China · Computer Security

China Women Dating


If you’ve read my blog for a while you know I’ve been to China a few times, conducting research, doing interviews, giving the occasional speech and hopefully Screen shot 2013-03-28 at 2.09.35 PMdiscovering what the Chinese are actually doing about cyberwar and information warfare.  Those are my goals, at least.  When I’m not in China I research mostly via online articles, online discussion groups, academic articles, phone calls and emails to Chinese experts.

Two weeks ago the Mandiant report was published and like anyone with an interest in the report, I read it and as much online analysis as I could.  I never read any reports on any Chinese websites.  I did, however, click on one link which showed me the exact location of the 61398 building in the Pudong district of Shanghai (which is quite beautiful, I’ve seen it from across the river) and looked on it using Google, not Google.cn or Google.hk.  That was the extent of my computer ‘intrusions’ into China.  I do have a few friends in China but I’ve never had an attachment from them.  Darn sure I wouldn’t open it either!

Then, two weeks ago, an unusual event happened.  First, since I have a Mac running some unusual browsers, I seldom get a pop-up screen.  But one popped up.  Imagine my surprise when the popup window was an ad for Chinese dating site called ChineseWomenDating.com

I analyzed what I had done to cause such a pop-up window.  I wasn’t physically located inside China, so that did not apply. I hadn’t visited any .cn websites in recent history (not in the last six months), so I could probably discount that.  I don’t download a lot of documents with a subject of China.  I don’t concentrate on Chinese information warfare or cyber espionage in my research, that’s all just dumb luck.  Actually, most of the email I receive is about general cyber this and cyber that.   But somehow I must have a cookie on my system which indicates I have an interest in dating Chinese women. At least they got it correct that I’m straight!  Oh, and just to clear the record, I’m happily married.

I put a screenshot above, I found it fascinating.

What does that leave me?  Well…  I am one of those folks who always says “I assume I am hacked”.   So, five times in the past two weeks this exact same pop-up ad has popped up on my system.  I’m now going to assume someone conveniently got onto my system and left me a present.  A rootkit, a keyboard logger or some such nonsense.   I went through a friend’s system once, about ten years ago, and uncovered a keyboard logger there.  It’s time consuming and I’m not sure if it’s worth the effort but I’ll take a run at it this weekend.

But I believe it is some sort of an Advanced Persistent Threat.

Let’s say it was a rootkit.  I have a Mac running OS X (one of the new ones, like Cheetah or Cougar or something).  How do I find it?  I need suggestions from you, gentle readers.  Help?

2 thoughts on “China Women Dating

  1. I’m getting this popup too. I’m on a Mac, using Chrome, and when I click on a link that would normally send me to a YouTube video, this same ad pops up. I’ve been to China once, but that was years ago and I didn’t have this machine at the time. Though, I am in a college dorm sharing a wifi network with several people who’ve immigrated from China in the last three years, and may have visited recently. What the hell is causing this? Could whatever it is be infectious enough to spread over a wireless network like EduRoam?

    1. I believe it’s cookies from any Chinese site you might have visited, an IP address from emails, who knows? I had an add-on which told me all the websites that shared my information, and quite a few were Chinese. In today’s interconnected world there are untold numbers of connections to China. As recently as yesterday I had Chinese dating ads popping up on my browsers.

Comments are closed.