Hackers deface federal sites

NIPC advisory

An alert from the National Infrastructure Protection Center warned systems administrators to be on the lookout for Chinese hackers defacing Web sites starting April 30, but several federal Web sites were hit over the weekend in advance of the expected May 1 attacks.

On April 28 and 29, more than six federal sites — both civilian and Defense — were defaced by hackers claiming to be from China, according to Attrition.org, a group that tracks Web site defacements. The sites include ones belonging to the Labor Department, the Minerals Management Service and the Washington, D.C., Naval Computer and Telecommunications Center. Several sites were still down April 30.

The NIPC advisory warned that because of recent tensions between the United States and the People's Republic of China, "malicious hackers have escalated Web page defacements over the Internet."

In chat rooms and other Internet communications, the NIPC said Chinese hackers have discussed attacking U.S. Web sites on dates that hold historic significance within China, including May Day on May 1; Youth Day on May 4; and the anniversary of the accidental bombing of the Chinese Embassy in Belgrade, Yugoslavia, May 7.

The defacements included the group called redcrack replacing an agency's home page with the comment, "Strongly protest against the hegemonicaction of usa on encroaching upon China's territorial integrity and sovereignty!" And the China Tianyu group is replacing home pages with pictures and a Chinese news story on Wang Wei, the pilot that died in the collision with a U.S. Navy spy plane April 1.

The FBI, including analysts at the NIPC, is investigating the defacements, officials said.

Featured

  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.