Github falls victim to possible Chinese cyber attack

Coding site hit by ongoing DDoS, experts suspect Chinese involvement

binary on a screen with words 'hacking attack'

Coding repository Github has been hit by a mammoth cyber attack, which is believed to be ongoing. 

The website, which is primarily used by developers and software engineers as a platform to store and distribute source code, has been experiencing large-scale Dedicated Denial of Service (or DDoS) attacks, which analysts believe are Chinese in origin.

Github has stated that it believes that "the intent of this attack is to convince us to remove a specific class of content". However, while it has not disclosed what it thinks might be behind the attack, experts have noted that the site is used by many Chinese coders to host tools which circumvent the country's notorious internet censorship.

The cyber attacks hitting the website have largely stemmed from visitors to Chinese Google equivalent Baidu.com being redirected to Github. The search engine has disavowed any connections to the attack, saying it will "get to the bottom of this".

The tactics used in this particular DDoS have been remarkably thorough. While well-known DDoS-ers Anonymous uses mob logic and sheer force of numbers to overwhelm sites, the attack on Github has used "a wide combination of attack vectors" including "sophisticated new techniques that use the web browsers of unsuspecting, uninvolved people".

One of the primary targets of the Github attack is anti-censorship organisation GreatFire, which hosts its firewall bypass tools on Github. The group has clashed with Chinese authorities before, calling repeatedly for security certificates issued by the Chinese Internet Network Information Centre to be revoked and classified as untrusted.

Hacking

This follows a spate of repeated cyberattacks on the likes of Outlook, Google, Microsoft and more. GreatFire says it has "concrete proof" that China was behind these attacks, citing a Google blog post highlighting the issue of unauthorised certificates.

These links have led some experts to theorise that the Chinese People Liberation Army is behind these hacks. While Github is too valuable a resource to the rapidly-expanding Chinese tech industry to be blocked entirely, it is being speculated that these outages are China's attempt to strong-arm Github's moderators into removing anti-censorship content belonging to GreatFire and others.

This attack bears some marked similarities to the Sony Pictures hack late last year, which was seemingly prompted by negative depictions of North Korean leader Kim Jong Un in The Interview. While the country's military stridently denied any involvement, there were suspicions in many camps that the hacks were allegedly sanctioned by the Korean Government.

Whether or not this is the case, some suggest that China saw the success of the Sony hacks and opted for a similar strategy. It's something the Chinese have been accused of before, and if the cyber attacks currently plaguing Github are Chinese in origin, it could be a sign that cyber terrorism is now seen as a viable method of intimidation.

At time of writing, Github is still online. However, the attack continues, and the cost of holding out against a cyber siege for five days (and counting) is likely to be taking its toll on the websites coffers. It's currently unknown whether the site will cave to the sustained pressure and block GreatFire and its ilk, or if that's even the aim of the attacks.

Is your business prepared for new EU cyber security regulations? This whitepaper offers advice, insight and guidance on what to do next. Read it today here

Featured Resources

How to scale your organisation in the cloud

How to overcome common scaling challenges and choose the right scalable cloud service

Download now

The people factor: A critical ingredient for intelligent communications

How to improve communication within your business

Download now

Future of video conferencing

Optimising video conferencing features to achieve business goals

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Recommended

AOL users are the target of a new phishing campaign
phishing

AOL users are the target of a new phishing campaign

1 Mar 2021
What is cloud-to-cloud backup?
cloud backup

What is cloud-to-cloud backup?

1 Mar 2021
Lazarus APT hacking group is targeting the defense industry
Security

Lazarus APT hacking group is targeting the defense industry

26 Feb 2021
Microsoft open sources CodeQL queries used in Solorigate inquiry
Security

Microsoft open sources CodeQL queries used in Solorigate inquiry

26 Feb 2021

Most Popular

How to connect one, two or more monitors to your laptop
Laptops

How to connect one, two or more monitors to your laptop

25 Feb 2021
How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

26 Feb 2021
Ransomware operators are exploiting VMware ESXi flaws
ransomware

Ransomware operators are exploiting VMware ESXi flaws

1 Mar 2021