Operation Aurora

Overview [1] #

Operation Aurora was a series of cyber attacks conducted by Advanced Persistent Threats such as the Elderwood Group based in Beijing, China, with ties to the People's Liberation Army.

First publicly disclosed by Google on January 12, 2010,[2] in a blog post, the attacks began in mid-2009 and continued through December 2009.

The attack has been aimed at dozens of other organizations, of which Adobe Systems, Juniper Networks and Rackspace have publicly confirmed that they were targeted. According to media reports, Yahoo, Symantec, Northrop Grumman, Morgan Stanley and Dow Chemical were also among the targets.

Most companies did the typical response by adding more firewalls and more rules and instigating Multi-Factor Authentication. These additional barriers create a poor User Experience which required multiple administrative requests and user confusion. Google began an internal initiative (BeyondCorp) to reimagine their security architecture with regards to how employees and devices access internal applications.

More Information#

There might be more information for this subject on one of the following: