websitesusingtrackingandadvertisingcodefromBaidu.Theattackhasbeendubbedas“HTTPhijacking”:“acertaindeviceattheborderofChina’sinneworkandtheIntehashijackedtheHTTPconnections”and“replacedsomeJavaScriptfilesfromBaiduwithmaliciousones”thatwouldloadGitHub’sGreatFireandCN-NYTimesprojects“everytwoseconds.”
ThiswillinfluenceinteuserswhovisitChinesewebsitesviaanIPaddressoutsideChina,includingChineseuserswhouseVPNsorothercircumventiontools.Initsofficialweiboaccount,BaiduSecurityLabdeniedthattheattackwasrelatedtotheirsecurityloopholes.
“usingregularinteuserstoengageinDDoSattackisnowChina’snewpoliticalweapon.“User@bitinnwrote,“(Chinesecensors)hasswitchedfromsimplydefensetoactiveoffense.”
FromDefensetoOffense
Indeed,recentlyChineseintecensorshipmechanismhasbemoreaggressive,andactivelyattacksitesthataredeemedtoosensitivebythecensors.SincethisMarch,ChinahasbeenaccusedofDDoSattackGreatfire’santi-censorshipmirrorsites.Lastweek,GooglefoundunauthorizeddigitalcertificatesforseveralGoogledomains,therootCAofwhichisChineseIntenetworkinformationcenter(CNNIC).GoogleandMozillabothpubliclydisclosedthissecurityincidentandpublishedblogposts(Google,Mozilla).ChineseIntenetworkinformationcenter.
Githubstatedinitsblogthat,theintentofthisattackis“toconvinceustoremoveaspecificclassofcontent.“Beforethisarticleispublished,GitHubisstillworkingtomitigatetheattack.
估计这事也不会多久,等事情平息之后再恢复更新。
再补一点,什么PS的微信公众号是点娘自己加的,跟我没关系,我也没有……嗯。
(我的小说《远山祈酱的无节操大冒险》将在官方微信平台上有更多新鲜内容哦,同时还有100%抽奖大礼送给大家!现在就开启微信,点击右上方“+”号“添加朋友”,搜索公众号“qdread”并关注,速度抓紧啦!)