Submission + - China's national firewall hijacks JavaScript to DDoS GitHub (solidot.org) 3
wzyboy writes: Twitter user @yegle discovers that HTTP requests to a certain JavaScript is being hijacked to some attack code, which will make reqeusts to GitHub. Since the JavaScript is used on many Chinese websites, GitHub is in fact being DDoSed.
This trick is discovered by users when GitHub starts to return alert("WARNING: malicious javascript detected on this domain") in response to these DDoS requests. This will pop up a alert dialog with English text on those Chinese websites.
Just adding a few facts. (Score:2)
2) So far it seems that it's targeting mainly traffic originating from Google's servers which is where many Chinese people deploy their proxy servers to circumvent sensorship. In my case I can see the modified js file if I turn on Data Saver ( an extension that will fetch webpages from Google's servers in order to speed up browsing and save bandwidth) in Chrome but if I access