Subscribe to our mailing list
Show content from Blog | Google+ | Twitter | All. Subscribe to our blog using RSS.

Sat, Apr 18, 2015

Fri, Apr 17, 2015

Twitter: GreatFireChina RT @josephine_witt: so i jump on draghi's desk, and people discuss my undies... #FEMINISM #MORE_FEMINISM ;) retweet
Twitter: GreatFireChina RT @tomgrundy: HK's Foreign Correspondents' Club statement re: China journo Gao Yu 7-yr jail term @fcchk http://t.coretweet
Twitter: GreatFireChina RT @pen_int: #China: Gao Yu sentenced to 7 years in prison for ' leaking state secrets' retweet
Twitter: GreatFireChina RT @amnestypress: #China: Deplorable 7 yrs prison sentence against Gao Yu is an attack on #pressfreedom retweet
Twitter: GreatFireChina RT @ChuBailiang: Chinese Journalist Sentenced to 7 Years on Charges of Leaking State Secrets retweet
Twitter: GreatFireChina RT @samuel_wade: Data analysis on Tibet self-immolations Ducks GFW, like @GreatFireChina, using @github: http://t.c… retweet
Twitter: GreatFireChina China Halts Implementation of Banking-Technology Rules retweet

Thu, Apr 16, 2015

Twitter: GreatFireChina RT @jilliancyork: The Dutch police opened my hotel door and left it open while I was sleeping. #GCCS15 attendees being treated like common… retweet
Twitter: GreatFireChina RT @jilliancyork: Went outside, came back through #GCCS2015 security with my laptop, which they apparently opened and turned off. retweet
Twitter: GreatFireChina RT @legind: My new @EFF post explains how China is willing to hijack your browser to stifle critical voices retweet
Twitter: GreatFireChina RT @jilliancyork: “Let us join hands” on security, says delegate from China. Kumbaya language from state actors. #GCCS2015 retweet

Sat, Apr 04, 2015

CNNIC censors news about their own statement

On April 1, 2015 Google announced that they will no longer recognize the CNNIC Root and EV (extensive validation) certificate authorities (CAs).

On April 2, 2015 Mozilla concluded that CNNIC’s behaviour in issuing an unconstrained intermediate certificate to another company was ‘egregious practice’ and that Mozilla products would no longer trust any certificate issued by CNNIC’s roots. Mozilla also published a more detailed report about their actions.

After unauthorized digital certificates for several Google domains were exposed by Google and Mozilla on March 23, 2015, CNNIC censored any mention of these posts. CNNIC is not only a certificate authority, they are also China’s online censorship apparatus. CNNIC was, is and will continue to practice internet censorship.


News about the April 1 and 2 annoucements has again been censored on social media and also on traditional media in China.

Below is a screenshot of Weibo posts about these announcements.


Tue, Mar 31, 2015

Chinese authorities compromise millions in cyberattacks

The Great Firewall has switched from being a passive, inbound filter to being an active and aggressive outbound one. This is a frightening development and the implications of this action extend beyond control of information on the internet. In one quick movement, the authorities have shifted from enforcing strict censorship in China to enforcing Chinese censorship on internet users worldwide.

Fri, Mar 27, 2015

CNNIC censored Google and Mozilla’s posts about CNNIC CA

This week, Google found unauthorized digital certificates for several Google domains, the root CA of which is CNNIC. Google and Mozilla both publicly disclosed this security incident and published blog posts(Google, Mozilla). However, Chinese translations of Google’s and Mozilla's blog posts were censored on the Chinese Internet.

  • William Long is a prominent Chinese blogger on IT and tech. He translated Google’s security post without adding any personal opinions. The Chinese blogpost ranked #1 when searching CNNIC MITM in Chinese on Google and Baidu. He tweeted that he received a phone call from propaganda department demanding the post to be removed immediately. The post was deleted. Google cache is still available.

Wed, Mar 25, 2015

Evidence shows CNNIC and CAC behind MITM attacks

Since 2013, we have repeatedly called on major software vendors to revoke CNNIC-issued certificates. Most notably, we raised this issue when we reported on the Cyberspace Administration of China’s (CAC) man-in-the-middle (MITM) attacks on Google, Microsoft’s Outlook, Apple, Yahoo and Github. Mainstream media have reported about these security vulnerabilities before and on March 24, Ars Technica reported on Google’s announcement that they have definitive evidence that CNNIC (China Internet Network Information Center) was behind a new MITM attack on Google.

From our October, 2014 blog post: