Started By
Message

Someone in China just leaked some wild sensitive data stuff on espionage.

Posted on 2/19/24 at 12:40 pm
Posted by nycguy
Member since Jan 2024
34 posts
Posted on 2/19/24 at 12:40 pm
I came across this on Github yesterday and saw some discussion around it yesterday evening. Someone around 3 days ago just literally I guess rage dumped a bunch of Chinese espionage stuff in a public Github repo and oh boy theres some stuff in here. I put the Github repository code link at the end of the post, but its all Mandarin and its also quite a lot of stuff so I've put together some findings from some people who looked into it.
So disclaimer, while this isnt like 'Directly' the Chinese govt, it looks to be APT 41 which is like is a hacking organization with alleged ties to the Chinese Ministry of State Security (MSS).

Also this gets scary real fast, doesnt seem to be any direct USA hacking in here though.

quote:

Also funny thing is dude who leaked it appeared to be pissed about his pay (Just $277 / Month)


Some interesting tidbits before diving further.
quote:

If the leaks are to be believed, they claim to have penetrated government bodies for India, Thailand, S Korea, Vietnam, and NATO


quote:

thailands navy, rail....india's gov


quote:

TBs of data stolen from Pakistan, Kazakhstan, Kyrgyzstan, Malaysia, Mongolia, Nepal, Türkiye, India, Egypt, France, Cambodia, Rwanda, Nigeria, Hongkong, Indonesia, Vietnam, Myanmar, Philippines, Afghanistan


Some more Govt Victims


quote:

> screenshot of a list of bunch of UK agencies (purpose unknown), including
- Home Office
- British Treasury
- DFID
- UK Department for Business, Energy and Industrial Warfare
- UK Department of Education
- UK Department for Environment and Food+
- Department for Brexit
- british department for transport
- UK Ministry of Health and Social Care
- British Ministry of Justice
- UK National Crime Agency
- HMRC
- chathamhouse chathamhouse
- British Institute for International Strategic Studies IISS
- Center for Foreign Policy Studies
- Center for Defense and International Security Studies
- Rand Institute European Branch
- Haiding Group
- Human Rights Watch
- Amnesty International


quote:

2022-05-06
> which one did they want (from UK)? foreign affairs? the most important one they wanted
> yep, top priority
> okay, the team just told me there's a chance we can take control of the system
> team says they've got a 0day and for sure can take the system; will take about 2 weeks. can they pay in advance?
> https://infosec.exchange/@still/111954872879820044

*screenshot content*
> UK Foreign Affairs had already been taken by another contractor
> choose a different one
> ??


quote:

Re:
- Kyrgyzstan Diplomatic Oil Service
- National Security Council Oil Service
- Asan Central Bureau of Investigation for Foreign Affairs and Defense (It seems that they have it all!)


quote:

they had also thought about getting access to NATO but decided it was too difficult


quote:

A: client says NATO is not exactly possible
> B: what do they mean by "not exactly possible?"
> A: they had already tried NATO before
> A: also they're not exactly interested
> B: we've got stuff from their chairman
> B: stuff from Jens Stoltenberg
> A: well not everything you think is interesting will necessarily be the same for others
> B: what about making it cheaper? I'm running low on money
> A: it's not about how much it costs, but that it's not worth it


quote:

It seems a Vietnam Television station was compromised.
Keywords to be searched:
- intelligence
- china
- United states
- tranquility




quote:

Some of these software features includes obtaining the user's Twitter email and phone number, realtime monitoring, publishing tweets on their behalf, reading DMs.


The Twitter exploitation tool also has the capability to take over Twitter accounts despite 2FA, with the victim not being notified on the bypass.





quote:

This is the weirdest of them all - a WiFi-capable device that can inject into the targeted... Android devices via WiFi? The device is said to be portable, plug and play, supports 3G and 4G. After a successful injection, it can get device info, GPS, SMS, contacts, call log, files


quote:

The Chinese APT leak has call data records (CDR) from Kazakhstan. One of the telcos in Kazakhstan is Tele2, which includes ALTEL. Both are listed in the CDR log.

Basically means they got directly into Call Logs in Kazakhstan Tele Networks.








Heres an image of some of the Victims, it says UCF there wtf lol


quote:

The Email Analysis platform by by iSOON reveals an aspect of Chinese APT campaigns we’ve never seen before. We now know the MPS can recreate their victim’s inboxes using the .eml files, perform link analysis, and can pivot or add to the investigation with mass email data ingests.


Posted by lsuguy84
CO
Member since Feb 2009
19543 posts
Posted on 2/19/24 at 12:42 pm to
Posted by LegendInMyMind
Member since Apr 2019
53336 posts
Posted on 2/19/24 at 12:42 pm to
This is all fine and good, but the espionage war with china was lost when those two guys successfully stole the secret to Oreo's white cream filling. It has been all downhill since then.
Posted by nycguy
Member since Jan 2024
34 posts
Posted on 2/19/24 at 12:43 pm to
The Github Repo, but its all in Mandarin so you'd have to do your translation.

Github Repo
Posted by ReauxlTide222
St. Petersburg
Member since Nov 2010
83334 posts
Posted on 2/19/24 at 12:44 pm to
It’s ok

Our leaders have this under control
Posted by Green Chili Tiger
Lurking the Tin Foil Hat Board
Member since Jul 2009
47502 posts
Posted on 2/19/24 at 12:45 pm to
Posted by Scuttle But
Member since Nov 2023
1301 posts
Posted on 2/19/24 at 12:46 pm to
I don't get it
Posted by Commandeaux
Zachary
Member since Jul 2009
7254 posts
Posted on 2/19/24 at 12:47 pm to
Congrats on the new kid...or sorry your paw paw died.

I ain't reading all that shite.
Posted by UnitedFruitCompany
Bay Area
Member since Nov 2018
3348 posts
Posted on 2/19/24 at 12:47 pm to
quote:

Also this gets scary real fast, doesnt seem to be any direct USA hacking in here though.



Yeah well its pretty hard to hack someone when they are giving you all the info for free.
Posted by jdd48
Baton Rouge
Member since Jan 2012
22031 posts
Posted on 2/19/24 at 12:49 pm to
Hope whoever that leaked got out of the country. Else they may be in for a horrible time.
This post was edited on 2/19/24 at 1:00 pm
Posted by poochie
Houma, la
Member since Apr 2007
6156 posts
Posted on 2/19/24 at 12:52 pm to
Please explain this to me like I’m 5. And retarded.
Posted by WG_Dawg
Hoover
Member since Jun 2004
86422 posts
Posted on 2/19/24 at 12:55 pm to
quote:

Myanmar,


Isn't that the discount pharmacy?
Posted by Darth_Vader
A galaxy far, far away
Member since Dec 2011
64306 posts
Posted on 2/19/24 at 1:00 pm to
quote:

Also this gets scary real fast, doesnt seem to be any direct USA hacking in here though.


No need to hack the USA when they’ve already got our president on the payroll.
Posted by nicholastiger
Baton Rouge
Member since Jan 2004
42094 posts
Posted on 2/19/24 at 1:04 pm to
Chicken about to disappear from the face of the earth due to this post
Ban him!

Congrats, you just compromised Tigerdroppings
This post was edited on 2/19/24 at 1:06 pm
Posted by bulletprooftiger
Member since Aug 2006
2016 posts
Posted on 2/19/24 at 1:14 pm to
So is there pee pee in my coke or not?
Posted by RealDawg
Dawgville
Member since Nov 2012
9347 posts
Posted on 2/19/24 at 1:17 pm to
Over 2 million Chinese in America…like we can even pretend.
Posted by saint tiger225
San Diego
Member since Jan 2011
35286 posts
Posted on 2/19/24 at 1:19 pm to
Maybe you can get with a publishing company and get a book deal for the OP you just wrote.
Posted by BobABooey
Parts Unknown
Member since Oct 2004
14220 posts
Posted on 2/19/24 at 1:58 pm to
Almost a sure thing the NSA/CIA already knew about these 0days but prioritized holding them in their arsenal to attack foreign nations one day, if needed, instead of notifying tech companies about the vulnerabilities.

Taxpayers fund these folks to find or buy these exploits. But then the government guards them in secrecy instead of using the knowledge to safeguard the financial systems, power infrastructure, water treatment facilities, etc relied upon by those same taxpayers.

I think.
Posted by YNWA
Member since Nov 2015
6677 posts
Posted on 2/19/24 at 2:14 pm to
Eh, that's child's play compared to what Russia has done to the most powerful nation in the world. Half the GOP is being financed by Russian agency's. Plus I won't even get into Trump because he's a well known Putin asset.

Posted by MyRockstarComplex
The airport
Member since Nov 2009
3253 posts
Posted on 2/19/24 at 2:47 pm to
quote:

So is there pee pee in my coke or not?


This would have been an excellent troll had the OP buried something about them hacking the Atlanta water supply that feeds the Coca Cola bottling factory downtown and adjusted the sewage water reclamation plant parameters.

Pee pee in coke indeed.
first pageprev pagePage 1 of 3Next pagelast page

Back to top
logoFollow TigerDroppings for LSU Football News
Follow us on Twitter, Facebook and Instagram to get the latest updates on LSU Football and Recruiting.

FacebookTwitterInstagram