Another attack executed on law firm suing China

Techweb reports that CYBERsitter software company specialising in web filtering software, has sued the People's Republic of China, two Chinese software makers, and seven computer manufacturers for distributing web filtering software called "Green Dam" with their intellectual property illegally included. CYBERsitter is reporting that they too were attacked this week, with the attack originating from China.

In a phone interview with TechWeb, Elliot Gipson of Gipson Hoffman & Pancione described what was another spear-phishing attack - the exact same exploit used against Google in China in late December last year. The attack used emails which were targeted at employees inside the company, and made to appear as if they were coming from other employees within the law firm. "They attempted to get the target to click on a link or attachment." he said.

The legal firm has performed initial internal investigations which showed that some of the email messages came from Chinese IP addresses and that some of the malware also originated from servers in China.

Gipson believes that noone has clicked on the malicious links, and that employees had been warned not to open documents or click links if they seemed suspicious, even if from a co-worker. He went on to say that despite the fact that the messages appeared to come from other members of the law firm, employees generally picked up on the dodgy phrasing, as they know each other personally. "You work with people, you know what they sound like," he said.

When CYBERsitter claimed that Green Dam contained its intellectual property last June, the company was hit by a similar attack, also supposedly originating from China. The lawfirm has not recieved a response from the Chinese government or any of the companies it is suing. It is seeking $2.2 billion in lost sales for the over 56 million copies of Green Dam distributed in China.

Report a problem with article
Previous Story

LG confirms Windows Mobile 7 devices to ship in September

Next Story

Microsoft warns customers to upgrade from IE6 and IE7

30 Comments

View more comments

Hell-In-A-Handbasket said,
if people dont like it they can do what other people in countries have done including the US, revolt


LMAO!! Yeah, great idea!! Because that went REAL well last time they did that, right??!? And like the people there give a flying damn if some companies code got stolen!!

Edited by Ji@nBing, Jan 18 2010, 3:49am :

M_Lyons10 said,

The Chinese government has already cut their citizens off from the rest of the internet because of their filters... We might as well do the same to the Chinese government... :P

Ya, they are so cut off from the internet. Its a tragedy that they have no access to facebook, twitter, blogspot, youtube.....

TCLN Ryster said,
Just cut China off from the rest of the internet if they refuse to play nice... simple.
It's probally what they want, the Chinese don't think too highly of us westerners and many seem to resent China been opened up to the western world...perhaps they are trying to reclose their borders? just a thought.

Omen1393 said,
Access to Neowin from China blocked in 3..2..1..

Seriously,if you lived in China before, you will know this could happen in any time. Never make light of the sensitivity of Chinese Government. I had already been shocked so many times.

djdanster said,
I see a cyber war starting :\

yea I don't think this is gonna get anywhere. Might as well start a cyber warfare against the chinese gov

They don't even know if the real cultpit was China and they sued them? :bink: sounds like they just jumped on the "blame China for everything" bandwagen...

Xerxes said,
They don't even know if the real cultpit was China and they sued them? :bink: sounds like they just jumped on the "blame China for everything" bandwagen...

No, that's not what happened. They sued China for infringing on their IP. The article is trying to correlate the attempted attack now with that of their law suit which was filed in June- drawing a retaliatory picture.

Edited by linsook, Jan 18 2010, 3:11am :

linsook said,

No, that's not what happened. They sued China for infringing on their IP. The article is trying to correlate the attempted attack now with that of their law suit which was filed in June- drawing a retaliatory picture.

I understand why they are sueing. I just don't get how it links in to the Google attacks? I wouldn't be surprised if the Chinese gov were behind it all but all this seems a little too convenient. Wait and see how it pans out I guess.

Xerxes said,
I understand why they are sueing. I just don't get how it links in to the Google attacks? I wouldn't be surprised if the Chinese gov were behind it all but all this seems a little too convenient. Wait and see how it pans out I guess.

It's linked to the Google attacks because the same attack method was used. (Sending an e-mail with a link to a site that hosts an IE browser exploit)

Mikeyx11 said,

It's linked to the Google attacks because the same attack method was used. (Sending an e-mail with a link to a site that hosts an IE browser exploit)

It's also suspicious because they're targeting people that are not bowing down to the regime that is the People's "Republic" of China.

Human rights activists, now those who are suing the Chinese Government for IP violations...

This is really getting out of hand.

How can China just get away with this? Can't these attacks be brought up at the UN or something. Oh, wait, China owns the US.

Chrono951 said,
How can China just get away with this? Can't these attacks be brought up at the UN or something. Oh, wait, China owns the US.

Even if they didn't own the US, the UN is a joke and has been for a few decades now

Chrono951 said,
How can China just get away with this? Can't these attacks be brought up at the UN or something. Oh, wait, China owns the US.

Because there's no proof? Unless the server in question is hosted in a Chinese government datacenter with the sticker "omg this is a Chinese gov machine", then they can just claim someone from <insert foreign country> hosted the items in China.

I'm also surprised they listed 7 computer manufacturers in their lawsuit, chances are it won't hold, as they were pretty much ordered by the Chinese government to ship the software, not like they actively wanted to put pirated items on their own computers. I also expect this lawsuit to not get anywhere other than a publicity stunt.

iamwhoiam said,
Chinese people not wanting to actively use pirated software? LMAO!!!

Actually it's not because they don't want to, it's because they can't afford to. Take Antivirus for example, regional pricing for Kaspersky is USD$21 for 3 years (legitimate pricing straight from Kaspersky) and it's around the same for others like ESET. This is a price that the working class can pay (Fresh graduates make around say USD$400 a month).

Until China can raise the average earning, by A LOT, things aren't going to change. What's even more scary is, that USD$400 a month will provide for a more comfortable life for someone on minimum wage in the states.

What a load of tosh. Any hacker worth his salt can easily make any attack look like it came from anywhere. So these Chinese super-hackers are smart enough to crack Google - but forgot to cover their tracks?

If you check the IP address of this comment you'll find it came from Canada. FYI: I'm somewhere else.

greatscot said,

If you check the IP address of this comment you'll find it came from Canada. FYI: I'm somewhere else.


and if you check my IP, you'll see its from Luxembourg or the UK ... im somewhere else too... proxies ftw

What a load of tosh. Any hacker worth their salt can make an attack look like it came from anywhere. So these Chinese super-hackers are smart enough to break into any system in America. But they don't know how to cover their tracks? Sure.

FYI; If you check the IP address that this comment came from you'll see it came from China. But I'm not in China today.

China will end up like North Korea, Isolated.

Yes greatscot, you are using a proxy server.

Aint that right I.P. 123.138.18.114 nah mean.

Anyone who thinks China will end up isolated or cut off is about as delussional as anyone who thinks other nations dont conduct cyber esponiage.

Commenting is disabled on this article.