A new report links a major spree of business hacking to a single unit of the Chinese army. Here's what the new era of spying means for cyberdefense.
Posted 02.19.2013 at 5:45 pm
7 Comments
Shanghai skyline at night
It is believed that China's Unit 61398 is based in Shanghai.
Wikimedia Commons
This morning, private cybersecurity firm Mandiant released a report tying 141 computer attacks since 2007 to a single 12-story office building in Shanghai. That building is believed to be the headquarters of Chinese Army Unit 61398. The New York Times commissioned the report and posted a detailed article about the findings last night.
Because it reveals to attackers exactly what the defense knows, the publication of this kind of security report is very rare--especially when the report addresses the computer security of private businesses like The New York Times (which announced January 30 that it had been the victim of cyberattacks over the past four months). Such reports also make it harder to detect the same kind of attacks in the future, as hostile hackers adapt around defenses. In this case, however, both The New York Times and Mandiant felt it was important to publicize the style, national origins, and magnitude of these attacks. They hope to alert the private sector to its shared vulnerabilities, as well as to highlight the single source (the Chinese military) launching the attacks.
The Chinese government has denied responsibility for the attacks, but the hacking focused on information technology, high-end electronics, biotechnology, and transportation--all industries that China has previously identified as national priorities.
Government-linked hackers and attacks against companies like The New York Times are the future of espionage. Fortunately, the Obama administration seems to recognize that: The President announced a new cyber defense initiative aimed at better coordinating information about cyber attacks between intelligence and business, and US Cyber Command is on a major hiring spree.
But before treating this as some form of cyberwar, let's keep in mind that the goal was information theft, not property destruction. This is espionage, not sabotage. By publishing their security report, Mandiant and The New York Times are trying to deny government-linked hackers the safe cover of national deniability.
7 Comments
To comment, please Login.
Popular Tags
Technology
|
|
|
|
|
|
June 2013: American Energy Independence
Five amazing, clean technologies that will set us free, in this month's energy-focused issue. Also: how to build a better bomb detector, the robotic toys that are raising your children, a human catapult, the world's smallest arcade, and much more.
Popular on Popsci
Most Commented
Technology
- This Newer, Stronger 3-D Printed Gun Costs Just $25
- Autonomous X-47B Jet Fighter Makes Historic First Launch From An Aircraft Carrier
- Russia Is Building Robots To 'Neutralize' Terrorists
- How To Turn An AK-47 Into A Soup Ladle
- America's Road To Energy Independence, Part 1
- Mapping The Simpsons' Slow Descent Into Suckitude
- Iran Unveils Absurd New Stealth Drone
- High School Student Wins Hackathon With A Tool That Blocks TV Spoilers
- 7 Reasons Why 'Star Trek Into Darkness' Is A Beginner's Guide To Star Trek [Spoiler Alert]
- Navy Completes First Flight Of Game-Changing MQ-4C Triton Spy Drone [Video]
Most Emailed
Technology
- The World's Most Expensive Weapon Just Got A Little Cheaper
- Will Google (And The US Government) Permit Google Glass To Recognize Faces On Sight?
- Big Pic: Hubble Space Telescope Captures The Ring Nebula In Astonishing Detail
- Robotic Kite Power Could Turn The Sky Into A Wind Farm
- These 11 Robot Bartenders Will Get You Drunk
- 11 Robot Bartenders That Will Get You Drunk
- Brazilian Government Invests In Robocops To Prep For World Cup, Olympics
- The BBC's New Radio Can Alter Broadcasts Based On Who's Listening
- Social Media Replaces Police Missing Persons Searches In France
- New Water-Repellant Fabric Is Like A Second Skin
Most Viewed
Technology
- The World's Most Expensive Weapon Just Got A Little Cheaper
- Will Google (And The US Government) Permit Google Glass To Recognize Faces On Sight?
- Big Pic: Hubble Space Telescope Captures The Ring Nebula In Astonishing Detail
- Robotic Kite Power Could Turn The Sky Into A Wind Farm
- These 11 Robot Bartenders Will Get You Drunk
- 11 Robot Bartenders That Will Get You Drunk
- Brazilian Government Invests In Robocops To Prep For World Cup, Olympics
- The BBC's New Radio Can Alter Broadcasts Based On Who's Listening
- Social Media Replaces Police Missing Persons Searches In France
- New Water-Repellant Fabric Is Like A Second Skin
Online Content Director: Suzanne LaBarre | Email
Senior Editor: Paul Adams | Email
Associate Editor: Dan Nosowitz | Email
Assistant Editor: Colin Lecher | Email
Assistant Editor: Rose Pastore | Email
Contributing Writers:
Kelsey D. Atherton | Email
Francie Diep | Email
Shaunacy Ferro | Email
Today on PopSci.com
Copyright © 2012 Popular Science
A Bonnier Corporation Company. All rights reserved. Reproduction in whole or in part without permission is prohibited.
Microwave the site from space. There's an old Chinese proverb that goes something like this "If you know where the flees are on a dog, kill the dog the fleas are still there, kill the fleas the dog is still there. However if you cook the dog the fleas will die while you satisfy your appetite.
Im not sure I understand why the gov is making all of this known.... Are they trying to get Americans worked up and pissed off about a cyber threat?
Why not just do some cyber espionage, why let this info out now? I assume we have a James bond, why not drop him outside the front door and let him f*ck and murder his way to the 12th floor, to presumably fight a boss.
But seriously could somone fill me in on what benefits we get out of telling the Chinese "We know what you are doing and we know how youre operating".
5 Bucks says that building is completely empty now.
Wanamingo, you are now my favorite person.
@Wanamingo
The report was released by a private security firm. Private, meaning not associated with the US government.
Also, their purpose is explicitly stated on page 5 of the report.
@ Wanamingo; Why alert the Chinese to the fact that we know? If they are moving their attack apparatus to a new location and hiding their next attack method for dissemination and use until they get set up again, we buy time. They lose time. We make them cycle out of attack, to defense.
Those people are gonna piss me off, and I'm gonna tell our government how to wreck their whole game board. Every goddamn system in that nation.