Social:Great Cannon

Short description: Chinese government cyberweapon attack tool

The Great Cannon of China is an Internet attack tool that is used by the government of the People's Republic of China to launch distributed denial-of-service attacks on websites by performing a man-in-the-middle attack on large amounts of web traffic and injecting code which causes the end-user's web browsers to flood traffic to targeted websites.^[1] According to the researchers at the Citizen Lab, the International Computer Science Institute, and Princeton University's Center for Information Technology Policy, who coined the term, the Great Cannon hijacks foreign web traffic intended for Chinese websites and re-purposes them to flood targeted web servers with enormous amounts of traffic in an attempt to disrupt their operations. While it is co-located with the Great Firewall, the Great Cannon is "a separate offensive system, with different capabilities and design."^[2]

Besides launching denial-of-service attacks, the tool is also capable of monitoring web traffic^[3] and distributing malware in targeted attacks in ways that are similar to the Quantum Insert system used by the U.S. National Security Agency.^[2]

Mechanism

The Great Cannon hijacks insecure traffic inbound to servers within the Great Firewall, and injects JavaScript that redirects that traffic to the target.^[4] These attacks fail when websites have HTTPS encryption.^[5]

Known uses

The first known targets of the Great Cannon (in late March 2015) were websites hosting censorship-evading tools, including GitHub, a web-based code hosting service, and GreatFire, a service monitoring blocked websites in China.^[6]

In 2017, the Great Cannon was used to attack the Mingjing News website.^[7]

As of December 2019^[update], the Great Cannon was being used to attempt to take down the Hong Kong–based LIHKG online forum, even though the Basic Law of Hong Kong clearly states that Hong Kong's internet is the affairs of Hong Kong and Hong Kong only.^[7]

In 2021, the Great Cannon was used to attack Flexpool, an Ethereum crypto mining pools Hong Kong servers.^[8]

Reaction

Quartz reported that the 2015 GitHub attack caused "severe" political problems for China, including the United States Department of State viewing it as "an attack against US infrastructure".^[9]

References

↑ Perlroth, Nicole (April 10, 2015). "China Is Said to Use Powerful New Weapon to Censor Internet". The New York Times. https://www.nytimes.com/2015/04/11/technology/china-is-said-to-use-powerful-new-weapon-to-censor-internet.html.
↑ ^2.0 ^2.1 Marczak, Bill; Weaver, Nicolas; Dalek, Jakub; Ensafi, Roya; Fifield, David; McKune, Sarah; Rey, Arn; Scott-Railton, John et al. (April 10, 2015). "China's Great Cannon". Citizen Lab (Munk School of Global Affairs, University of Toronto, Canada). https://citizenlab.org/2015/04/chinas-great-cannon/. Retrieved April 10, 2015.
↑ Franceschi-Bicchierai, Lorenzo (April 10, 2015). "The 'Great Cannon' is China's Powerful New Hacking Weapon". Motherboard - Vice. Vice Media LLC. https://www.vice.com/en/article/the-great-cannon-is-chinas-powerful-new-hacking-weapon/.
↑ Marczak, Bill; Weaver, Nicholas; Dalek, Jakub; Ensafi, Roya; Fifield, David; McKune, Sarah; Rey, Arn; Scott-Railton, John et al. (2015-04-10) (in en-US). China's Great Cannon. https://citizenlab.ca/2015/04/chinas-great-cannon/. Retrieved 2020-06-30.
↑ "Don't Be Fodder for China's 'Great Cannon' — Krebs on Security" (in en-US). 10 April 2015. https://krebsonsecurity.com/2015/04/dont-be-fodder-for-chinas-great-cannon/.
↑ Peterson, Andrea (April 10, 2015). "China deploys new weapon for online censorship in form of 'Great Cannon'". The Washington Post. https://www.washingtonpost.com/blogs/the-switch/wp/2015/04/10/china-escalates-censorship-efforts-with-debut-of-offensive-cyber-weapon-researchers-say/.
↑ ^7.0 ^7.1 Doman, Chris (2019-12-04). "The "Great Cannon" has been deployed again". https://cybersecurity.att.com/blogs/labs-research/the-great-cannon-has-been-deployed-again.
↑ "China deploys 'Great Cannon' against an Ethereum mining pool, the firm claims.". 2021-12-14. https://compassmining.io/education/china-great-cannon-mining-pool.
↑ "China's fierce censors try a new tactic with GitHub—asking nicely". 28 June 2016. https://qz.com/718465/chinas-fierce-censors-try-a-new-tactic-with-github-asking-nicely/.

Template:Censorship in China

Template:China national security

0.00

(0 votes)

Original source: https://en.wikipedia.org/wiki/Great Cannon. Read more

[NYT-China-Said-to-Use-Powerful-New-Weapon-Censor-Internet-1] Perlroth, Nicole (April 10, 2015). "China Is Said to Use Powerful New Weapon to Censor Internet". The New York Times. https://www.nytimes.com/2015/04/11/technology/china-is-said-to-use-powerful-new-weapon-to-censor-internet.html.

[China-Great-Cannon-2] 2.0 ^2.1 Marczak, Bill; Weaver, Nicolas; Dalek, Jakub; Ensafi, Roya; Fifield, David; McKune, Sarah; Rey, Arn; Scott-Railton, John et al. (April 10, 2015). "China's Great Cannon". Citizen Lab (Munk School of Global Affairs, University of Toronto, Canada). https://citizenlab.org/2015/04/chinas-great-cannon/. Retrieved April 10, 2015.

[Motherboard-Great-Cannon-China-Powerful-New-Hacking-Weapon-3] Franceschi-Bicchierai, Lorenzo (April 10, 2015). "The 'Great Cannon' is China's Powerful New Hacking Weapon". Motherboard - Vice. Vice Media LLC. https://www.vice.com/en/article/the-great-cannon-is-chinas-powerful-new-hacking-weapon/.

[4] Marczak, Bill; Weaver, Nicholas; Dalek, Jakub; Ensafi, Roya; Fifield, David; McKune, Sarah; Rey, Arn; Scott-Railton, John et al. (2015-04-10) (in en-US). China's Great Cannon. https://citizenlab.ca/2015/04/chinas-great-cannon/. Retrieved 2020-06-30.

[5] "Don't Be Fodder for China's 'Great Cannon' — Krebs on Security" (in en-US). 10 April 2015. https://krebsonsecurity.com/2015/04/dont-be-fodder-for-chinas-great-cannon/.

[WSP-China-Deploys-New-Weapon-Online-Censorship-Great-Cannon-6] Peterson, Andrea (April 10, 2015). "China deploys new weapon for online censorship in form of 'Great Cannon'". The Washington Post. https://www.washingtonpost.com/blogs/the-switch/wp/2015/04/10/china-escalates-censorship-efforts-with-debut-of-offensive-cyber-weapon-researchers-say/.

[ATT_Doman-7] 7.0 ^7.1 Doman, Chris (2019-12-04). "The "Great Cannon" has been deployed again". https://cybersecurity.att.com/blogs/labs-research/the-great-cannon-has-been-deployed-again.

[8] "China deploys 'Great Cannon' against an Ethereum mining pool, the firm claims.". 2021-12-14. https://compassmining.io/education/china-great-cannon-mining-pool.

[9] "China's fierce censors try a new tactic with GitHub—asking nicely". 28 June 2016. https://qz.com/718465/chinas-fierce-censors-try-a-new-tactic-with-github-asking-nicely/.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

Anonymous

Search

Social:Great Cannon

Namespaces

More

Page actions

Contents

Mechanism

Known uses

Reaction

See also

References

Navigation

Navigation

Resources

Help

googletranslator

Navigation

Wiki tools

Wiki tools

Anonymous

Search

Social:Great Cannon

Mechanism

Known uses

Reaction

See also

References

Navigation

Wiki tools

Page tools

Other projects

Categories