Source code leaked "crisis"? The servers of major manufacturers such as Alibaba Cloud and Byte are suspected of being hacked by overseas hacker organizations, and the source code is sold

On November 11th, the overseas hacker organization "AgainstTheWest" (ATW for short) announced on the raidforums forum that they had stolen the source code of the Chinese server and frantically leaked it out for sale. It is reported that the target of its attack is suspected to have involved domestic technological "big manufacturers" such as Ali, Tencent and Byte.

After the news entered the country, it caused a "shock" in the science and technology circle for a while. Although the authenticity of this incident of leaking data and source code is not yet known, discussions about the incident have begun to ferment.

On November 12th, ATW continued to post on the raidforums forum claiming that they had hacked Alibaba Cloud servers and stole a large amount of source code. The stolen source code was packaged and sold at a price of $5,000, and the payment method was Bitcoin or Monero.

The ATW person mentioned in a post on the forum that they leaked some SRCs used in Tencent's development and test platform, and attached the SRC that was leaked that day:

They also threatened that they have successfully carried out supply chain attacks on many Chinese companies so far. At the same time, it said that China has not commented on this matter and will continue to leak more SRCs in the future.

It is understood that the raidforums forum posts and publishes information in two ways: the buying and selling system and the point viewing system. In the former, sellers offer to look for attractive buyers, and buyers cannot preview the content of the information before a successful transaction; in the latter, users can view the information attached to the post by spending 8 points (RMB 29.234).

According to related reports, the source code of the suspected Alibaba Cloud currently being sold by the ATW organization is as follows:

Regarding this intrusion, a cloud security researcher from Lace Work, a well-known cloud security service provider, also posted on his Twitter account to express his concern about the incident. In the tweet, Lace Work attached screenshots of the ATW organization's statement on the invasion of Alibaba Cloud and Tencent:

According to reports, perhaps because the authenticity of the information leaked in the incident cannot be ascertained for the time being, none of the information currently listed by ATW in the trading system has been sold. Some buyers want ATW to release more details of the information. , But did not get a response from him.

And some users who have spent points to view the information attached to the post shouted ATW. This is cheating money, because these so-called "leaked files" are not Alibaba Cloud's source code at all!

According to relevant information, as of November 15th, the domestic technology companies that ATW organized to invade were suspected to have involved the CN Ministry of Science and Technology, Alibaba Cloud user data, Dingding console data, Tencent Wenjiang project, WeChat user message samples, and a small amount of source code by byte beating. , Zhongtian Technology, Founder Electronics, Dipu Technology, Bohai Insurance Co., Ltd. source code.

Regarding the authenticity of the incident and the so-called leaked source code, domestic manufacturers have temporarily declined to comment. This site will continue to pay attention to whether the incident is true and the next move of the ATW organization. If you have any views on this matter, please feel free to communicate and interact in the comment section.