China's Baidu sues US domain registrar over attack

China's Baidu sues US domain registrar over attack

Summary: Leading Chinese search engine has filed a lawsuit that blames a US-based internet domain registrar for allegedly allowing a hacking attack that left the site disabled and defaced.

Leading Chinese search engine has filed a lawsuit that blames a US-based internet domain registrar for allegedly allowing a hacking attack that left the site disabled and defaced.

Baidu filed the suit in New York on against, claiming the domain registrar's "gross negligence" lead to the search giant being "unlawfully and maliciously altered", the company said in a statement on Tuesday.

Baidu's site was disabled for several hours January 12, and visitors were re-directed to a site where a group calling itself the Iranian Cyber Army claimed responsibility for the attack. The same group had taken credit for a similar attack on Twitter in December.

Baidu said its Chinese site — — was unaffected by the outage. Baidu controls about 62.2 percent of the Chinese search market compared with Google's 14.1 percent, according to ComScore numbers for November 2009.

For more on this story, read " sues US domain registrar over hacking" on CNET News.

Topics: Legal, Browser, Security, China

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • Well, now they know how the rest of the world feels... (NT)

    Hallowed are the Ori
  • Hypocrisy ....

    The world's leading source-country for cyber-crap gets a dose of their own chicanery and can't wait to run to a US court and sue.

    But make it impossible to do the same thing to entities in their own country, including their government.

  • What's sauce for the goose

    is sauce for the gander. Those who think that all such attacks or a majority of them come from China are deluding themselves - wittingly and unwittlingly - and trying to do so to the rest of us as well....

  • Master Joe Says...

    This is the pot calling the kettle black, if there ever was such a thing. I can say that my sympathy for Baidu is 0%. Don't go blaming someone (especially if the attack is carried out by Iranians), when your own people are responsible for more cybercrime than any other country in the world. That would be like Obama suing an elephant for having big ears.

    --Master Joe
  • Reality Check

    Factoring out whose Website got hacked, defaced, or attacked, and factoring out by whom, is suing the domain registrar typical? In other words, is Baidu's response way out of the norm?

    If it is typical, then let's keep the China bashing to ourselves. If it's out of the norm, then these sentiments about "what goes around, comes around" are fair.
  • Red herring

    Who do they want to fool? Weren't all the previous attacks by this so-called "Iranian Cyber Army" originated from China and targeted sites used by Iranian people to break the Iranian government's stranglehold on the media - dissidents' sites as well as social media sites such as Facebook and Twitter?

    Now that those attacked sites started to take legal action against the Chinese, the Chinese react by hacking their own site!!
  • Can you say hypocrites? (nt)

  • I guess they could have a case if the DNS pointers were somehow affected.

    No details provided, so it is really had to speculate.

    Otherwise, its pointless.
  • Hackers should do this to China more often (nt)

  • Seems fair to me....

    Google blaming the Chinese government for being hacked...

    Baidu blaming the registrar for being hacked...

    There point here being if Google can blame anybody without sufficient evidence, then I guess it's fair game for anyone else.

    BTW, just because Google says that the hacked gmail accounts were those of human rights activists doesn't automatically make the Chinese government guilty.
    • After the outed activist's organs are harvested, sold to rich westerners

      Who will be left to speak up for the oppressed? You?

      Yep Goog just snatched the china accusation out from their behind. Not by using network investigative tools. If you don't believe the Communist Chinese Govt. has many server farms dedicated to the theft of the worlds Private, Govt, and Military IP. Then you're either insincere or not too smart. These attacks targeted individuals, on a personal level. There was some real 007 James Khan shite going on here. Including double agent insider types working for the Chin Govt, employed at

      We know for a fact, now, Chinese agents have been working at and stealing secrets from Los Alamos National Laboratory since at least the 1980s. Now Chairman Mao can put multiple nuke warheads on his missles. Hooray for progress.

      Chinese blatant, in your face, knockoff manufacturing of brand name products, rival and often exceed what actual companies can produce. Denying they would use the internet in this fashion is either subterfuge or ignorance.

      Are you a spy trying to deflect us from the truth? Or just not very smart?
  • Pfft !

    Tell 'em they can take it out of the copyright violation settlement pool that China is waiting to hand over to all the US companies who've been victims of knock-off goods.
  • RE: China's Baidu sues US domain registrar over attack

    FUGG CHINA! They are Responsible for a LOT of the pain in da azz stuff going aroung right now! GOOGLE PULL OUT OF CHINA!
  • Frivilous Chinese PR - You blabbed our domain name

    Typical inept Chinese attempt at war of "losing face". They just do not understand the word plausible or some top Chinese Internet managers do not know basic Internet technology .

    Domain registrars only control who owns domain names. LOL many do not even run name servers to match domain names to IPs.

    The idea of SECRET but reserved domain names is sort of silly and pointless, the feeblest of security through obscurity with total reliance on obscurity. Apparently they expected to spread the domain name only by word of mouth and that the news media would not leak the name.

    The nation that claims the history of building the Great Wall ought to think about simple use of firewall blocking at their Internet portals to the world. At least implement their simplistic access ideas in firewall rules that allow in country only trusted (whitelisted) agents from outside China by IP. Still not secure but taking some of the responsibility.
    • Don't HELP Them!

      The Chinese government is an evil dictatorship.
      The latest incident with them hacking into Gmail
      has made this, I hope, more obvious to more

      So don't help them in any way.

      Then again, I have to admit: I don't know the
      technology well enough to know whether your
      "simplistiic access ideas" suggestion is help or
      a false lead.

      Please feel free to give them false leads at any
  • RE: China's Baidu sues US domain registrar over attack

    Yeah? I always buy my counterfeit software in Broadway NY.

    "The Chinese government is an evil dictatorship."
    Now there you have me Bushed, but true facts talk for themselves.
    Invasions of foreign countries in the past 50 years:
    USA 101 China nil
    • True . . . sort of

      Generally, you're correct. The Chinese government prefer to run roughshod over its own people so invasion of another country isn't their style. But, it takes a significantly myopic view of the world to presume that the only form of invasion requires military might, guns, tanks, and aircraft. When it comes to espionage, theft of trade, and borrowing intellectual property, the Chinese have it over us. In spades.
  • RE: China's Baidu sues US domain registrar over attack

    Yeah, I'm sure that's what happened by the article. That
    would be the only way the registrar could be held
    responsible, and the article does mention that the users
    were "redirected" so seems like the case to me.
  • Baidu should go directly after the attackers

    let's see them get recompense.
  • RE: China's Baidu sues US domain registrar over attack

    HACK HACK HACK. I don't know what anyone gets out of HACKING anyway. If more people used their common sense by not placing their personal info directly on their computer, and no use of personal bank accounts online, who cares about the hackers. All they will be able to steal is your Windows wallpaper