Arab Today, arab today microsoft failed to warn victims of chinese email hack
Last Updated : GMT 04:03:02
Arab Today, arab today
Arab Today, arab today

Microsoft failed to warn victims of Chinese e-mail hack

Arab Today, arab today

Arab Today, arab today Microsoft failed to warn victims of Chinese e-mail hack

Uighur leader Rebiya Kadeer speaks in front of a East Turkestan flag at an Uighur meeting in Tokyo
San Francisco - Arab Today

Microsoft Corp. experts concluded several years ago that Chinese authorities had hacked into more than a thousand Hotmail e-mail accounts, targeting international leaders of China’s Tibetan and Uighur minorities in particular — but it decided not to tell the victims, allowing the hackers to continue their campaign, according to former employees of the company.
On Wednesday, after a series of requests for comment from Reuters, Microsoft said it would change its policy and in future tell its e-mail customers when it suspects there has been a government hacking attempt.
The company also confirmed for the first time that it had not called, e-mailed or otherwise told the Hotmail users that their electronic correspondence had been collected. The company declined to say what role the exposure of the Hotmail campaign played in its decision to make the policy shift.
The first public signal of the attacks came in May 2011, though no direct link was immediately made with the Chinese authorities. That’s when security firm Trend Micro Inc. announced it had found an e-mail sent to someone in Taiwan that contained a miniature computer program.
The program took advantage of a previously undetected flaw in Microsoft’s own web pages to direct Hotmail and other free Microsoft e-mail services to secretly forward copies of all of a recipient’s incoming mail to an account controlled by the attacker.
Trend Micro found more than a thousand victims, and Microsoft patched the vulnerability before the security company announced its findings publicly.
Microsoft also launched its own investigation that year, finding that some interception had begun in July 2009 and had compromised the e-mails of top Uighur and Tibetan leaders in multiple countries, as well as Japanese and African diplomats, human rights lawyers and others in sensitive positions inside China, two former Microsoft employees said. They spoke separately and on the condition that they not be identified.
Some of the attacks had come from a Chinese network known as AS4808, which has been associated with major spying campaigns, including a 2011 attack on EMC Corp’s security division RSA that US intelligence officials publicly attributed to China.
Microsoft officials did not dispute that most of the attacks came from China, but said some came from elsewhere. They did not give further detail.
“We weighed several factors in responding to this incident, including the fact that neither Microsoft nor the US government were able to identify the source of the attacks, which did not come from any single country,” the company said. “We also considered the potential impact on any subsequent investigation and ongoing measures we were taking to prevent potential future attacks.”
In announcing the new policy, Microsoft said: “As the threat landscape has evolved our approach has too, and we’ll now go beyond notification and guidance to specify if we reasonably believe the attacker is `state-sponsored.’“
The Chinese government “is a resolute defender of cyber security and strongly opposes any forms of cyberattacks,” Chinese Foreign Ministry spokesman Lu Kang said, adding that it punishes any offenders in accordance with the law.
“I must say that if the relevant party has some real and conclusive evidence, then it can carry out mutually beneficial cooperation with China in a constructive way in accordance with the existing channels,” Lu said at a daily news briefing.
“But if there’s the frequent spreading of unfounded rumors, it will, in fact, be of no benefit to solving the problem, enhancing mutual trust and promoting cybersecurity.”
The Cyberspace Administration of China did not respond to a request for comment.
After a vigorous internal debate in 2011 that reached Microsoft’s top security official, Scott Charney, and its then-general counsel and now president, Brad Smith, the company decided not to alert the users clearly that anything was amiss, the former employees said. Instead, it simply forced users to pick new passwords without disclosing the reason.
The employees said it was likely the hackers by then had footholds in some of the victims’ machines and therefore saw those new passwords being entered.
One of the reasons Microsoft executives gave internally in 2011 for not issuing explicit warnings was their fear of angering the Chinese government, two people familiar with the discussions said.
Microsoft’s statement did not address the specific positions advocated by Smith and Charney. A person familiar with the executives’ thinking said that fear of Chinese reprisals did play a role given the company’s concerns about the potential impact on customers.
Microsoft said the company had believed the password resets would be the fastest way to restore security to the accounts.
“Our primary concern was ensuring that our customers quickly took practical steps to secure their accounts, including by forcing a password reset,” the statement said.
It is unclear what happened to the e-mail users and their correspondents as a result of Microsoft’s failure to alert them to the suspected government hacking. But some of those affected said they were now deeply worried about the risks, especially for those inside China.
“The Internet service providers and the e-mail providers have an ethical and a moral responsibility to let the users know that they are being hacked,” said Seyit Tumturk, vice president of the World Uyghur Congress, whose account was among those compromised. “We are talking in people’s lives here.”
Unrest in Xinjiang, the Chinese region bordering Kazakhstan that is home to many Uighurs, has cost hundreds of lives in recent years. Beijing blames Islamist militants, while human rights groups say harsh controls on the religion and culture of the Uighurs have led to the violence.
Until Wednesday, Microsoft had rejected the idea of explicit warnings about state-sponsored hacking, such as those Google Inc. began in 2012, the former employees said. In the 2011 case, the company also opted not to send a more generic warning about hacking. Yahoo Inc. and Facebook Inc. have been issuing such warnings for several years, former employees of those companies told Reuters, including when the principal suspect was a government.
Both companies, along with Twitter Inc, announced in recent months that they would follow Google’s lead and explicitly notify users about suspected state-sponsored hacking.
Google said on average it now issues tens of thousands of warnings about targeting every few months, and that recipients often move to improve their security with two-factor authentication and other steps.
Reuters interviewed five of the Hotmail hacking victims that were identified as part of Microsoft’s investigation: two Uighur leaders, a senior Tibetan figure and two people in the media dealing with matters of interest to Chinese officials.
Most recalled the password resets, but none took the procedure as an indication that anyone had read his or her e-mail, let alone that it may have been accessed by the Chinese government.
“I thought it was normal, everybody gets it,” said one of the men, a Uighur émigré now living in Europe who asked not to be named because he left family behind in China.
Another victim identified by Microsoft’s internal team was Tseten Norbu of Nepal, a former president of the Tibetan Youth Congress, one of the more outspoken members of a community that has frequently clashed with Chinese officials. Another Microsoft-identified victim was Tumturk, the World Uyghur Congress vice president who lives in Turkey.
Microsoft investigators also saw that e-mails had been forwarded from the account of Peter Hickman, a former American diplomatic officer who arranged high-profile speeches by international figures at the National Press Club in Washington for many years.
Hickman said he used his Hotmail account on Press Club computers to correspond with people, including the staff for the Tibetan government in exile, whose leader Lobsang Sangay spoke at the club in 2011; Tumturk’s World Uyghur Congress, whose then-president Rebiya Kadeer spoke in 2009; and the president of Taiwan, who spoke by video link-up in 2007.
Hickman said he didn’t recall the password reset. He said he never suspected anything was wrong with the account, which he continues to use.
Source: Arab News


Name *

E-mail *

Comment Title*

Comment *

: Characters Left

Mandatory *

Terms of use

Publishing Terms: Not to offend the author, or to persons or sanctities or attacking religions or divine self. And stay away from sectarian and racial incitement and insults.

I agree with the Terms of Use

Security Code*

Arab Today, arab today microsoft failed to warn victims of chinese email hack Arab Today, arab today microsoft failed to warn victims of chinese email hack


Arab Today, arab today
Arab Today, arab today Hats, scarves add beauty to women

GMT 19:10 2017 Friday ,17 February

Hats, scarves add beauty to women
Arab Today, arab today Tourist guide reveals methods of tourist attractions

GMT 17:46 2017 Saturday ,18 February

Tourist guide reveals methods of tourist attractions
Arab Today, arab today To release new antiques collection

GMT 20:33 2017 Friday ,17 February

To release new antiques collection
Arab Today, arab today Leader Omar Abdel Rahman dies in US prison

GMT 19:00 2017 Sunday ,19 February

Leader Omar Abdel Rahman dies in US prison
Arab Today, arab today Murder of 2 reporters in Dominican Republic

GMT 22:45 2017 Thursday ,16 February

Murder of 2 reporters in Dominican Republic

GMT 03:00 2017 Saturday ,18 February

Ferrari World Abu Dhabi's new thrill ride to open March

GMT 02:57 2017 Saturday ,18 February

Around the world in eight hours

GMT 02:49 2017 Saturday ,18 February

Revealed: Why UAE is hooked on takeaway meals

GMT 22:57 2017 Friday ,17 February

Shutting down spyware

GMT 04:05 2017 Friday ,17 February

This is why UAE parents worry about the internet

GMT 04:02 2017 Friday ,17 February

80 falcons photographed travelling in Economy

GMT 23:16 2017 Thursday ,16 February

Going it alone in Shetland
View News in Arabic - Media: انترنت
Arab Today, arab today
Arab Today, arab today
Arab Today, arab today Kidogo provides childcare for underserved

GMT 20:24 2017 Wednesday ,15 February

Kidogo provides childcare for underserved
Arab Today, arab today Tragic fluctuations of Bakhtiari's life revealed

GMT 06:50 2017 Wednesday ,15 February

Tragic fluctuations of Bakhtiari's life revealed
Arab Today, arab today London to tax old cars

GMT 14:06 2017 Friday ,17 February

London to tax old cars
Arab Today, arab today Pluto's unruly moons

GMT 06:31 2015 Thursday ,04 June

Pluto's unruly moons
Arab Today, arab today Competes Sweden and Germans by S90

GMT 22:36 2017 Thursday ,16 February

Competes Sweden and Germans by S90
Arab Today, arab today Porsche reveals new 2018 Panamera

GMT 17:31 2017 Wednesday ,15 February

Porsche reveals new 2018 Panamera
Arab Today, arab today Actress Nadeen Al Rassi views art as her entity

GMT 07:30 2017 Saturday ,18 February

Actress Nadeen Al Rassi views art as her entity
Arab Today, arab today Teach monkeys to recognize themselves in mirror

GMT 20:41 2017 Wednesday ,15 February

Teach monkeys to recognize themselves in mirror

GMT 07:05 2017 Friday ,17 February

Singer Diana Karzon will issue a new album soon

GMT 06:40 2017 Friday ,10 February

MP calls for removing text from Islamic story

GMT 13:16 2017 Tuesday ,14 February

First fashion model with Down syndrome

GMT 10:26 2017 Tuesday ,14 February

Emergency UN meeting in Harare

GMT 14:04 2017 Tuesday ,14 February

"Lagom" new Swedish concept in interior design

GMT 12:07 2017 Thursday ,16 February

Bite-mimicking malaria vaccine

GMT 09:03 2017 Thursday ,16 February

Tour guide praises women’s beaches

GMT 13:12 2015 Saturday ,09 May

Sheikh Sultan opens Sharjah Centre

GMT 21:42 2017 Sunday ,12 February

Rania al-Ghazali designs candles of bubbles
Arab Today, arab today
Arab Today, arab today
 Arab Today Facebook,arab today facebook  Arab Today Twitter,arab today twitter Arab Today Rss,arab today rss  Arab Today Youtube,arab today youtube  Arab Today Youtube,arab today youtube
arabstoday arabstoday arabstoday arabstoday
arabstoday arabstoday arabstoday
بناية النخيل - رأس النبع _ خلف السفارة الفرنسية _بيروت - لبنان
arabstoday, Arabstoday, Arabstoday