 |
China's PLA Unit 61398 Working On Kuang Grade Mark Eleven Penetration Program
Substantial digital forensic evidence links the headquarters of China's People's Liberation Army unit 61398 with a multi-year effort to hack into the computer systems of American military units and corporations. Now, it appears that this group is attempting to break into the infrastructure that controls America's electrical power, gas lines and waterworks.
(Headquarters of China's PLA unit 61398 in Shanghai)
An unusually detailed 60-page study, to be released Tuesday by Mandiant, an American computer security firm, tracks for the first time individual members of the most sophisticated of the Chinese hacking groups — known to many of its victims in the United States as “Comment Crew” or “Shanghai Group” — to the doorstep of the military unit’s headquarters. The firm was not able to place the hackers inside the 12-story building, but makes a case there is no other plausible explanation for why so many attacks come out of one comparatively small area...While Comment Crew has drained terabytes of data from companies like Coca-Cola, increasingly its focus is on companies involved in the critical infrastructure of the United States — its electrical power grid, gas lines and waterworks. According to the security researchers, one target was a company with remote access to more than 60 percent of oil and gas pipelines in North America. The unit was also among those that attacked the computer security firm RSA, whose computer codes protect confidential corporate and government databases.
Mandiant's report is available online; here are some of their conclusions:
The nature of “Unit 61398’s” work is considered by China to be a state secret; however, we believe it engages in harmful “Computer Network Operations.”
» Unit 61398 is partially situated on Datong Road (大同路) in Gaoqiaozhen (高桥镇), which is located in the Pudong New Area (浦东新区) of Shanghai (上海). The central building in this compound is a 130,663 square foot facility that is 12 stories high and was built in early 2007.
» We estimate that Unit 61398 is staffed by hundreds, and perhaps thousands of people based on the size of Unit 61398’s physical infrastructure.
» China Telecom provided special fiber optic communications infrastructure for the unit in the name of national defense.
» Unit 61398 requires its personnel to be trained in computer security and computer network operations and also requires its personnel to be proficient in the English language.APt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.aPt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.
» Once APT1 has established access, they periodically revisit the victim’s network over several months or years and steal broad categories of intellectual property, including technology blueprints, proprietary manufacturing processes, test results, business plans, pricing documents, partnership agreements, and emails and contact lists from victim organizations’ leadership.
» APT1 uses some tools and techniques that we have not yet observed being used by other groups including two utilities designed to steal email — GETMAIL and MAPIGET.
» APT1 maintained access to victim networks for an average of 356 days. The longest time period APT1 maintained access to a victim’s network was 1,764 days, or four years and ten months.
» Among other large-scale thefts of intellectual property, we have observed APT1 stealing 6.5 terabytes of compressed data from a single organization over a ten-month time period.
» In the first month of 2011, APT1 successfully compromised at least 17 new victims operating in 10 different industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.aPt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.
» Once APT1 has established access, they periodically revisit the victim’s network over several months or years and steal broad categories of intellectual property, including technology blueprints, proprietary manufacturing processes, test results, business plans, pricing documents, partnership agreements, and emails and contact lists from victim organizations’ leadership.
Fans of sf author William Gibson recall that the Chinese intrusion programs were the best technology you could get:
`What is this thing?' he asked the Hosaka. `Parcel for me.'
`Data transfer from Bockris Systems GmbH, Frankfurt, advises, under coded transmission, that content of shipment is Kuang Grade Mark Eleven penetration program. Bockris further advises that interface with Ono-Sendai Cyberspace 7 is entirely compatible and yields optimal penetration capabilities, particularly with regard to existing military systems...'He slotted the Chinese virus, paused, then drove it home.
`Okay,' he said, `we're on..."
`Christ on a crutch,' the Flatline said, `take a look at this.'
The Chinese virus was unfolding around them. Polychrome shadow, countless translucent layers shifting and recombining. Protean, enormous, it towered above them, blotting out the void.
`Big mother,' the Flatline said.
(Read more about Gibson's Kuang Grade Mark Eleven Penetration Program)
Via NYTimes; be sure to download this report from Mandiant - Exposing One of China’s Cyber Espionage Units.
Scroll down for more stories in the same category. (Story submitted 2/19/2013)
Follow this kind of news @Technovelgy.| Email | RSS | Blog It | Stumble | del.icio.us | Digg | Reddit |
Would
you like to contribute a story tip?
It's easy:
Get the URL of the story, and the related sf author, and add
it here.
Comment/Join discussion (Back On) ( 1 )
Related News Stories - (" Computer ")
Fujitsu Touchscreen Mixes Real And Virtual Worlds
'His hands flashed over the keyboard - it had not been there a moment before, but it was operative...'- Frederik Pohl, 1965.
Nanowire Memristor Networks Form 'Brains'
'He had constructed ... a brain, of metal... whose atomic structure he claimed was analogous to the atomic structure of a living brain.'- Edmond Hamilton, 1926.
US Census Will Be Online In 2020
'Most would be in English, but some would be in Spanish, some in Amerind languages, some in Chinese...'- John Brunner, 1975.
Wireless Brain-Computer Interface
'I used my implant to tell MILLIE [a mainframe computer] what we wanted and she took care of it," Art said.'- Pournelle and Niven, 1981.
Technovelgy (that's tech-novel-gee!) is devoted to the creative science inventions and ideas of sf authors. Look for the Invention Category that interests you, the Glossary, the Invention Timeline, or see what's New.
Current News
German Firm Seeks To Recruit Autistics
Not a deficit, but a strength.
NASA Supports Pizza Printer
Is it extra with printed pepperoni?
Could Ground-Based Lasers De-Orbit Space Junk?
'Then their lasers vaporized the smaller satellites...'
'Hello, Computer!' Google Now Highlighted at IO13
'Hello, computer!'
MIT Robot Cheetah Video Shows Gait Transition
'The legs are long, curled way up to deliver power, like a cheetah's.'
TrackingPoint Smart Rifle
Not your typical 'smart bullet' approach.
Sky City's 220 Stories Are Go
'It rested among green parklands and... stood in total isolation, a glittering block of whites and flashing windows dotted with colors.'
CARMAT Bioprosthetic Total Human Heart Replacement
'George Walt's corporate existence proved the workability of wholly mechanical organs...'
Personal Sniffer Robots
'...The ticking combinations of the olfactory system of the hound.'
Physical Exam? We've Got Apps
See the future of handheld, personal medical devices.
The Interplanetary Internet, Vint Cerf Speaking
'This was the center of Interplanetary Communications.'
Drosophila Robotica, The Mechanical Fly
'... the Scarab [flying robot] buzzed into the great workroom as any intruding insect might...'
Robo-Raven Flapping Wing Robot Bird
'When he had first built them, they had been crude indeed, flying mechanisms with little more than a reflex-response unit.'
Japan's Nursing Home Robot Plan
Let's make the Roujin Z-0001 Robotic Bed!
Samsung Smart TVs With Gesture Control
'He waved his hand and the circuit switched abruptly.'
Swiss HCPVT Giant Photovoltaic 'Flower'
'...leaning against one of the slender stalks of a sunshade-photocell collector.'
