Check Out What Really Happened

Report identifies widespread cyber-spying

By Ellen Nakashima, Published: August 2


A leading computer security firm has used logs produced by a single server to trace the hacking of more than 70 corporations and government organizations over many months, and experts familiar with the analysis say the snooping probably originated in China.

Among the targets were the Hong Kong and New York offices of the Associated Press, where unsuspecting reporters working on China issues clicked on infected links in e-mail, the experts said.



Other targets included the networks of the International Olympic Committee, the United Nations secretariat, a U.S. Energy Department lab, and a dozen U.S. defense firms, according to a report to be released Wednesday by McAfee, a security firm that monitors network intrusions around the world.

McAfee said hundreds of other servers have been used by the same adversary, which the company did not identify.

But James A. Lewis, a cybersecurity expert at the Center for Strategic and International Studies, said “the most likely candidate is China.” The target list’s emphasis on Taiwan and on Olympic organizations in the run-up to the Beijing Games in 2008 “points to China” as the perpetrator, he said. “This isn’t the first we’ve seen. This has been going on from China since at least 1998.”

Another computer expert with knowledge of the study, who spoke on the condition of anonymity out of reluctance to blame China publicly, said the intrusions appear to have originated in China.

The intruders were after data on sensitive U.S. military systems, as well as material from satellite communications, electronics, natural gas companies and even bid data from a Florida real estate company, McAfee said. Forty-nine of the 72 compromised organizations were in the United States.

“We’re facing a massive transfer of wealth in the form of intellectual property that is unprecedented in history,” said Dmitri Alperovitch, McAfee’s vice president of threat research. He would not name the private entities targeted, but said McAfee helped half a dozen of them investigate intrusions.

Some of the intrusions — such as one into the World Anti-Doping Agency in Montreal — are continuing, he said. Spokesmen for that organization and for the International Olympic Committee said they were not aware of the intrusions. A U.N. spokesman said technicians analyzing the logs have not seen evidence of stolen data. The Energy Department had no comment.

According to the report, which does not identify the AP by name, the organization’s New York office was targeted in August 2009 in an intrusion that lasted, on and off, for eight months. Its Hong Kong bureau was penetrated at the same time, in an intrusion that continued for 21 months.

AP spokesman Jack Stokes said the company was aware of the report. “We do not comment on network security,” he said.

The Associated Press has been targeted before. A March 2009 report by Canadian researchers about allegations of Chinese espionage against the Tibetan community found that computer systems in AP offices in Hong Kong and Britain had been compromised.

 McAfee had been aware for years of a “command and control” server located in a Western country that was used to control malware deployed on target computers. But the firm just recently discovered that the hackers had made a tradecraft mistake, configuring the server to generate logs that identified every Internet protocol address the server had controlled since 2006.

Google’s disclosure early last year that hackers in China had broken into its networks and stolen valuable source code was a watershed moment: A major U.S. company volunteered that it had been hacked. Google also said that more than 20 other large companies were similarly targeted.

Scott Borg, chief economist at the U.S. Cyber Consequences Unit, a research group, has assessed the annual loss of intellectual property and investment opportunities across all industries at $6 billion to $20 billion, with a big part owing to oil industry losses. These firms spend hundreds of millions of dollars to explore oil fields before bidding on them, Borg said.

One measure of pain came recently when EMC Corp. disclosed that it had taken a $66 million charge to cover remediation costs associated with a March intrusion of its RSA division. That intrusion, which industry experts say appeared to have originated in China, resulted in the compromise of RSA’s SecurID computer tokens that companies and governments worldwide use to log on remotely to workplace systems.

As a result of the compromise, at least a dozen major financial institutions are switching to other vendors, said Gary McGraw, chief technology officer at Cigital, a security firm that works with banks. Stina Ehrensvard, chief executive of YubiKey in Palo Alto, Calif., said at least 25 firms have switched to YubiKey or are testing its token as a result of the RSA breach.

Staff researcher Julie Tate contributed to this report.

http://www.washingtonpost.com/national/national-security/report-ide...

Views: 36

Comment

You need to be a member of 12160 Social Network to add comments!

Join 12160 Social Network

 

 

Latest Activity

Boris Badenov commented on Sweettina2's video
4 minutes ago
Profile Icon via Twitter
Orange Man Bad: For #NPC's the struggle is real There is a war on for your Meme https://t.co/C3lhHgBmgx
Twitter38 minutes ago · Reply · Retweet
Profile Icon via Twitter
The #Fauxcahontas Folly just keeps getting better and better.▼ https://t.co/kzCPeBHbIP Warren DNA test does NOT pr… https://t.co/besmMASE9b
Twitter51 minutes ago · Reply · Retweet
Chris of the family Masters posted a blog post

A universal flu vaccine: the mad science solution

The National Institute of Allergy and Infectious Diseases (NIAID) has launched efforts to create a vaccine that would protect people from most flu strains, all at once, with a single shot.Over the years, I’ve written many articles refuting claims…See More
52 minutes ago
Profile Icon via Twitter
Twitter1 hour ago · Reply · Retweet
Chris of the family Masters replied to Fat Freddys Cat's discussion Applause & bashing on Twitter after transgender woman wins female cycling world championship
"It's never man to woman in sport, strange eh...."
1 hour ago
Doc Vega commented on Doc Vega's blog post More Classified E-Mails and revelations on Benghazi!
"Fuckin hilarious Central Scrutinizer I'd pay for a seat at that matinee!"
1 hour ago
Boris Badenov commented on Boris Badenov's page "Math Correction" Confirms Warren Could Be 0.001% Native American
"- Obama 65 percent white"
1 hour ago
Thomas Less posted a blog post

Daily Verse

But now, this is what the Lord says— he who created you, Jacob, he who formed you, Israel: “Do not fear, for I have redeemed you; I have summoned you by name; you are mine. When you pass through the waters, I will be with you; and when you pass…See More
2 hours ago
Boris Badenov posted a photo

Among the Ruins of Mexico Beach Stands One House, Built ‘for the Big One’

“We wanted to build it for the big one,” he said. “We just never knew we’d find the big one so fast.”…
2 hours ago
Boris Badenov commented on Boris Badenov's page LEAKED: Hillary Clinton's 2020 Campaign Commercial
"fuunnny"
2 hours ago
Profile Icon via Twitter
RT @titanmaximum2: @12160mhz CNN changed it's name to CNPC https://t.co/FVR8nMCzP2
Twitter3 hours ago · Reply · Retweet
raymond moody posted photos
3 hours ago
Fat Freddys Cat posted discussions
5 hours ago
Chris of the family Masters commented on Fat Freddys Cat's blog post The Quiet Epidemic With Allona Lahn
"'I do not consent to my child being injected with toxic chemicals'"
7 hours ago
cheeki kea favorited Doc Vega's blog post Never Forget Benghazi and Why Democrats Should Never Be in Charge!
7 hours ago
cheeki kea commented on Fat Freddys Cat's blog post The Quiet Epidemic With Allona Lahn
"wow..I want to make a comment, but I don't what to say. These links lead to the saddest posts I've ever seen. We should warn all parents we know and ask if they would be willing to view some information, like this. "
7 hours ago
cheeki kea favorited Fat Freddys Cat's video
8 hours ago
cheeki kea commented on cheeki kea's photo
Thumbnail

Queers Crossing

"These queer cops and town planners and Govt endorsers get special dispensation from kosher-ness. (if for the 'greater good' "by any means possible'. "To meet the agenda".) The only good thing about the Capital city is,…"
8 hours ago
Chris of the family Masters commented on cheeki kea's photo
Thumbnail

Queers Crossing

"They'll have to make up their minds. Queer freemasons doesn't look kosher...."
9 hours ago

Please remember this website is supported by your donations...

© 2018   Created by truth.   Powered by

Badges  |  Report an Issue  |  Terms of Service

content and site copyright 12160.info 2007-2015 - all rights reserved. unless otherwise noted