The outbreak of ransomware WannaCry (Eternal Blue) around the world is probably the most influential public security event these days. Since last Friday night, news of the outbreak of ransomware has spread among students from one of the Friends of chivalrous Island. At that time, the virus infection was mostly within the range of campus network. As the graduation season was approaching, many laboratories and students’ graduation designs and papers were severely affected. Over the past weekend, many friends of Uncle Dao were pulled back to the company or unit to work overtime and patch them to prevent large-scale infection caused by the “startup tide” on Monday workdays. In spite of this, today, in the news report, we still saw the news that many domestic universities, gas stations, railway stations, self-service terminals, hospitals, government-run terminals and so on were infected by this virus. Event I believe you have read many articles about the outbreak principle of the virus these days. In short, this worm ransomware attacks users by targeting a vulnerability in Windows, and implements high-intensity encryption of documents and pictures in the computer, and ask the user for the ransom paid in bitcoin. Otherwise, after seven days, the data cannot be recovered even if the ransom is paid. The encryption method is very complex, and each computer has different encryption serial numbers. With the current technical means, decryption is almost “helpless”. In today’s global network interconnection, the victims are certainly not limited to China. According to statistics from the 360 Threat Intelligence Center, after the outbreak on the 12th, more than 100000 organizations and institutions in nearly 100 countries around the world were captured, including 1600 American organizations and 11200 Russian organizations, more than 29000 IP addresses are infected in China. In Spain, the network systems of many companies including telecom giant Telefonica and power company Iberdrola, energy supplier Gas Natural were paralyzed; Portugal Telecom, American transportation giant FedEx, a local government in Sweden, russia’s second largest mobile telecom carrier Megafon have been exposed to attacks. According to Europol, the attack has affected 150 countries and regions. As the virus version is updated and iterated, the specific number may increase. Then, the question arises: Who did this?! Black Hand There is no answer. In the words of Zheng Wenbin, the head of 360 core security team, the traceability of ransomware has always been a difficult problem. The FBI once offered a reward of 3 million dollars to find the author of the ransomware, but there was no result. At present, there is no country in the world where the author of the ransomware comes from. However, from the perspective of blackmail, ransomware prompts in 15 languages including Chinese will appear after the computer is infected with the virus, and the whole payment will be carried out in such a very difficult way as Bitcoin and anonymous network, it is likely to be the organizational behavior under the Black industry chain. Ransomware is a new virus model that began to appear in 2013. Since 2016, the virus has entered the outbreak period. Up to now, more than 100 ransomware have benefited from this behavior. For example, last year, a variant of the CryptoWall virus family received 2.3 billion ransom. In recent years, different types of ransomware have also appeared in Apple computers, Android and iPhone phones. Although the underhand cannot be found at present, the tools it uses clearly point to an organization-NSA(National Security Agency), the US National Security Agency. This organization, also known as State secrets bureau, is affiliated to the U.S. Department of Defense and is the largest intelligence department among U.S. government agencies, specializing in collecting and analyzing foreign and domestic communication data. The eternal blue used by hackers is the network weapon developed by NSA against Microsoft MS17-010 vulnerabilities. Here’s the thing: the NSA itself has a large number of well-developed cyber weapons in its hands, but in June, 2013, more than a dozen weapons such as “Eternal Blue” were stolen by the hacker organization “Shadow Broker” (ShadowBreakers). In March this year, Microsoft released patches for this vulnerability, but first, some users did not have the habit of patching in time, second, many users around the world are still using earlier versions such as WindowsXP, which have stopped updating services, and cannot obtain patches, thus causing widespread spread around the world. With the feature of “worm” constantly scanning, it is easy to repeatedly infect the Internet and the intranet of campus, enterprise and government agencies. Another question came: Why Did NSA know Microsoft’s vulnerabilities and made special cyber weapons, and then some of these weapons fell into the hands of hackers? NSA Realistically speaking, as one of the operating systems, Windows is composed of hundreds of millions of lines of code. The logical relationship between them cannot be decided by one person, so it is difficult to eliminate vulnerabilities. Windows is the most commonly used operating system in the world, so it is normal for hackers to study vulnerabilities and attack them for profit. But as the National Security Agency of the United States, it is just to stare at the loopholes in this system, and it also specializes in weapons. What is the reason? In fact, Microsoft did not know the vulnerability existed until the hacker organization exposed it. In other words, only the NSA knows that the vulnerability exists, and only they know how long it has been known. In the opinion of cyber security experts on chivalrous island, it is very likely that NSA has known this vulnerability for a long time and exploited it, but this time it was used by the criminal team, that causes such great harm. From this point, we can see that the technology of the United States is really strong, and it is a unique global in the field of network security. At the same time, “vulnerability” has become a valuable strategic resource that soldiers must fight. In other words, attacking the reality through the network is no longer the scene patent of science fiction movies, but the reality that has happened. If you don’t believe me, tell you a true story– Snowden, the one who disclosed the “prism plan” that the US government monitored the world, was a former employee of the NSA. He confirmed that in 1999, the Obama administration ordered the use of cyber attack weapons-a virus codenamed “Zhenzhen network” to attack Iran’s nuclear facilities. The reason is complicated. In short, Israel managed to purchase centrifuge control software with a virus in Iran through Malaysian software companies. In 2010, the virus broke out, the centrifuges that controlled and destroyed Iran’s nuclear facilities, such as that, eventually caused permanent physical damage to more than 1,000 centrifuges and had to suspend the process of enriching uranium. This is also the first case of attacking and destroying the real world through virtual space in history, which has achieved the effect that only through military operations on the ground in the past. Last year, Ukraine’s power grid system was also attacked by hackers, resulting in power supply interruption for hundreds of households. How many cyber weapons does the NSA hold now? Of course, it is the secret of the United States. But according to WikiLeaks, not only does the NSA have it, but the CIA also has it, their network intelligence center has created more than 1,000 kinds of computer viruses and hacker systems-the number confirmed by Snowden in 2013. Therefore, after the outbreak of the “Eternal Blue”, the report of the New York Times said, “if it is confirmed that this incident was caused by cyber weapons leaked by the National Security Bureau (NSA), the government should be blamed because the U.S. government makes many hospitals, enterprises and other governments vulnerable to infection”. According to the NSA, its duty should be to “protect American citizens from attacks”; They have also accused many countries of carrying out cyber attacks on the United States. But the fact is just the opposite. The countries they blame are all victims of this virus. The cyber weapons they use to “defend” become the weapons used by hackers to attack American citizens. In the words of the national public broadcasting station, “This attack pointed out a fundamental problem in the security field, that is, the monitoring of the National Security Bureau is protecting the people or creating more irreversible damage, even exceeding its benefits”. Alert Of course, the NSA should reflect, although they have not yet come out to respond. But what is more worthy of reflection is an essential topic: Who is the master of network security? As far as this time, the decision-making process within the U.S. government is more worthy of criticism. There is a Process called VEP(Vulnerability Equity Process) inside, which is used to follow this Process when NSA or other U.S. government departments find a software Vulnerability, decide whether to expose the vulnerability. If the vulnerability is disclosed, Microsoft and other manufacturers can easily create patches, and the vulnerability disappears; If the vulnerability is not disclosed, these government departments can keep it for their own use for “law enforcement, intelligence collection or other aggressive use”. Although this process created by the Obama administration is neither a law nor a presidential decree, it has been implemented since 2008. In the eyes of people in other countries outside the United States, this process is obviously problematic: this process, which can almost be called “black box, the network security risks of the whole world are all determined by the internal mechanisms of the United States, and others are exposed to the risks without any doubt. In response, Microsoft President Brad Smith also said angrily on his blog, “If these government departments continue to hide in the dark and dig for loopholes in global computer systems, then make the so-called Arsenal to attack other countries or buy and sell, then you are the accomplices of cyber crime!” In this sense, Xi Jinping has said many times that “there is no national security without network security”, which is absolutely targeted. Just imagine, this virus is still within the controllable range. What if the next network attack is larger and the target is clearer? From the perspective of China, in most people’s impression, the last outbreak of the virus of this scale probably dates back to the “panda burning incense” more than a decade ago “. However, like this virus, it is rare to face the serious situation of “kidnapping” of important information once the trick is almost unsolvable. From the reaction of different places, the emphasis on network security is obviously different. The National Network Information Department, as well as Shanghai, Beijing and other provinces and cities, issued emergency notices almost on the 13th; The infection that occurred on the morning of the 15th was more in the central and western provinces. Some industry experts also pointed out that, for example, government, enterprises and institutions, campus and other institutions, many leaders still keep the concept of network security at the point of “Finding people to kill and kill viruses if computers are poisoned, many people also think that” physical isolation with intranet is fine “, and the concepts and protective measures are quite lagging behind. Things haven’t ended yet, and there are enough problems and shocks. This is like a public health event. It is the usual emphasis on safety and the degree of organization, which determines the extent to which the plague can spread. I have to say, this is a very vivid and profound network security education course. After all, today our personal information, assets, data, etc. have been increasingly connected with computers and networks, but this process is irreversible. The outbreak of the 5554 ransomware “WannaCry” (Eternal Blue) worldwide is probably the most influential public security event these days. Since last Friday night, the blackmail virus broke out in the student group of one of chivalrous island friends.
Month: March 2023
Chen Xingui, deputy director of Henan environmental protection department, was reviewed for serious disciplinary violations.
According to the news of Henan Provincial Commission for Discipline Inspection: With the approval of Henan Provincial Party Committee, Chen Xingui (Deputy Department level), a member of the Party group and deputy director of Henan provincial environmental protection department, is suspected of serious disciplinary violations and is currently under organizational review. (Henan Provincial Commission for Discipline Inspection) Resume of Chen Xingui From August 1975 to September 1979, workers of machinery factory in Leiyang County. From September 1979 to July 1981, Yunyang Normal School studied. From July 1981 to May 1982, he served as a cadre of Xingyang county education bureau. From May 1982 to June 1984, the office officer of the county Party committee of Leiyang County. From June 1984 to July 1986, he served as a member of the Party committee of Beiyi Township, Xingyang county. From June, 1984 to July, 1986, he Nan Radio and Television University specialized subjects for Party and government cadres. From July 1986 to July 1987, he served as deputy secretary of Party Committee of Xingyang county Wangcun township. From July 1987 to February 1988, he served as deputy director of Xingyang county Party committee office. From February, 1988 to November, 1989, he served as the secretary of the Party committee of Xiwo township, Xingyang county. From November 1989 to May 1994, he served as Standing Committee member and office director of Xingyang county Party committee of the Communist Party of China. From May 1994 to November 1994, he served as the standing committee and office director of Xingyang Municipal Committee of the Communist Party of China. From November 1994 to March 1997, he served as deputy secretary of the CPC Xinmi Municipal Committee. From March 1997 to July 1999, he served as deputy secretary of the CPC Xinmi Municipal Committee and mayor of the municipal people’s government. From July 1999 to June 2003, he served as secretary of the CPC Xinmi Municipal Committee. From June, 2003 to February, 2009, he served as deputy director of Henan Provincial Environmental Protection Bureau and member of the Party group. From February 2009 to now, he served as a member of the Party group and deputy director of the Environmental Protection Department of Henan province. 1011 according to the news of Henan Provincial Commission for Discipline Inspection: With the approval of Henan Provincial Party Committee, Chen Xingui (Deputy Department level), the party member and deputy director of Henan provincial environmental protection department, is suspected of serious disciplinary violations and is currently under organizational review. (Henan Provincial Commission for Discipline Inspection) resume of Chen Xingui from August, 1975 to 19
Special roll call, what did Shanghai “six Tigers” do?
On the 15th, the Liberation Daily published the full text of the work report made by the Shanghai Municipal Commission for Discipline Inspection at the 11th Congress of the Communist Party of China in Shanghai. “Political Affairs” noticed that the report mentioned Shanghai’s anti-corruption achievements in the past five years: A total of 117 problem of discipline violation and 155 people were investigated for responsibility in Shanghai, involving 53 bureau-level cadres and 54 department-level cadres. The report also specifically listed the names of six officials at the bureau level of Ma Ma: Dai haibo, former deputy secretary-general of shanghai municipal government, li yaoxin, former director of municipal economic information committee, jiang xiafu, former secretary of baoshan district committee, feng jun, former general manager of municipal power company, guangming food (group) wang Zongnan, former chairman of the limited company, and Cheng Guanjun, former general manager of Shanghai Material Trade Co., Ltd. 53 bureau-level cadres were investigated. Why did the report specifically name the above six officials? What did they do? Dai Haibo: he was exposed to a long-term report by his ex-wife. “Political Affairs” noticed that Dai Haibo, former deputy secretary general of Shanghai municipal government, had been tried on March this year, involving two charges of bribery and concealing overseas deposits. Prosecution charges: from 1998 to 2015, Dai Haibo served as the general manager of Shanghai Zhangjiang Hi-Tech Park development company, Shanghai Zhangjiang (Group) Co., Ltd. and the chairman of Shanghai Zhangjiang integrated circuit industrial zone Development Co., Ltd, deputy secretary and deputy district chief of pudong new area district committee of shanghai, former secretary of nanhui district committee of shanghai, director of shanghai economic and information committee and other positions are convenient, seeking benefits for others and accepting bribes worth more than ,000 yuan. In addition, in April 2001, Dai Haibo opened Bank, stock and fund accounts in Citibank, Hong Kong, and failed to truthfully declare to the competent authorities in accordance with national regulations. As of march 2015, the above accounts still have stocks and funds with a deposit of hk $380900 and a market value of hk $1.5822 million, which is equivalent to more than RMB 1.58 million in total. Dai Haibo was born in 1962and is 55 years old. He once worked in the Communist Youth League system. At the age of 31 in 1993, he was already the deputy secretary of Shanghai Municipal Committee of the Communist Youth League. After that, dai haibo was transferred to work in pudong new area of shanghai, one of the frontier positions of reform and opening up, and served as director of social development bureau, minister of organization department, deputy secretary of pudong new area committee, first deputy (district) chief and other important positions, he witnessed the early development and growth of Pudong New Area. After the establishment of shanghai free trade zone in 2013, dai haibo also served as deputy secretary general of shanghai municipal government and executive deputy director of shanghai free trade zone management committee. In september, 2014, on the eve of the first anniversary of the establishment of shanghai free trade zone, dai haibo was removed from the post of executive deputy director of the management committee of shanghai free trade zone. At that time, the central inspection team was inspecting in Shanghai. Some media reported that one of the “incentives” of Dai Haibo’s dismissal was that his ex-wife had long reported that he was suspected of corruption during his reign in Pudong New Area of Shanghai, or involved in Disney’s land acquisition and demolition projects, as well as problems such as owning multiple properties. However, the above “incentives” have not been officially confirmed. Half a year after being removed from the post of executive deputy director of the administrative committee of Shanghai Pilot Free Trade Zone, Dai Haibo was announced to investigate. Li Yaoxin: he was Dai Haibo’s successor “Political affairs” noticed that li yaoxin, the second official named in the work report of the shanghai municipal commission for discipline inspection, had an intersection with dai haibo. In february, 2013, dai haibo was transferred to the deputy secretary general of shanghai municipal people’s government by the director of shanghai municipal economic and information commission. In the same month, Li Yaoxin was transferred from the deputy secretary and district chief of Changning District Committee of Shanghai to the deputy secretary of Shanghai Economic and Information Committee, and then succeeded Dai Haibo as the director of Shanghai Economic and Information Committee. Li Yaoxin is two years older than Dai Haibo. He was born in 1960 and is 57 years old. There is an important experience in his career history. “Tian han corruption case” (tian fengshan case, tian fengshan once served as the governor of heilongjiang province and minister of land and resources; Han guizhi case, han guizhi once served as the minister of organization department of heilongjiang provincial party committee and chairman of heilongjiang provincial political consultative conference) after the occurrence, in 2005, the Central Organization Department provided cadres and talents support for revitalizing the construction of the old industrial base in Northeast China. He once sent more than 20 cadres to work in Heilongjiang, and Li Yaoxin, who was the deputy district chief of Jiading district of Shanghai, was one of them. According to the report of weiwang oriental weekly under xinhua news agency, song fantang, then secretary of the heilongjiang provincial party committee, said when the central government sent a large number of cadres to work in heilongjiang, “this is in line with the revitalization of northeast china, it’s not that some people outside said that the cadres in northeast china are going to change their blood, which has nothing to do with tian han’s case.” Li Yaoxin worked in Heilongjiang for 3 years. He served as deputy mayor and mayor of Mudanjiang city and deputy director of Heilongjiang Provincial Development and Reform Commission. It is reported that the main task of his job in Mudanjiang is local investment promotion. At that time, more than a month after he came to Mudanjiang, he once said at the Standing Committee: “I am very accustomed to living and working in Mudanjiang. The only maladjustment is that I have not received domestic businessmen or foreign businessmen once this month; Almost every day, meetings are small cycles; For a city, attracting investment is obviously the first priority of development; I am a little impatient about this “. After returning to Shanghai from Heilongjiang in 2008, Li Yaoxin served as deputy director of Shanghai Municipal Development and Reform Commission, director of Changning district of Shanghai, and director of Shanghai Economic and Information Commission. The investigation was announced on last September. On January this year, the prosecution filed an investigation against Li Yaoxin on suspicion of accepting bribes. Jiang Xifu: 71 years old when the investigation was announced “Political Affairs” noticed that Jiang Xifu was named “post-40s” and was born in March, 1943. when he was announced to investigate in December, 2014, he was 71 years old. According to the public resume, Jiang Xie Fu served as deputy director of Shanghai Municipal Agricultural Committee, secretary of Fengxian County Party Committee, vice president of Party School of Municipal Party Committee, secretary of Baoshan district Party committee, secretary of Party Committee of Municipal Real Estate and resources bureau, etc. In February 2003, he was elected as a member of the Standing Committee of Shanghai Municipal People’s Congress and deputy director of the Municipal People’s Congress urban construction and environmental protection committee. In the curriculum vitae, Jiang Xifu retired in 2008. When he was announced to investigate, he had retired for 6 years. “Political affairs” found that after retirement in 2008, jiang xie fu had been serving as an independent non-executive director of shanghai group until he resigned from the post half a year before the investigation was announced. In August 2015, the prosecution filed a public prosecution against Jiang Xie Fu on suspicion of accepting bribes. The prosecution charged that jiang xifu took advantage of his position to seek benefits for others during his tenure as the secretary of shanghai baoshan district committee to the deputy director of shanghai municipal people’s congress urban construction and environmental protection committee, the total value of illegal bribery is more than 1.74 million yuan. Feng Jun: the amount involved in the case of “Electric Tiger” was over 100 million and was sentenced to life. “Political Affairs” noticed that on March this year, Feng Jun, the former general manager of Shanghai Electric Power Company, was sentenced to life imprisonment in the first instance for committing bribery and the crime of huge unidentified property sources. The court found out that Feng Jun took advantage of his position to seek benefits for others and took bribes totaling more than 43.46 million yuan, and the total amount of property with unknown sources was more than 7600 million yuan. In other words, the total amount involved reached more than 0.11 billion yuan. According to the disclosure, Feng Jun’s family held 4 sets of real estate at the time of the crime, worth more than ,000 yuan; The total value of bank and securities deposits was more than ,000 yuan; There were also calligraphy and painting, jewelry and jade, high-grade wine, ivory, 4239 pieces of 12 categories of valuables such as clocks and watches, worth more than 5300 million yuan. Feng jun was once a man of the wind and cloud in guodian system, and was awarded the title of special model worker of state grid corporation, national labor day medal winner, representative of national people’s congress, etc. However, according to Legal Daily, Feng Jun “led the management of such a centralized, capital-intensive and resource-rich enterprise after reaching a high position, the huge power made him go crazy slowly, or exchange power and money, or ask for it in disguise.” According to reports, Feng Jun often “killed” and formed a “cooperative relationship” with bribers that “I tray your house and car at a high price, and you help me make money quickly”. In 2007, feng jun, then deputy general manager of jiangsu electric power company, took a fancy to a real estate. However, he consciously “was too conspicuous”, so he let “friend” li hong buy it first at the price of 3.9 million and then transfer the ownership to himself. After that, he paid the house to Li Hong, but the transfer fee and taxes of the house were paid by Li Hong, totaling more than 310000 yuan. Three years later, Feng Jun told Li Hong that his wife was managing money. Feng Jun said, “Li Hong is a relatively smart person, and he knows that what I mean is to let him finance my wife with the 3.9 million yuan I paid him in other forms”. According to Li Hong, Feng Jun’s wife was given a savings card, which contained 4 million yuan and a little more than 99000 dollars. Feng Jun got a set of real estate worth 3.9 million yuan for “free”, and he also got 100000 yuan and 99000 dollars. Wang Zongnan: “dialling” by old leader Chen Liangyu” Wang Zongnan, the former chairman of “political affairs” Co., Ltd., was sentenced to 18 years in prison in the first trial for embezzlement of public funds and bribery. The court found out that from 2001 to 2006, when wang zongnan was the general manager of friendship group and the chairman of lianhua supermarket, he joined the former general manager of lianhua supermarket, liangwei and others, the public funds of Lianhua supermarket and its subordinate units have been embezzled for more than ten times, totaling more than 0.195 billion yuan, and Wang Zongnan has obtained illegal income from it for more than 1.2 million yuan. Chairman of “political affairs” CO., LTD. According to the report of honest and clean government, wang zongnan was also a member of the officialdom before taking up the above positions in the business system. He once held the positions of deputy minister of organization in huangpu
Urumqi airport encountered 5,000 people stranded in windy days
Since this morning, Urumqi DIWO Fort international airport has been hit by strong winds, and the wind reaches 8-9 when the wind is at its peak. By 12:00, 88 inbound and outbound flights had been delayed, standby, returning or canceled, and more than 5,000 passengers were stranded at the airport. Weather forecast shows that the weather conditions at the airport will improve after 19:00. Since this morning, Urumqi DIWO Fort international airport has been hit by strong winds, and the wind reaches 8-9 when the wind is at its peak. As of 12:00, 88 inbound and outbound flights have been delayed, standby, returning or canceled, and more than 5,000 passengers have been delayed.
The central bank established the Financial Science and Technology Committee to enrich regulatory measures
Recently, the People’s Bank of China established the Financial Science and Technology (FinTech) committee to strengthen the research planning and overall coordination of financial science and technology work. Financial technology is a technology-driven financial innovation, which has injected new vitality into financial development and brought new challenges to financial security. The People’s Bank of China will organize in-depth study on the impact of the development of financial science and technology on monetary policy, financial market, financial stability, payment and settlement and other fields, and earnestly do a good job in the strategic planning and policy guidelines for the development of financial science and technology in China. Further strengthen exchanges and cooperation at home and abroad, establish and improve the financial science and technology innovation management mechanism suitable for China’s national conditions, handle the relationship between security and development, and guide the correct use of new technologies in the financial field. Strengthen the application practice of regulatory technology (RegTech), actively use big data, artificial intelligence, cloud computing and other technologies to enrich financial supervision methods, improve the identification of cross-industry and cross-market financial risks, ability to prevent and resolve. The People’s Bank of China is willing to join hands with all parties of industry, university and research to jointly promote the healthy and orderly development of China’s financial technology and contribute to serving the real economy and practicing inclusive finance. Recently, the People’s Bank of China established the Financial Science and Technology (FinTech) committee to strengthen the research planning and overall coordination of financial science and technology work. Financial technology is a technology-driven financial innovation, which injects new vitality into financial development and also gives gold
Shandong Linyi held the 70th anniversary of the victory of Meng Liangzhang campaign
Representatives of veterans who participated in the battle of Meng Liangzhang. Today (May 16) morning, the 70th anniversary of the victory of Meng Liangzhang battle was held in Meng Liangzhang, Linyi city. 70 years ago today, the battle of Meng Liangzhen won in Yimeng Mountain area, Shandong province. Chen Yi and Su Yu commanded the East China Field Army to clamp the left and right wings of the Kuomintang army with four columns, and to carry out intermediate breakthroughs with five columns, after three days and nights of fierce fighting, the 74th division and the 83th division, one of the five main forces of the Kuomintang army, were totally 32000 people, and Zhang Lingfu, the 74th division commander of the Kuomintang army, was killed, the plan to make the Kuomintang army focus on attacking Shandong juj East China Field Army failed. It played an important role in the transformation of the East China War, leaving a glorious chapter in the history of the party, the history of the People’s Army, and the history of the Republic. Representatives of veterans who participated in the battle of Meng Liangzhang. Today (May 16) morning, the 70th anniversary of the victory of Meng Liangzhang battle was held in Meng Liangzhang, Linyi city. 70 years ago today, the battle of Meng Liangzhen won in Yimeng Mountain area, Shandong province. Chen Yi,