Dalai Lama's Chinese website infecting visitors' computers, expert warns

Monday, 12 Aug 2013 | 11:49 PM ET
The Dalai Lama
Getty Images | Lisa Maree Williams
The Dalai Lama

A prominent computer security firm has warned that the Dalai Lama's Chinese-language website has been compromised and is infecting visitors' computers with malicious software that could be used for spying on them.

Kaspersky Lab researcher Kurt Baumgartner told Reuters that he is advising web surfers to stay away from the Central Tibetan Administration's Chinese-language site until the organization fixes the bug.

He said he believes the group behind the campaign was also behind previous breaches on the site which have gone unreported as well as attacks on websites belonging to groups that focus on human rights in Asia.

Officials with the Office of Tibet in New York could not be reached for comment. That office houses the Dalai Lama's official representative to the United States.

(Read More: Cyberthreats: Welcome to the New Cold War)

Baumgartner said that the Chinese-language site of the Central Tibetan Administration, which is the official organ of the Dalai Lama's government in exile, has been under constant attack from one group of hackers since 2011, though breaches have been quietly identified and repaired before garnering public attention.

"They have been trying repeatedly to find vulnerabilities in the site," he said.

US Pressures China -- Wants Hacker Crackdown
CNBC's Scott Cohn reports on increasing pressure from the U.S. on China's cyberespionage efforts, Microsoft's Botnet bust and recent increase in spamming for profit.

He said that it is safe to visit the group's English and Tibetan sites.

He said he believes the same group of attackers has repeatedly infected the site with malicious software that automatically drops viruses on computers running Microsoft's Windows and Apple's Mac operating systems. They infect machines by exploiting security bugs in Oracle's Java software.

(Read More: Hackers Doing No Favors for China's Image)

That gives them "back doors" into those computers. "This is the initial foothold. From there, they can download arbitrary files and execute them on the system," Baumgartner said.

An Oracle spokeswoman had no immediate comment.

The Dalai Lama, Tibet's 78-year-old exiled spiritual leader, fled China to India in 1959 after an abortive uprising against Chinese rule.

Beijing considers the globetrotting monk and author a violent separatist and Chinese state media routinely vilify him. The Dalai Lama, who is based in India, says he is merely seeking greater autonomy for his Himalayan homeland.


Contact Cybersecurity


    Get the best of CNBC in your inbox

    › Learn More
  • Matt Hunter is the senior technology editor at CNBC.com.

  • Cadie Thompson is a tech reporter for the Enterprise Team for CNBC.com.

  • Working from Los Angeles, Boorstin is CNBC's media and entertainment reporter and editor of CNBC.com's Media Money section.

  • Jon Fortt is an on-air editor. He covers the companies, start-ups, and trends that are driving innovation in the industry.

  • Lipton is CNBC's technology correspondent, working from CNBC's Silicon Valley bureau.

  • Mark is CNBC's Silicon Valley/San Francisco Bureau Chief covering technology and digital media.