China's PLA Unit 61398 Working On Kuang Grade Mark Eleven Penetration Program

Substantial digital forensic evidence links the headquarters of China's People's Liberation Army unit 61398 with a multi-year effort to hack into the computer systems of American military units and corporations. Now, it appears that this group is attempting to break into the infrastructure that controls America's electrical power, gas lines and waterworks.


(Headquarters of China's PLA unit 61398 in Shanghai)

An unusually detailed 60-page study, to be released Tuesday by Mandiant, an American computer security firm, tracks for the first time individual members of the most sophisticated of the Chinese hacking groups — known to many of its victims in the United States as “Comment Crew” or “Shanghai Group” — to the doorstep of the military unit’s headquarters. The firm was not able to place the hackers inside the 12-story building, but makes a case there is no other plausible explanation for why so many attacks come out of one comparatively small area...

While Comment Crew has drained terabytes of data from companies like Coca-Cola, increasingly its focus is on companies involved in the critical infrastructure of the United States — its electrical power grid, gas lines and waterworks. According to the security researchers, one target was a company with remote access to more than 60 percent of oil and gas pipelines in North America. The unit was also among those that attacked the computer security firm RSA, whose computer codes protect confidential corporate and government databases.

Mandiant's report is available online; here are some of their conclusions:

The nature of “Unit 61398’s” work is considered by China to be a state secret; however, we believe it engages in harmful “Computer Network Operations.”
» Unit 61398 is partially situated on Datong Road (大同路) in Gaoqiaozhen (高桥镇), which is located in the Pudong New Area (浦东新区) of Shanghai (上海). The central building in this compound is a 130,663 square foot facility that is 12 stories high and was built in early 2007.
» We estimate that Unit 61398 is staffed by hundreds, and perhaps thousands of people based on the size of Unit 61398’s physical infrastructure.
» China Telecom provided special fiber optic communications infrastructure for the unit in the name of national defense.
» Unit 61398 requires its personnel to be trained in computer security and computer network operations and also requires its personnel to be proficient in the English language.

APt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.

» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.aPt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.
» Once APT1 has established access, they periodically revisit the victim’s network over several months or years and steal broad categories of intellectual property, including technology blueprints, proprietary manufacturing processes, test results, business plans, pricing documents, partnership agreements, and emails and contact lists from victim organizations’ leadership.
» APT1 uses some tools and techniques that we have not yet observed being used by other groups including two utilities designed to steal email — GETMAIL and MAPIGET.
» APT1 maintained access to victim networks for an average of 356 days. The longest time period APT1 maintained access to a victim’s network was 1,764 days, or four years and ten months.
» Among other large-scale thefts of intellectual property, we have observed APT1 stealing 6.5 terabytes of compressed data from a single organization over a ten-month time period.
» In the first month of 2011, APT1 successfully compromised at least 17 new victims operating in 10 different industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.aPt1 has systematically stolen hundreds of terabytes of data from at least 141 organizations, and has demonstrated the capability and intent to steal from dozens of organizations simultaneously.
» Since 2006, Mandiant has observed APT1 compromise 141 companies spanning 20 major industries.
» APT1 has a well-defined attack methodology, honed over years and designed to steal large volumes of valuable intellectual property.
» Once APT1 has established access, they periodically revisit the victim’s network over several months or years and steal broad categories of intellectual property, including technology blueprints, proprietary manufacturing processes, test results, business plans, pricing documents, partnership agreements, and emails and contact lists from victim organizations’ leadership.

Fans of sf author William Gibson recall that the Chinese intrusion programs were the best technology you could get:

`What is this thing?' he asked the Hosaka. `Parcel for me.'
`Data transfer from Bockris Systems GmbH, Frankfurt, advises, under coded transmission, that content of shipment is Kuang Grade Mark Eleven penetration program. Bockris further advises that interface with Ono-Sendai Cyberspace 7 is entirely compatible and yields optimal penetration capabilities, particularly with regard to existing military systems...'

He slotted the Chinese virus, paused, then drove it home.
`Okay,' he said, `we're on..."
`Christ on a crutch,' the Flatline said, `take a look at this.'
The Chinese virus was unfolding around them. Polychrome shadow, countless translucent layers shifting and recombining. Protean, enormous, it towered above them, blotting out the void.
`Big mother,' the Flatline said.
(Read more about Gibson's Kuang Grade Mark Eleven Penetration Program)

Via NYTimes; be sure to download this report from Mandiant - Exposing One of China’s Cyber Espionage Units.

Scroll down for more stories in the same category. (Story submitted 2/19/2013)

Follow this kind of news @Technovelgy.

| Email | RSS | Blog It | Stumble | del.icio.us | Digg | Reddit |

Would you like to contribute a story tip? It's easy:
Get the URL of the story, and the related sf author, and add it here.

Comment/Join discussion ( 1 )

Related News Stories - (" Computer ")

RNA-Based Biocomputing Device
Living things can sense and analyze complex signals in living cells.

Loihi Chip Mimics Human Brain's Neurons And Synapses
'You can hook a Thorsen tube into a control circuit... and the tube will "remember" what was done and can direct the operation...' - Robert Heinlein, 1956.

Brain Connected To Internet - ‘Brainternet'
Fascinating! or thoughts to that effect.

Koniku Kore, Mouse Brain-Based Chip, Detects Explosives
'As a matter of fact, this mouse is going to keep on thinking forever.' - Cordwainer Smith, 1962.

 

Google
  Web TechNovelgy.com   

Technovelgy (that's tech-novel-gee!) is devoted to the creative science inventions and ideas of sf authors. Look for the Invention Category that interests you, the Glossary, the Invention Timeline, or see what's New.

 

 

 

 

 

Current News

China Melts Tibetan Permafrost To Plant Forest
'Can you give us a microwave spotlight?'

iFlytek Doctor Robot First To Pass Medical Exams
Doctor shortage? No problem, we'll just use the autodoc.

Slaughterbot AI KIller Quadcopter Drones
'The real border was defended by... a swarm of quasi-independent aerostats.'

Do We Really Want Backflipping Robots?
Also includes wonderful blooper reel.

RNA-Based Biocomputing Device
Living things can sense and analyze complex signals in living cells.

Seasteading Floating Cities
'It was a remarkable island, circular, about half a kilometer in diameter.'

Tesla Semi 'Electrotruck' Unveiled
Elon Musk unveils yet another technological marvel.

Watch What People Are Seeing Via Brain Scanning
'had managed to see through the other man's eyes as the other man, all unaware, washed their Zis limousine sixteen hundred meters away...'

Integrated Circuits Printed Right Onto Fabric!
'...a shirt that displayed email on its sleeve.

Interstellar Asteroid Visits Our Solar System
'This asteroid had whirled in from the cold of the interplanetary space...'

PRIMA Bionic Vision Restoration
'The VISOR... was a medical device used in the Federation to aid patients who have suffered loss of eyesight...'

Audi Traffic Jam Pilot Knows If You're Sleeping
'Even here, riding a garbage truck to eternity, the machine watched him...'

UM Hall Thruster Breaks Records
Someday, we'll see an ion drive used to get to Mars.

Ionity Ultra-fast Charging Station Network
'Recharge the batteries... in almost every town and village...'

VAuth Voice Security Wearable From University of Michigan
'Siri, I gave you a voice command...' 'Yes, but do I know you?'

Ubiquiti FrontRow Camera Records Your Life
Why be choosy? Just upload your whole life to the Internet, and be done with it.

More SF in the News Stories

More Beyond Technovelgy science news stories

Home | Glossary | Invention Timeline | Category | New | Contact Us | FAQ | Advertise |
Technovelgy.com - where science meets fiction™

Copyright© Technovelgy LLC; all rights reserved.