in ,

Google: Chinese cyberattacks show us how much we need encryption

A few weeks ago, when China used its Great Cannon attack to inject HTML and JavaScript with the goal of flooding GitHub and Greatfire’s servers into web requests for Baidu, information control was taken to frightening new levels. This kind of state-level censorship and information control is worrying to say the least, but Google claims that it never would have happened if the web had embraced moves to encrypt its transport layers, and calls the attacks a sign that we need to start implementing more encryption. 

To protect users from malicious content, Safe Browsing’s infrastructure analyzes web pages with web browsers running in virtual machines. This allows us to determine if a page contains malicious content, such as Javascript meant to exploit user machines. While machine learning algorithms select which web pages to inspect, we analyze millions of web pages every day and achieve good coverage of the web in general. In the middle of March, several sources reported a large Distributed Denial-of-Service attack against the censorship monitoring organization GreatFire. Researchers have extensively analyzed this DoS attack and found it novel because it was conducted by a network operator that intercepted benign web content to inject malicious Javascript. In this particular case, Javascript and HTML resources hosted on baidu.com were replaced with Javascript that would repeatedly request resources from the attacked domains. While Safe Browsing does not observe traffic at the network level, it affords good visibility at the HTTP protocol level. As such our infrastructure picked up this attack, too. Using Safe Browsing data, we can provide a more complete timeline of the attack and shed light on what injections occurred when.

What do you think?

Avatar of Carl Durrek

Written by Carl Durrek

Carl is a gaming fanatic, forever stuck on Reddit and all-around lover of food.

Leave a Reply

Your email address will not be published. Required fields are marked *

GIPHY App Key not set. Please check settings

Apple might be trying to sabotage competing music apps

Russian hackers actually managed to read Obama’s emails