Northwestern Polytechnical University was attacked by the Internet, the source is the US National Security Agency

Today (5th), the National Computer Virus Emergency Treatment Center and 360 Company released a survey report on Northwestern Polytechnical University suffering from overseas network attacks. The investigation found that the "specific invasion action office" under the National Security Agency for many years has been against my country for many years. The network target implemented tens of thousands of malicious network attacks, controlled related network devices, and suspected that high -value data was stolen.

The Western Industry Information System was attacked by the Internet, and the source is the US National Security Agency

In April of this year, Xi'an Public Security Organs received an alarm of online attacks, and the information system of Northwestern Polytechnical University found traces of network attacks.

Song Qiang, deputy director and director of the Information Center of the Informatization Construction and Management of Northwest China University of Technology: Recently, our school has discovered the Trojan horse procedure and attempts to obtain permissions illegally, which has caused major hidden risk hazards to our school's normal work and order of life.

Xi'an Public Security Organs attach great importance to this, and immediately organized police forces and network security technology experts to set up a joint task force to investigate the case. The National Computer Virus Emergency Treatment Center and 360 Company jointly formed a technical team to participate in the technical analysis of the case throughout the process. The technical team has extracted a number of Trojan samples from multiple information systems and Internet terminals from Northwestern University of Technology, comprehensively uses domestic data resources and analysis methods, and has received the support of partners in Europe and South Asia. The overall summary, technical characteristics, attack weapons, attack paths, and attack source of related attacks were preliminarily determined that related attack activities originated from the "specific invasion action office" under the National Security Agency.

This survey also found that in recent years, the "Specific Action Office" under the National Security Agency under the National Security Agency has implemented tens of thousands of malicious network attacks on China's domestic network targets, and controlled tens of thousands of network devices, including:: Network server, Internet terminal, network switch, telephone switch, router, firewall, etc., stealing more than 140GB of high value data.

After complex technical analysis and traceability, the joint technology team restored the process of the Northwest Polytechnical University and the stealing documents. It mastered the "specific invasion action office" under the National Security Agency to implement network attacks and data on the China Information Network. Related evidence of secret stealing involves 13 people who directly launch cyber attacks in China in the United States, and the US National Security Agency signed more than 60 contracts with US telecommunications operators by covering the company to build a network attack environment. share.

At present, the joint task force has reported the results of the relevant survey to the relevant national departments.

Regarding the progress of this incident, the main station will continue to pay attention.

Source of this article: CCTV News WeChat public account (ID: cctvnewscenter)

- END -