Citing recent events between the United States and the People's Republic of China (PRC), malicious hackers have escalated web page defacements over the Internet. This communication is to advise network administrators of the potential for increased hacker activity directed at U.S. . . .
Citing recent events between the United States and the People's Republic of China (PRC), malicious hackers have escalated web page defacements over the Internet. This communication is to advise network administrators of the potential for increased hacker activity directed at U.S. systems during the period of April 30, 2001 to May 7, 2001. Chinese hackers have publicly discussed increasing their activity during this period, which coincides with dates of historic significance in the PRC: May 1 is May Day; May 4 is Youth Day; and, May 7 is the anniversary of the accidental bombing of the Chinese Embassy in Belgrade.

To date, hackers already have unlawfully defaced a number of U.S. web sites, replacing existing content with pro-Chinese or anti-U.S. rhetoric. In addition, the NIPC previously reported on an Internet worm named "Lion" that is infecting computers and installing distributed denial of service (DDOS) tools on various systems. Analysis of the Lion worm's source code reveals that, when illegally exploited, it sends password files from the victim site to an email address located in China. For more information on the Lion DDOS tool, refer to NIPC Advisory 01-005.

The link for this article located at NIPC is no longer available.