According to Lei Feng network (search "Lei Feng network" public concern) previously reported, August 2nd, Baidu cloud users said on the microblogging: "Last night last night, my Baidu cloud was stuffed with yellow film. Before the deposit A large number of documents have disappeared.†In addition, many friends on the forum and the forum reflected this situation. According to the screenshots posted by netizens, the original folders on the network disk have disappeared. Instead, some new folders have been replaced with various classified yellow videos.
Today, the case was smashed—Hu Mou, the man who stole the Baidu account, and Ma Mou, who developed and sold the hitting software, had been captured by the Haidian Branch of the Beijing Municipal Public Security Bureau and the Net Security Corps. Both of them have been detained by the Haidian police in accordance with the law.
At the beginning of August, Baidu Company alerted the Beijing Security Bureau Haidian Branch Network Security Guard Brigade that it threatened the intelligence department to monitor that a large number of external malicious IPs continued to crash Baidu accounts, and the test results showed that a large number of Baidu accounts had been stolen. In the same period, Baidu cloud user feedback backstage, e-mail, official Weibo, intranet and other channels received 5,000 users' feedback "Account blocked due to theft and file loss" and "Baidu cloud was put into pornographic film."
It is understood that the two malicious attackers use the online store-hit software to perform a crash on the Baidu account and sell the Baidu account and password selected by the crash library. Hitting a library means that a hacker collects user and password information that have been leaked from the Internet to generate a corresponding dictionary table. After trying to log in to other websites in batches, a series of users who can log in is obtained. Many users use the same account password on different websites, so hackers can try to log on to the B website by obtaining the user's account on the A website. Therefore, it is not recommended that users use the same password on multiple platforms.
According to Ma's confession, he produced a software for Baidu's account to hit the library, and sold it through groups of QQ group websites. In this process, he profited approximately 50,000 yuan through the sale of crashing software.