Almost a year after students ended pro-democracy street protests in Hong Kong, they face an online battle against what Western security experts say are China-sponsored hackers using techniques rarely seen elsewhere.
Hackers have expanded their attacks to parking malware on popular file-sharing services including Dropbox and Google Drive to trap victims into downloading infected files and compromising sensitive information. They also use more sophisticated tactics, honing in on specific targets through so-called 'white lists' that only infect certain visitors to compromised websites.
Security experts say such techniques are only used by sophisticated hackers from China and Russia, usually for surveillance and information extraction.
The level of hacking is a sign, they say, of how important China views Hong Kong, where 79 days of protests late last year brought parts of the territory, a major regional financial hub, to a standstill. The scale of the protests raised concerns in Beijing about political unrest on China's periphery.
"We're the most co-ordinated opposition group on Chinese soil, (and) have a reasonable assumption that Beijing is behind the hacking," said Lam Cheuk-ting, chief executive of Hong Kong's Democratic Party, which says it has been a victim of cyber attacks on its website and some members' email accounts.
U.S.-based Internet security company FireEye said the attacks via Dropbox were aimed at "precisely those whose networks Beijing would seek to monitor", and could provide China with advance warning of protests and information on pro-democracy leaders. The company said half its customers in Hong Kong and Taiwan were attacked by government and professional hackers in the first half of this year - two and a half times the global average.
China's Ministry of Foreign Affairs, Public Security Bureau and the Liaison Office of the Central People's Government in the Hong Kong Special Administrative Region did not respond to requests for comment. The Defence Ministry said the issue was not part of its remit. China has previously denied accusations of hacking, calling them groundless, and saying it is a victim.
The Hong Kong police said its Cyber Security and Technology Crime Bureau works with other law enforcement agencies to combat cross-border crime, but did not respond to questions on how much information it shares with mainland Chinese authorities, the origin of the Hong Kong cyber attacks, or whether these might be a source of instability or concern.
Police data show a drop in reported "unauthorised access", which includes Internet or email account abuse and hacking, over the past two years. Many of the victims Reuters spoke to said they hadn't bothered to report being hacked.
SWITCHING TACTICS
Like other groups taking on the might of Beijing - from Uighurs and exiled Tibetans to some Taiwanese - Hong Kong activists, academics and journalists have become more savvy and adopted tactics that, in turn, force hackers to get savvier still.
When Tibetan exile groups stopped clicking on files attached to emails, to avoid falling victim to a common form of 'spear phishing' attack, hackers switched their malware to Google Drive, hoping victims would think these files were safer, said Citizen Lab, a Canada-based research organisation which works with Tibetans and other NGOs.
Hackers also recently used Dropbox to lure Chinese language journalists in Hong Kong into downloading infected files. FireEye, which discovered the attack, said it was the first time it had seen this approach.
"We don't have any arrogance to think we can beat them," said Mark Simon, senior executive at the parent company of Hong Kong's Apple Daily, a media group on the front line of the attacks.
STRANGE WORDS
Trying to stay ahead of the hackers, activists and others use multiple mobile phones with different SIM chips, encrypted messaging apps, apps that automatically delete tweets, and code words to set up meetings. If someone thinks they may be arrested, they remove themselves from group chats.
Some things are kept offline.
"If we want to talk, we have some signal," said Derek Lam, a member of student group Scholarism that helped organise the protests. "It's a few words ... if I say some words that are really strange it means we have to talk somewhere privately."
Law professor and protest organizer Benny Tai stores personal data, such as names, email addresses and mobile numbers, on an external hard drive that he says he only accesses on a computer without an Internet connection.
The pro-democracy Apple Daily, which says it is hacked on an almost weekly basis, has tightened its email security software, and has its lawyers use couriers rather than email. FireEye last year connected denial of service (DDoS) attacks against Apple Daily with more professional cyber spying attacks, saying there may be a "common quartermaster". It said China's government would be the entity most interested in these "political objectives".
SOPHISTICATED HACKS
Steven Adair, co-founder of U.S.-based security firm Volexity, said that code hidden on pro-democracy websites last year, including those of the Democratic Party and the Alliance for True Democracy, suggested a group he said "we strongly suspect to be Chinese... who is very well resourced."
He said such tactics were more usually seen employed by Russian hackers, aimed at very specific targets and designed to be as unobtrusive as possible. "It's a real evolution in targeting," he said.
In the run-up to Hong Kong district council elections earlier this month, hackers used more basic techniques, breaking into at least 20 Gmail accounts at the Democratic Party, according to party officials and Google logs seen by Reuters.
Between April and June, many hacked accounts were forwarding emails to [email protected]. An examination of the hackers' IP addresses by the party's IT experts found some appeared to originate in China, party officials said.
Reuters
Tue Dec 01 2015
A map of China is seen through a magnifying glass on a computer screen showing binary digits in Singapore. REUTERS/Edgar Su/Files
Ringgit ditutup tinggi sedikit berbanding dolar AS
Pada 6 petang, ringgit naik kepada 4.7745/7775 berbanding dolar AS daripada 4.7765/7780 ketika ditutup pada Rabu.
Inspirasi bermakna daripada Forum Umrah & Ziarah 2024
Usaha meningkatkan kapasiti Mekah dan Madinah bagi membolehkan lebih ramai umat Islam mengerjakan umrah kini menjadi fokus utama kerajaan Arab Saudi.
Forum Umrah & Ziarah 2024 yang diadakan di Madinah telah membincangkan banyak hal berkaitan perkhidmatan umrah dan ziarah termasuklah pengadaptasian teknologi terkini, pengurusan yang lebih cekap serta pengurusan kewangan yang lebih berdaya saing.
Ikuti laporan hari terakhir forum berkenaan bersama Hilal Azmi.
#ForumUmrahZiarah2024
#AWANI745
Forum Umrah & Ziarah 2024 yang diadakan di Madinah telah membincangkan banyak hal berkaitan perkhidmatan umrah dan ziarah termasuklah pengadaptasian teknologi terkini, pengurusan yang lebih cekap serta pengurusan kewangan yang lebih berdaya saing.
Ikuti laporan hari terakhir forum berkenaan bersama Hilal Azmi.
#ForumUmrahZiarah2024
#AWANI745
Penjawat awam perlu amal kecepatan dan kepesatan dalam pelaksanaan tugas - PM Anwar
Penjawat awam digesa untuk sentiasa mengamalkan kecepatan dan kepesatan dalam pelaksanaan tugas supaya dasar-dasar kerajaan dapat dilaksanakan dengan pantas.
Kerajaan kekal komited laksana dwirangkaian 5G, DNB penuhi syarat terdahulu - Gobind
Kerajaan semakin hampir untuk melaksanakan dwirangkaian 5G selepas pengumuman Ahli Lembaga Pengarah baharu Digital Nasional Bhd (DNB).
Kos SUKMA Sarawak dianggar hampir RM300 juta
Kos penganjuran Sukan Malaysia (SUKMA) Sarawak tahun ini dianggarkan hampir RM300 juta, antaranya meliputi kerja-kerja menaik taraf venue sukan serta perbelanjaan keperluan logistik.
Break The Siege: Misi flotila ke Gaza belayar esok
Syaff Shukri membawakan perkembangan terkini misi pelayaran Break The Siege: Freedom Flotilla to Gaza yang dijadualkan esok.
#AWANI745
#AWANI745
Peruntukan Pembangkang: Terpulang untuk Muhyiddin kata apa - TPM Fadillah
Terpulang kepada pihak pembangkang untuk mempersoalkan keikhlasan Kerajaan berhubung draf perjanjian persefahaman (MoU) peruntukan pembangkang, kata Timbalan Perdana Menteri Datuk Seri Fadillah Yusof.
Ketua Whip Kerajaan Perpaduan itu berkata, beliau enggan melayani sindiran bekas Perdana Menteri yang juga Pengerusi Perikatan Nasional, Tan Sri Muhyiddin Yassin tentang isu tersebut.
#AWANI745
Ketua Whip Kerajaan Perpaduan itu berkata, beliau enggan melayani sindiran bekas Perdana Menteri yang juga Pengerusi Perikatan Nasional, Tan Sri Muhyiddin Yassin tentang isu tersebut.
#AWANI745
Pelantikan ahli lembaga baharu DNB kemajuan penting dalam penyusunan semula rangkaian 5G - Gobind
Gobind berkata perkembangan terkini itu merupakan satu langkah penting ke arah memenuhi komitmen kerajaan terhadap pelaksanaan dasar 5G dwi rangkaian.
SSPA terbaik pernah diperkenalkan kerajaan - PM Anwar
Kerajaan memberi jaminan Sistem Saraan Perkhidmatan Awam (SSPA) yang bakal diumumkan dalam tempoh terdekat, sebagai antara yang terbaik pernah diperkenalkan, kata Perdana Menteri Datuk Seri Anwar Ibrahim.
Namun, katanya lagi, langkah itu bakal membabitkan implikasi kewangan yang tertinggi berbanding yang pernah dilakukan sebelum ini.
#AWANI745
Namun, katanya lagi, langkah itu bakal membabitkan implikasi kewangan yang tertinggi berbanding yang pernah dilakukan sebelum ini.
#AWANI745
KESUMA tawar lebih 3,000 pekerjaan industri hijau dengan gaji RM3,000 hingga RM16,000
Kementerian Sumber Manusia menawarkan lebih 3,000 peluang pekerjaan dalam industri hijau menerusi Karnival Kemahiran dan Kerjaya Hijau KESUMA 2024.
Malaysia muncul destinasi utama pengembangan perniagaan di ASEAN - Kajian UOB
Malaysia telah muncul sebagai negara paling penting dalam ASEAN untuk diceburi perniagaan, seperti yang ditunjukkan oleh Kajian Tinjauan Perniagaan UOB 2024 (PKS & Perusahaan Besar).
Industri hiburan penghubung antara Malaysia dan China - Shila Amzah
Shila Amzah percaya bahawa industri hiburan mempunyai pengaruh yang besar dan memainkan peranan penting dalam memupuk hubungan diplomatik Malaysia-China.
TPM mahu lebih ramai anak muda Sabah diberi pendidikan TVET
Beliau ditawarkan oleh China untuk menghantar 2,000 pelajar Malaysia bagi mengikuti program TVET dengan biasiswa penuh ke negara itu.
Perang dicetuskan blok Barat untuk terus kekal berkuasa - Penganalisis
Kemunculan kuasa-kuasa besar baharu seperti China yang mempunyai kekuatan ekonomi sangat tidak dijangka oleh Barat.
Harga minyak diunjur naik akibat konflik Iran-Israel
Harga minyak mentah Brent diunjur melonjak sehingga AS$95 setong berbanding sekitar AS$90 setong ketika ini berdasarkan jangkaan senario terburuk daripada konflik Iran-Israel.
Piala Uber: Tiada istilah mengalah buat Mei Xing
Pemain itu bagaimanapun mengakui sedikit terbeban dengan ketiadaan pasangan utama negara Pearly Tan-M Thinaah dalam kejohanan berkenaan.
MPOC jangka MSM didagangkan pada harga RM4,000-RM4,200 satu tan pada April
MPOC berkata, dinamik pasaran minyak sawit pada Mac dipengaruhi oleh beberapa faktor, termasuk peningkatan dalam pengeluaran minyak sawit.
Berita antarabangsa pilihan sepanjang hari ini
Antara pelbagai berita luar negara yang disiarkan di Astro AWANI, berikut adalah yang paling menjadi tumpuan sepanjang hari ini.
KDNK China meningkat 5.3 peratus pada suku pertama 2024
Ekonomi China berkembang lebih kukuh daripada jangkaan pada awal tahun ini, sebahagian besarnya disebabkan oleh aktiviti kilang yang teguh.
Ketibaan pelancong China ke Malaysia dijangka melebihi paras pra-COVID hujung tahun ini - CPAFFC
Yang berkata, kerjasama sudah terjalin buat sekian lama dan China melihat Malaysia sebagai sebuah negara dan rakan dagang yang penting.