China's PLA Unit 61398 Working On Kuang Grade Mark Eleven Penetration Program

Substantial digital forensic evidence links the headquarters of China's People's Liberation Army unit 61398 with a multi-year effort to hack into the computer systems of American military units and corporations. Now, it appears that this group is attempting to break into the infrastructure that controls America's electrical power, gas lines and waterworks.


(Headquarters of China's PLA unit 61398 in Shanghai)

An unusually detailed 60-page study, to be released Tuesday by Mandiant, an American computer security firm, tracks for the first time individual members of the most sophisticated of the Chinese hacking groups — known to many of its victims in the United States as “Comment Crew” or “Shanghai Group” — to the doorstep of the military unit’s headquarters. The firm was not able to place the hackers inside the 12-story building, but makes a case there is no other plausible explanation for why so many attacks come out of one comparatively small area...

While Comment Crew has drained terabytes of data from companies like Coca-Cola, increasingly its focus is on companies involved in the critical infrastructure of the United States — its electrical power grid, gas lines and waterworks. According to the security researchers, one target was a company with remote access to more than 60 percent of oil and gas pipelines in North America. The unit was also among those that attacked the computer security firm RSA, whose computer codes protect confidential corporate and government databases.

Mandiant's report is available online; here are some of their conclusions:

The nature of “Unit 61398’s” work is considered by China to be a state secret; however, we believe it engages in harmful “Computer Network Operations.”
» Unit 61398 is partially situated on Datong Road (大同路) in Gaoqiaozhen (高桥镇), which is located in the Pudong New Area (浦东新区) of Shanghai (上海). The central building in this compound is a 130,663 square foot facility that is 12 stories high and was built in early 2007.
» We estimate that Unit 61398 is staffed by hundreds, and perhaps thousands of people based on the size of Unit 61398’s physical infrastructure.
» China Telecom provided special fiber optic communications infrastructure for the unit in the name of national defense.
» Unit 61398 requires its personnel to be trained in computer security and computer network operations and also requires its personnel to be proficient in the English language.

APt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.

» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.aPt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.
» Once APT1 has established access, they periodically revisit the victim’s network over several months or years and steal broad categories of intellectual property, including technology blueprints, proprietary manufacturing processes, test results, business plans, pricing documents, partnership agreements, and emails and contact lists from victim organizations’ leadership.
» APT1 uses some tools and techniques that we have not yet observed being used by other groups including two utilities designed to steal email — GETMAIL and MAPIGET.
» APT1 maintained access to victim networks for an average of 356 days. The longest time period APT1 maintained access to a victim’s network was 1,764 days, or four years and ten months.
» Among other large-scale thefts of intellectual property, we have observed APT1 stealing 6.5 terabytes of compressed data from a single organization over a ten-month time period.
» In the first month of 2011, APT1 successfully compromised at least 17 new victims operating in 10 different industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.aPt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.
» Once APT1 has established access, they periodically revisit the victim’s network over several months or years and steal broad categories of intellectual property, including technology blueprints, proprietary manufacturing processes, test results, business plans, pricing documents, partnership agreements, and emails and contact lists from victim organizations’ leadership.

Fans of sf author William Gibson recall that the Chinese intrusion programs were the best technology you could get:

`What is this thing?' he asked the Hosaka. `Parcel for me.'
`Data transfer from Bockris Systems GmbH, Frankfurt, advises, under coded transmission, that content of shipment is Kuang Grade Mark Eleven penetration program. Bockris further advises that interface with Ono-Sendai Cyberspace 7 is entirely compatible and yields optimal penetration capabilities, particularly with regard to existing military systems...'

He slotted the Chinese virus, paused, then drove it home.
`Okay,' he said, `we're on..."
`Christ on a crutch,' the Flatline said, `take a look at this.'
The Chinese virus was unfolding around them. Polychrome shadow, countless translucent layers shifting and recombining. Protean, enormous, it towered above them, blotting out the void.
`Big mother,' the Flatline said.
(Read more about Gibson's Kuang Grade Mark Eleven Penetration Program)

Via NYTimes; be sure to download this report from Mandiant - Exposing One of China’s Cyber Espionage Units.

Scroll down for more stories in the same category. (Story submitted 2/19/2013)

Follow this kind of news @Technovelgy.

| Email | RSS | Blog It | Stumble | del.icio.us | Digg | Reddit |

Would you like to contribute a story tip? It's easy:
Get the URL of the story, and the related sf author, and add it here.

Comment/Join discussion ( 1 )

Related News Stories - (" Computer ")

Eterni.me - To Skype With The Dead
'Nothing... left of Jeserac but a galaxy of electrons frozen in the heart of a crystal.'- Arthur C. Clarke, 1956.

Razer Project Valerie Laptop Unfurls
'A paper thin polycarbon screen unfurled silently...' - William Gibson, 1986.

Google Home Continues Implementation Of Pohl's Joymaker
'It is a transponder connecting you with the central computing facilities of the city in which you reside on a shared-time, self-programming basis.' - Frederik Pohl, 1966.

New Startup 'Improbable' To Model Our World
'A machine able literally to contain the Universe Itself...' - Stanislaw Lem, 1965.

 

Google
  Web TechNovelgy.com   

Technovelgy (that's tech-novel-gee!) is devoted to the creative science inventions and ideas of sf authors. Look for the Invention Category that interests you, the Glossary, the Invention Timeline, or see what's New.

 

 

 

 

 

Current News

PassivDom 3D Printed House - What If You Could Live Anywhere?
'The houses are prefabricated units...'

Breakthrough In Manufacture Of Red Blood Cells
This blood's for you!

Caihong Solar-Powered Drone 'Atmospheric Satellite'
'... placed in the wings of a plane to generate power from the light falling on that surface.'

NASA Wants Low Earth Orbit Wifi
'This was the center of Interplanetary Communications.'

Is Genetic Testing At Businesses A Bad Idea?
It's not a topic that fares well in science fiction movies-

Wearable Smart Jacket
He pressed the button in his sleeve communicator and snapped: 'Action stations!'

Store One Bit On One Atom
'...each individual molecule has a meaning.'

Fluorescent Bacteria Fashion
'The racks of gowns itched and quivered, their colors running into blurred pools.'

Keith Laumer's Bolo Autonomous Tanks Right On Schedule
'I cannot lie idle under attack.'

When Computers Develop Their Own Language, Will They Talk To Us?
'The curious absent look of a robot talking on the TBR circuits - the Talk Between Robots radio...'

LipNet Reads Lips - Until Disconnected, That Is
'We'd have to cut his higher brain functions... I'm not sure what [HAL} would think about that.'

Eterni.me - To Skype With The Dead
'Nothing... left of Jeserac but a galaxy of electrons frozen in the heart of a crystal.'

Wearable MRI Is Former Occulus/Facebook Exec's New Project
'Your cephalochromoscope... that you always turn on and play when you get home...'

Ford Stratasys Infinte Build 3D Printer
'He proudly indicated his Buick... Almost as good as the original it was printed from...'

The Space Suit As Personal Spaceship
'Darn clever, these suits...'

Dune Fans! Your God Emperor Is Ready
'If one held a sandtrout in the hand, smoothing it over your skin, it formed a living glove.'

More SF in the News Stories

More Beyond Technovelgy science news stories

Home | Glossary | Invention Timeline | Category | New | Contact Us | FAQ | Advertise |
Technovelgy.com - where science meets fiction™

Copyright© Technovelgy LLC; all rights reserved.