Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Google Security

Google Investigating Chinese Employees 181

BluePeppers writes "The Guardian is reporting that Google China is investigating its staff about The Incident. '"We're not commenting on rumor and speculation. This is an ongoing investigation and we simply cannot comment on the details," a Google spokeswoman said. Security analysts told Reuters the malicious software or malware used in the attack was a modification of a trojan called Hydraq. A trojan is a hidden program allowing unauthorized access to a computer. The analysts said the sophistication in the attack was in knowing whom to attack, not the malware itself.'"
This discussion has been archived. No new comments can be posted.

Google Investigating Chinese Employees

Comments Filter:
  • by brokenin2 ( 103006 ) * on Monday January 18, 2010 @12:02PM (#30809424) Homepage

    I didn't know they could go back in time and undo the incident. Very impressive!

  • Spies everywhere (Score:5, Insightful)

    by WindBourne ( 631190 ) on Monday January 18, 2010 @12:05PM (#30809468) Journal
    Why should Google be surprised. The funny thing is that all Google will be able to do is fire that person. And then they will get to take a job with a Baidu (or may already be working for them).
    • by demonlapin ( 527802 ) on Monday January 18, 2010 @12:09PM (#30809506) Homepage Journal
      I rather strongly suspect that there are a lot of new Google "employees" and "corporate security" who just happen to draw a paycheck from the FBI. It's about mapping out the threat.
      • by Wyatt Earp ( 1029 ) on Monday January 18, 2010 @12:14PM (#30809586)

        And I suspect alot of Google China employees draw a paycheck from the People's Liberation Army and other Chinese Government agencies.

      • by thetoadwarrior ( 1268702 ) on Monday January 18, 2010 @02:19PM (#30811158) Homepage
        I'm drawing a good pay check from the Judean People's Front for spying on Google.
      • I seriously doubt it. Have you ever worked with say FBI or DHS on a tech level? They are both loaded with total idiots. The CIA is a mixed bad and NSA is loaded with some of the brightest ppl that I have worked inside of the gov. Google has nobody on their roster that is a known American gov. employee. And I doubt that the gov. allows that.

        OTH, I have dealt several times with spies from China. One guy that wanted to invest in the start-up that we were in, but wanted full access to the equipment that we ha
    • Re: (Score:3, Insightful)

      by Yvanhoe ( 564877 )
      IANAL but I think that if Google cannot do much, the USA can do : If it is proven they broke into computer systems in order to aid a foreign country against the interests of the United States, it can be considered as the crime of treason. (I am assuming they are American citizens). If they are citizens of China, they can still be judged on the ground of breaking into a computerized system and on the ground of conspiracy.

      USA has no extradition treaties with China so I think they have no obligations to let
      • by m.ducharme ( 1082683 ) on Monday January 18, 2010 @01:05PM (#30810266)

        If it is proven they broke into computer systems in order to aid a foreign country against the interests of the United States, it can be considered as the crime of treason. (I am assuming they are American citizens).

        It's very unlikely that the culprit is American.

        If they are citizens of China, they can still be judged on the ground of breaking into a computerized system and on the ground of conspiracy.

        Why exactly would they be tried for obeying orders from their government? They might be punished for getting caught, but we won't likely hear about that.

        USA has no extradition treaties with China so I think they have no obligations to let China judge them.

        Except that the investigation is in Google China, which is in...wait for it...China.

        Anything the US gov can do will be diplomatic in nature, and given how closely tied the economies of the US and China are, any diplomatic action the US can take will be largely symbolic. Though there may be plans for a more covert retaliation in the works as we speak, those plans won't likely involve wasting time trying to extradite the hackers/mole/whoever.

        • by Yvanhoe ( 564877 )

          Except that the investigation is in Google China, which is in...wait for it...China.

          Ooops, missed that part. Mod me offtopic then... I thought it was about Chinese developers in USA. Indeed, if that is the case nothing can really be done and Google had really no other choices than closing its offices there.

    • by DrXym ( 126579 )
      Unless this person were working for Baidu to start with, I bet Baidu wouldn't touch then with a 20ft pole. Who on earth would hire someone who had just planted a trojan in their last place of work?
      • Re: (Score:3, Insightful)

        by WindBourne ( 631190 )
        Baidu works VERY close with the Chinese gov. In the same way that Pravda works with Russian Party, Fox with the republican party, or Air America Airlines with the CIA. As it is, Chinese gov. has strict penality for spying or causing harm against other Chinese (esp. gov or companies), but reward handsomely those that do the same against foreigners and then share the information. Basically, the gov has an X-Prize approach to spying on the west.
    • I believe that industrial espionage is a crime. And I'm sure several other laws were broken along the way (computer hacking itself is a pretty serious crime). I don't know about the laws in China, but I suspect Google can do something beyond just firing the person.
    • Re: (Score:2, Insightful)

      by chiguy ( 522222 )

      Google should also check where all their laptops were manufactured. And make sure each BIOS is clean.

    • by Machtyn ( 759119 )
      Well, with top Baidu officials resigning [foxnews.com] there should be some openings... but it's got to make you wonder why the rats are jumping off the ship.
    • And then they will get to take a job with a Baidu.

      I doubt so.
      When you betray some company, you'll always be marked as a traitor.

    • Oh yeah? Our company outsourced a bunch of IT functions to India. I triple dog dare the Chinese to infiltrate those Indian machines and trash them.
    • by Weezul ( 52464 )

      All the cynics will say that Google will fire them, China will execute them along with some hackers, and Google will return to censoring Chinese traffic.

      China may execute their own "internet soldiers" who participated in the attacks just to save face internally, or even just personally, but I'd imagine that Google won't take China punishing the hackers as reason to stop censoring.

      I'd say the most likely long term solution is that Google remains uncensored but China aggressively firewalls any undesirable sea

  • I do not think that word means what you think it means.

  • by gpeters ( 7094 ) on Monday January 18, 2010 @12:09PM (#30809504)

    After the investigation, of course they will invite every Google China employee to join them in the USA for a presentation of the results...!

    Actually, that's the whole investigation. People who have "family obligations" or who are "afraid of airplanes" are the ones to look at!

  • by bigmaddog ( 184845 ) on Monday January 18, 2010 @12:10PM (#30809520)
    Irregardless of the actual story content, I find the poster's use of "in lieu" to be the penultimate atrocity vis-a-vis the English language.
    • by IANAAC ( 692242 )
      That took a minute to realize you were joking.
    • > I find the poster's use of "in lieu" to be the penultimate atrocity
      > vis-a-vis the English language.

      The ultimate one being use of "irregardless"?

      • by snarkh ( 118018 )

        No, that's antepenultimate.

        • No, that's antepenultimate.

          So then what would the ultimate and the last one be?

          While "irregardless" may not the be ultimate atrocity vis-a-vis the English language, it's definitely at the top of the list for "words" or phrases that scream "I'm from the rattiest trailer park in the country and have actually found a way to obtain a negative education level. I actually suck the intelligence out of people that are within earshot of me." Hmm... perhaps it is the ultimate.

    • and (Score:3, Insightful)

      by snarkh ( 118018 )

      the ultimate atrocity is the poster's use of "it's"?

    • I believe you used vis-a-vis correctly there. Try vice versa.
      • Dammit, you might be right, although I never did like the "in relation to" usage of vis-a-vis. Anyway, the text of the story has now been improved, which saddens me and makes this exercise in internet-enabled douchebaggery moot.
  • by Mal-2 ( 675116 ) on Monday January 18, 2010 @12:17PM (#30809624) Homepage Journal

    I bet it was your run of the mill social engineering. Someone on the attacking side befriended someone on the inside and either coaxed the information out, or just waited until they mentioned it in passing. Once they knew who to target, they could then pump this employee to see if the attack was having any effect, from the perspective of an insider.

    It could be a Facebook friend, it could be a normal face-to-face friend, or it might be a "swallow" [jezebel.com]. Governments certainly use this method of social engineering, but I would be quite surprised if companies do not do it as well.

    Mal-2

  • by Anonymous Coward on Monday January 18, 2010 @12:23PM (#30809696)

    ... is In Lieu, you insensitive clods!

  • by Animats ( 122034 ) on Monday January 18, 2010 @12:33PM (#30809860) Homepage

    Somewhere in Mountain View, servers are now analyzing all activity of Google's employees in China. And their friend. And their friend's friends. And the people they email. And everyone who got in range of a Google security camera. And all the their friends. And the people they email.

  • by Anonymous Coward on Monday January 18, 2010 @12:37PM (#30809906)

    google googles you!

  • by Anonymous Coward on Monday January 18, 2010 @12:38PM (#30809914)

    Espionage is a BIG risk in all Overseas Outsourcing. The overseas employees (or foreigners brought in on L-1 or H-1b visas) are ultimately loyal to their home country. If their country orders them to spy, turn over Intellectual Property, etc., don't be surprised! Google is not the big risk. Microsoft, for example, has a big tech center in China. One must wonder what sorts of spying, back doors, trojans, are being planted in Windows!

    • Espionage is a tolerable cost of outsourcing because all that matters is profit. Some public embarassment will result now and then, but it is perfectly reasonable for people to put national loyalty far above any concern for a foreign corporation.

      I'd cheerfully help the US find information about any foreign company I worked for, because I have no moral obligation to a corporation and least of all one from an enemy/competing (there is no difference!) country. It is ridiculous to expect people to be loyal to f

    • For example, all of the cheap chinese knockoff of brand name stuff. A large portion of it is dishonest suppliers simply doing their own runs of the product and selling it to the grey market.

  • by jonpublic ( 676412 ) on Monday January 18, 2010 @12:40PM (#30809946)

    Chinese companies copied part for part GM cars and as far as I know, nothing came of it. You could literally take the door off the Chevy and put a door from the Chinese car company on it. We don't impose any trade sanctions, we just keep buying their stuff.

    I'd find the link but I don't have time.

    Hopefully this google flap will get people to pay attention to how they are catching up.

     

  • Trojan (Score:3, Insightful)

    by Anonymous Coward on Monday January 18, 2010 @12:43PM (#30809988)

    A trojan is a hidden program allowing unauthorized access to a computer.

    Yes thanks! This is definitely news to the average /. reader. I never knew that!

    • It was also a people that tricked a fortified enemy city with a giant horse as a gift with solders hidden inside.

      A lesser known, at least on Slashdot, version is a condom used in an act known as 'sex' to prevent reproduction and infection transfers.

      • It was also a people that tricked a fortified enemy city with a giant horse as a gift with solders hidden inside.

        Actually... the horse was made by Greeks, it fooled the Trojans. (Hence the phrase; "Beware of Greeks bearing gifts".)

        • knew i should have looked it up instead of just using my hazy memory of the story.

        • Re: (Score:3, Insightful)

          by lgw ( 121541 )

          The lesson from the Trojan horse should have been "beware of gifts bearing Greeks"!

    • by dintech ( 998802 )

      And also, not the definition that most people learned decades ago. The whole concept of a concept of a Trojan is of course an innocuous piece of software masquerading as something useful that is invited into a system only then to unleash a nasty payload. If during the Trojan War, the horse had been hidden, that would have been a much cleverer attack. I guess the reporter didn't see the connection between Trojan and Trojan Horse. Also not all trojans allow access to the computer. Some just get in there to FS

  • "Google Investigating Chinese Employees"

    Something occurred to me after I read this. I get a slight twinge that Google is more an Authority, instead of a private corporation. Its odd, If I read "Microsoft investigates..." I envision some staid corporate fumbling about, yet with Google, I feel they are almost Law Enforcement like, with big tenticles of power Joe Bloggs couldnt understand.

    Sorry, I have watching "The Wire" [wikipedia.org] on DVD. Its ruined my perceptions on how things (might) work.
    • Well you have more reason to believe in their investigative ability. Google deals primarily in information, with a combination of accurate search tools and advertisement targeting being some of their main sources of income.
  • Hate to say this...as it does sound racist, but I know for a fact that most of the chinese employees within a company that deals with
    china, will side to help the chinese side of the deal rather then their own company that is dealing with china, also even went so far as to give out confidential info and deal breaking intel to manufacturers so as to be able to charge top dollar when they could, based on types of situations that came up.

    For me, it might sound racist, but I truly believe that they have been bra

    • Part of the problem is that there is essentially no punishment(in most cases lots of rewards) for doing so. The Chinese government will make sure you are well taken care of if you help a Chinese company(and lets face it, though nominally capitalist the state essentially still "owns" all enterprises in China, you cannot get rich there if the state doesn't want you to be rich). Until significant sanctions are levied against China for this kind of stunt they will continue only to get more brazen with their v
  • ... they would interrogate these people like the ChiComs would. Make them feel right at home!

  • by vampire_baozi ( 1270720 ) on Monday January 18, 2010 @02:03PM (#30810982)

    If Google finds anything, this could have serious reprecussions for foreign companies hiring in China and Chinese students seeking green cards/employment in the US, especially in high-tech areas. Does anyone else think that mandatory background checks might be put in place to screen candidates, beyond simply assessing technical skills?

    If so, it's a good time to be Indian or Taiwanese/Korean, if you're competing with Chinese candidates.

    Though I do hope if this doesn't result in hiring discrimination against Chinese candidates; most of them are bright cookies, and there may come a day when US tech companies need them more than they need us.

    • I don't think Korea is competing with China and India in this field. South Korea is a wealthy country rather like Japan, and I don't believe that any computers exist in North Korea.

"To take a significant step forward, you must make a series of finite improvements." -- Donald J. Atwood, General Motors

Working...