like passwords online. You can read more here about our cyber-security recommendations. People wanting to learn more about these kinds of attacks can read this U.S. government report (PDF), Nart Villeneuve’s blog andthis presentation on the GhostNet spying incident.

We have taken the unusual step of sharing information about these attacks with a broad audience not just because of the security and human rights implications of what we have unearthed, but also because this information goes to the heart of a much bigger global debate about freedom of speech. In the last two decades, China’s economic reform programs and its citizens’ entrepreneurial flair have lifted hundreds of millions of Chinese people out of poverty. Indeed, this great nation is at the heart of much economic progress and development in the world today.

We launched Google.cn in January 2006 in the belief that the benefits of increased access to information for people in China and a more open Internet outweighed our discomfort in agreeing to censor some results. At the time we made clear that "we will carefully monitor conditions in China, including new laws and other restrictions on our services. If we determine that we are unable to achieve the objectives outlined we will not hesitate to reconsider our approach to China."

These attacks and the surveillance they have uncovered–combined with the attempts over the past year to further limit free speech on the web–have led us to conclude that we should review the feasibility of our business operations in China. We have decided we are no longer willing to continue censoring our results on Google.cn, and so over the next few weeks we will be discussing with the Chinese government the basis on which we could operate an unfiltered search engine within the law, if at all. We recognize that this may well mean having to shut down Google.cn, and potentially our offices in China.

The decision to review our business operations in China has been incredibly hard, and we know that it will have potentially far-reaching consequences. We want to make clear that this move was driven by our executives in the United States, without the knowledge or involvement of our employees in China who have worked incredibly hard to make Google.cn the success it is today. We are committed to working responsibly to resolve the very difficult issues raised.

Posted by David Drummond, SVP, Corporate Development and Chief Legal Officer

RELATED ARTICLES:

Google APIs Explorer Gets Updated Look

Google APIs Explorer Gets Updated Look

One of the best things Google has done for developers over the last year was the Google APIs explorer. It allowed developers to try out the various APIs that Google offers while giving them tips on h...
Oracle Likely Spent Millions Suing Google

Oracle Likely Spent Millions Suing Google

It was reported yesterday that in Google’s trial regarding Oracle’s accusations that the search giant infringed upon Java API patents in the development of its Android operating system, the jury h...
iPhone Rules The Smartphone Market By Wide Margin [STUDY]

iPhone Rules The Smartphone Market By Wide Margin [STUDY]

In the smartphone wars it's often very hard to tell who's winning and who's losing. Often it depends very much on what metric you use. If you go by total market share, Android is the clear winner. ...
Top Rated White Papers and Resources
There are 4 Comments. Add Yours.
  1. matt
    Reply

    Am i right in thinking the Chinese and possibly the chinese government has hired hackers to hack accounts and find human rights activists so they can arrest them?

    It seems as if this is what’s going on.

    • xiao xian
      Reply

      Those hacker at China are knowns as CCP 50 cent army …this news i once know form a hong kong resident living in china knew one of the former 50 cent army that defected and told people in hong kong
      Not to mention there chinese,mainlander that does the job too form other country than china working for CCP 50 cent army,since u cant trace it IP address form china and china itself block most website,so it a win win situation for the CCP regime

  2. aaa
    Reply

    yes ,you are absolutely fucking right

  3. It will be unfortunate for the HR activists to lose access for them to promote their plight but their nation does not live democratically. HR is so basic and needed for a happier people and sad to have it ignored and punished altogether. I genuinely hope a solution can be found for supporting HR and Googles services.

What do you think? Respond.

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

WebProNews Videos | Advertise | About Us | Newsletter | Archive | News Feeds | Terms & Conditions | Contact Us

WebProNews is an iEntry Network ® publication - © 1998-2012 All Rights Reserved.