The Enterprise Security Supersite NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
Home Network Security Viruses & Malware Cybercrime Security Solutions More Topics...
GET RECOGNIZED
Let an ISACA® certification elevate your career.
Register today and save
You are here: Home / Data Security / Report Ties Attacks to China Military
DDoS Protection Powered By Verisign
Security Firm Ties Cyber-Attacks to China Military Unit
Security Firm Ties Cyber-Attacks to China Military Unit
By Jennifer LeClaire / Enterprise Security Today Like this on Facebook Tweet this Link thison Linkedin Link this on Google Plus
PUBLISHED:
FEBRUARY
19
2013


The Chinese military appears to be hacking into U.S. interests. Mandiant, a security firm The New York Times hired, just released a 60-page report that alleges members of "Comment Crew" and "Shanghai Group" have been tied to a 12-story building that's connected with the People's Liberation Army Unit 61398.

Mandiant's analysis led the firm to conclude that the APT1, a prolific cyber-espionage group that has conducted attacks on a number of victims since at least 2006, is likely sponsored by the Chinese government and is one of the most persistent of China's threat actors.

"APT1 focuses on compromising organizations across a broad range of industries in English-speaking countries," Mandiant said. "APT1 has systematically stolen hundreds of terabytes of data from at least 141 organizations."

Possibly Hundreds Involved

According to Mandiant, APT1 maintains an extensive infrastructure of computer systems around the world. In over 97 percent of the 1,905 times Mandiant observed APT1 intruders connecting to their attack infrastructure, APT1 used IP addresses registered in Shanghai and systems set to use the Simplified Chinese language.

The size of APT1's infrastructure implies a large organization with at least dozens, but potentially hundreds of human operators. In an effort to underscore that there are actual individuals behind the keyboard, the Mandiant reveals three personas that are associated with APT1 activity. Mandiant is also releasing more than 3,000 indicators to bolster defenses against APT1 operations.

"These issues with China are escalating, and at some point other countries have to acknowledge what appears to be a foreign country attacking their corporate citizens," said Alex Horan, senior product manager, CORE Security. "It feels like we've reach a tipping point here. The evidence is clear and the U.S. government will have to formally respond."

Jumping the Gun?

Graham Cluley, a senior security analyst at Sophos, said it shouldn't be forgotten that The New York Times was recently hacked and pointed the finger of blame firmly in the direction of China.

In late January, the Times reported criminals had stolen passwords for its reporters and other employees. The Wall Street Journal reported a similar incident the next day. But Cluley is warning to proceed with caution.

"As we've discussed before, attribution is the key problem in these stories. How can you prove that country X was behind an Internet attack rather than, say, a patriotic hacker working from his back bedroom, or a hijacked PC controlled by a hacker in a different country?" Cluley asked in a blog post.

"At the same time, we shouldn't be naive. Countries around the world (not just the Chinese) are using the Internet to spy on each other and gain advantage, whether it be political, financial or military. Mandiant has certainly put together a hefty report -- and it's well worth a read. Naturally, the Chinese government has debunked the claims."

Tell Us What You Think
Comment:

Name:

Like Us on FacebookFollow Us on Twitter
TOP STORIES NOW
MAY BE OF INTEREST
Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.
MORE IN DATA SECURITY
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Dairy Queen Latest Retailer To Report Hack
Known for its hot fries and soft-serve ice cream, Dairy Queen just made cyber history as the latest victim of a hack attack. The fast food chain said that customer data at some stores may be at risk.
 
Lessons from the JPMorgan Chase Cyberattack
JPMorgan Chase is investigating a likely cyberattack. The banking giant is cooperating with law enforcement, including the FBI, to understand what data hackers may have obtained.
 
Who Is the Hacker Group Lizard Squad?
Are they dangerous or just obnoxious? That’s what many are wondering about the hacker group Lizard Squad, which tweeted out a bomb threat that grounded a flight with a Sony exec aboard.
 

Enterprise Hardware Spotlight
AMD's New FX Series CPU Breaks Processing Speed Record
The new FX-8370 processor from Advanced Micro Devices has set a record for silicon processor speed, the company announced. Overclocked, the eight-core chip was measured at 8722.78 MHz.
 
Intel Intros Lightning-Fast PC Processors
Call it extreme. Intel just took the covers off its first-ever eight-core desktop processor, which is aimed at hardcore power users who expect more than the status quo from their computers.
 
HP Previews ProLiant Gen9 Data Center Servers
Because traditional data center and server architectures are “constraints” on businesses, HP is releasing new servers aimed at faster, simpler and more cost-effective delivery of computing services.
 

Mobile Technology Spotlight
Rumor Mill Puts Mobile Wallet in iPhone 6
Apple is moving toward the mobile wallet world with its next iPhone. The tech giant has partnered with retailers, banks and major payment networks to make it happen, according to Bloomberg.
 
Will iPhone Finally Catch Up with NFC Mobile Payment Ability?
Apple's latest version of the iPhone may have a mobile wallet to pay for purchases with a tap of the phone. The iPhone 6 reportedly is equipped with near-field communication (NFC) technology.
 
Visual Search To Shop: Gimmick or Game Changing?
Imagine using your phone to snap a photo of the cool pair of sunglasses your friend is wearing and instantly receiving a slew of information about the shades along with a link to order them.
 

Navigation
Enterprise Security Today
Home/Top News | Network Security | Viruses & Malware | Cybercrime | Security Solutions | Mobile Security | Disaster Recovery | Windows Security
Data Security | EST Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.