China release 丨 Northwestern Polytechnical University's sources of network attacks are the US National Security Agency

China Net, September 5th. According to the National Computer Virus Emergency Treatment Center, on June 22, 2022, Northwestern Polytechnical University issued the "Public Statement" stating that the school was attacked by overseas network attacks. The Beilin Branch of the Xi'an Public Security Bureau of Shaanxi Province immediately released the Police Report, confirming that a number of samples from overseas were found in the information network of Northwestern Polytechnical University. The Xi'an police had officially filed a case for investigation.

The National Computer Virus Emergency Treatment Center and 360 Company jointly formed a technical team to extract a variety of Trojan samples from multiple information systems and Internet terminals from Northwestern Polytechnical University. The support of partners in South Asia has comprehensively restored the overall summary, technical characteristics, attack weapons, attack paths, and attack source of relevant attack events. The initially determined that related attack activities originated from the "specific invasion action office" of the National Security Agency.

The survey found that in recent years, the National Security Agency (hereinafter referred to as the "US NSA") subordinates (hereinafter referred to as "TAO") under the "Specific Invasion Action Office" (hereinafter referred to as "TAO") has implemented tens of thousands Tens of thousands of network devices (network server, Internet terminal, network switch, telephone switch, router, firewall, etc.), stole more than 140GB of high value data.

TAO uses its network attack weapon platform, "zero -day loopholes" and its controlled network devices to continue to expand network attacks and scope. After technical analysis and traceability, the technical team has clarified the network attack infrastructure, special weapons and equipment, and technical tactics used in the TAO attack activities, restores the attack process and stealing documents, and masters the US NSA and its subordinates of China information to China information. Related evidence of the network attack and data theft on the Internet involves 13 people who directly launch cyber attacks in China in the United States, and NSA signed more than 60 contracts signed with US telecommunications operators by covering the company to build a network attack environment. Electronics, electronics, electronics There are more than 170 files.

- END -