Twitter bots target Tibetan protests
Brian Krebs
March 22, 2012
A young Free Tibet supporter protests outside the White House, Sunday, February 12, 2012, in Washington.
A Free Tibet supporter protests outside the White House in Washington last month. Photo: Carolyn Kaster/AP
Twitter bots — zombie accounts that auto-follow and send junk tweets hawking questionable wares and services - can be an annoyance to anyone who has even a modest number of followers. But increasingly, Twitter bots are being used as a tool to suppress political dissent, as evidenced by an ongoing flood of meaningless tweets directed at hashtags popular for tracking Tibetan protesters who are taking a stand against Chinese rule.
It's not clear how long ago the bogus tweet campaigns began, but Tibetan sympathisers say they recently noticed that several Twitter hashtags related to the conflict - including #tibet and #freetibet — are now so constantly inundated with junk tweets from apparently automated Twitter accounts that they have ceased to become a useful way to track the conflict. Hashtags embedded in Twitter posts make it easier for people to search particular subjects.
The discovery comes amid growing international concern over the practice of self-immolation as a means of protest in Tibet. According to the Associated Press, about 30 Tibetans have set themselves on fire since last year to protest suppression of their Buddhist culture and to call for the return of the Dalai Lama - their spiritual leader who fled during a failed 1959 uprising against Chinese rule.
Advertisement: Story continues below
I first heard about this trend from reader Erika Rand, who is co-producing a feature-length documentary about Tibet called State of Control. Rand said she noticed the tweet flood and Googled the phenomenon, only to find a story I wrote about a similar technique deployed in Russia to dilute Twitter hashtags being used by citizens protesting last year's disputed parliamentary elections there.
"We first discovered these tweets looking at Twitter via the web, then looked at TweetDeck to see how quickly they were coming," Rand said in an email to KrebsOnSecurity.com late last week. "They no longer appear when searching for Tibet on Twitter via the web, but are still flooding in fast via TweetDeck. This looks like an attempt to suppress news about recent activism surrounding Tibet. We're not sure how long it's been going on for. We noticed it last night, and it's still happening now."
Denis Sinegubko, the Russian security blogger I corresponded with during the Twitter bot campaign against anti-Kremlin activists last year, said the Twitter accounts being used to flood Tibetan hashtags have all the hallmarks of Twitter bots.
"A brief analysis of the 'accounts' that use these hashtags suggests that they are spam bots: too many messages with the same hashtags in a very short time – unlikely to be humans," Sinegubko said.
Twitter was very responsive to the botted accounts being used to drown out hashtags following the disputed Russian elections, but these anti-Tibetan Twitter bots appear to have flown under the radar so far.
When I checked the situation Monday evening, the bunk tweets aimed at popular Tibetan hashtags were still going strong. It's not immediately clear how many apparently botted accounts are being used to blast these tweets; most of them have zero - if any - followers, and are following very few other accounts. Twitter has been notified about a couple of dozen accounts that appear to be the source of most of these junk messages.
Update: Several security firms are reporting that a backdoor Trojan targeting Mac users via a Java vulnerability has been observed in email attacks against non-governmental organisations related to Tibet. More information from SecureMac and AlienVault.
Twitter bots target Tibetan protests
