China Crafts Cyberweapons

MitmWatcher writes to mention that a recent report by the Department of Defense revealed that China is continuing to build up their cyberwarfare units and develop viruses. "'The PLA has established information warfare units to develop viruses to attack enemy computer systems and networks,' the annual DOD report on China's military warned. At the same, Chinese armed forces are developing ways to protect its own systems from an enemy attack, it said, echoing similar warnings made in previous years."

Sensible

[Anonymous Coward]

Only sensible. News because they happen to be communist in name. Everyone else is doing the same things. This is like the revolutionary developments in bio-weapons by the major countries last century. China may actually have a better vision of the future in its defence policy than other nations.

Re:Sensible

[smilindog2000]

We've been doing the same for years, I hear with some success. In the first Iraq war, I heard a story about an infected printer driver that Iraq downloaded that in theory played havoc with their network during the invasion. I also hear we have a special unit tasked to attack information systems in real time, during an invasion, and to protect our own network. How much fun would that job be? I am seriously envious.

Re:

[mattpalmer1086]

Actually, the printer virus is a hoax. But it may have played some part in the overall information war strategy, in terms of psychological warfare / propaganda. Information warfare is as old as war itself - just read the Art of War. http://www.theregister.co.uk/2003/03/10/one_printe r_one_virus_one/ [theregister.co.uk]

Re:

[Frosty Piss]

Or... Maybe the hoax was a hoax...

Re:

[Tatisimo]

And maybe you people claiming to know what's a hoax are here to distract us in order to cover up an even bigger conspiracy.

Re:

[FLEB]

Thing of it is, you could probably pull something like that off quite easily now with the advent of USB and PnP. You could even homebrew something-- hide a hub in there, hook in a flashdrive with the virus on Autorun, and put the printer itself back in line. Make the virus (trojan?) quickly install itself, then hide the flashdrive.

Re:Sensible

[neomunk]

This is just a new battlefield, like between the world wars when everyone scrambled to get together some kind of airforce. Space hasn't been officially militarized yet because of cold war fears that led to a treaty banning that type of activity. It seems that certain powers in the world are changing their mind about that, but I digress...

Yeah, cyberspace (I know, played out term, but it's common vernacular now) is a place (kinda) where strategy can be applied to hamper an enemies war fighting potential. Not only that, it can be the equivalent to infrastructure destruction when targeted at the private sector. Yep, all that advantage without firing a shot, without having to wait for resupply of ammunition and without putting a single person within killing range of the target.

In other words, this is common sense.

Notable: SharedSource

[symbolset]

It is notable here that China is one of the state entities that enjoys access to the source code for Window under Microsoft's SharedSource program. If you're in IT for a government agency in the US, it's your duty to ask 'what does China know about my critical infrastructure that I don't know?'

Unfortunately for the people who rely on you, the answer is undiscoverable.

Re:

[OrangeTide]

Sounds like a good reason for every top tier government agency in the US (and possibly in other nations, Canada, UK, Australia, EU, ...) to ban Windows entirely. Top tier being any executive, military, or financial arm of the government. and any private or government entities that provide vital resources (electricity, water treatment, oil refining, mass transit systems, etc)

Re:

[Anonymous Coward]

Um. Ever wondered why Sun was still around? They make "Trusted Solaris". Any *important* computer systems already don't run windows.

Re:

[supremebob]

They know enough about the security holes in Windows to have created and promoted their own Linux distribution called Red Flag Linux.

That doesn't prove a conspiracy theory or anything, but it was probably a good idea anyway! Smart thinking, and I wish that the US government did the same thing. Red, White, and Blue Linux has a good ring to it.

You are right

[symbolset]

TFA is about China. Don't try to read anything into my comment that isn't there. I can be enough of a controversial jerk all by myself, thanks.

Re:

[WindBourne]

First off, I am one that thinks believes that China will be attacking USA within the decade. But that is china ( the gov ), not chinese (the ppl ). One of the problems with govs. is that some are democracies and will regulate, while a none-demcracy will not. For example, W. likes to make a big deal of Venezula and Iran. But both are democratically elected leaders that would fall IFF America will leave them alone. In fact, we prop them up because we buy so much oil. OTH, North Korea, Like china, will not ha

That is the problem

[WindBourne]

Our economies are NOT tied together. In fact, China is doing all that it can to avoid that. China exports roughly 250 BILLION to usa yearly. OTH, they import about 50 Billion from USA. [cia.gov] They ARE making us dependent on them. Right now, China has more than 1 trillion dollars and has the means to buy some of our technology to move to a green environment. But are they? Nope. They are insisting that EU and America should give them the tech knowledge to clean up. They do not want to have an intertwined economy. T

Re:

[WindBourne]

That is just it. NK does not have ability to do anything. First, they do not have a missle that can strike America (or EU). But they are working on it. So, lets say that they really did not develop a nuke (they did not). Who would they strike? South Korea? Japan? Russia? Alaska (maybe)? None of them would make sense. As soon as they launch, China and Russia would view that as a problem and would take them out themselves. Why? Because it would be difficult for them to decide if response nukes were going to

OH NOES!

[HappySmileMan]

At the same, Chinese armed forces are developing ways to protect its own systems from an enemy attack, it said, echoing similar warnings made in previous years.

China are trying to secure their computers? Do they not realise this is a declaration of war on the US?

Re:

[Pantero Blanco]

Actual attacks on US military and government computers from China have been happening for years. There was especially a lot of crap flying during the "spy plane" incident a few years back.

Re:OH NOES!

[smilindog2000]

sometime in our lifetimes there will be an attack made on China by US interested parties.

Not a change. China holds too much of our debt, and is too crucial for our economy. Also, China historically is mostly interested in China. Kinda makes for a poor enemy.

Re:OH NOES!

[imemyself]

Also, China historically is mostly interested in China.

Yes, but their definition of "China" includes Taiwan, Tibet, and the Spratly islands.

Re:

[neomunk]

I agree with what I think is your base point about China, but still, what about any of those places makes you think that the U.S. would be willing to risk having China stop financing our debt for any of them?

Besides that a couple of years ago China's political leadership and military leadership both told the press that if they DID go to war with the U.S. they would immediately resort to nuclear weapons, because they know they couldn't win conventionally.

No, even if that's all bluster, it's still too much ri

Re:

[rduke15]

Not sure what you mean is not likely in the near future.

barring something like peak oil being imminent or something. Maybe then, but that's probably not likely in the near future.

But if you mean peak oil, that one definitely is scheduled for the pretty near future: between last year and about 10 years from now. If you mean a war betweem China and the US, then I agree that it's unlikely in the near future.

Re:

[readin]

Tibet is part of China, so that's ok. The Spratly's are disputed.

Taiwan is not part of China.

For more than 50 years, the following have all been true.

* Taiwan and China are controlled by different governments.
* The government in Taiwan does not answer in any way shape or form to the government in China.
* The government in China does not answer in any way shape or form to the government in Taiwan.
* Taiwan and China independently make agreements and treaties with other nations.

Re:

[Miseph]

Tibet is part of china only because China invaded and occupied it. That's like saying Lebanon is part of Syria.

The Spratly's are disputed to us... but to the Chinese it's theirs and others are just interfering.

China has made no secret of the fact that they believe Taiwan is theirs, and that they tolerate Taiwan's independence only because they are currently unable to take it back by force and crush the "counter-revolution" there. It is also technically a apart of China, even if it is practically separate. A

Re:

[readin]

Tibet is part of china only because China invaded and occupied it. That's like saying Lebanon is part of Syria.

Or like saying California is part of the U.S.A, or saying southern Spain is part of Spain. For most parts of the world, you'll find they got to be the country they are in part through invasion. The invasion of Tibet was successful nearly 50 years ago. It seems to me like an accomplished fact, whether we like it or not.

[Taiwan] is also technically a apart of China, even if it is practically

Re:

[SLi]

And the US definition of "US" includes Texas, and several large pieces of former Indian land. Now that's not a problem, but it was once. What happened the last time Texas tried to secede? How about the right of Texas to secede that was explicitly written in its agreement to join the Union, IIRC?

Why do you pretend that such things only happen in China?

Re:

[readin]

Taiwan is part of China. Just because the British held onto it for a little longer than other former possessions does not make it an independent country since it was part of China that was taken by foreign powers, and now China is free from them. Cultural differences from longer occupation do not mean anything except that it is two systems in one country. At least the Chinese are honest in their descriptions of things.

You seem very confused. Taiwan was never held by the British. Perhaps you are think

Re:

[readin]

I think that the invasion/retreat of the previous Chinese government to Taiwan has confused issues. Neither the Chinese in Taiwan nor the Chinese in China seem very interested in the native Taiwanese population. They just want to do what China has done for thousands of years... unify all the Chinese (of course, each side wants it unified under themselves).

But the difference is that now (for the last 12 years) Taiwan is a democracy, so the minority Chinese population doesn't have control anymore. The ma

Re:

[Divebus]

It's not racist - it's speech training. From the ever omnipotent Wikipedia (confirmed with a year of living in Korea) "While Japanese speakers may have problems differentiating L and R sounds, Korean, Thai and Chinese speakers have fewer problems in this respect since their languages have separate L and R sounds (though in Korean the separate sounds are allophones). However, in each of these three languages, there are phonotactic restrictions on these sounds. Chinese and Thai have no syllable-final L sound,

Cowboys

[SpectreBlofeld]

"...ICE patterns formed and reformed on the screen as he probed for gaps, skirted the most obvious traps, and mapped the route he'd take through Sense/Net's ICE. It was good ICE. Wonderful ICE... ...His program had reached the fifth gate. He watched as his icebreaker strobed and shifted in front of him, only faintly aware of his hands playing across the deck, making minor adjustments. Translucent planes of color shuffled like a trick deck. Take a card, he thought, any card.

The gate blurred past. He laughed. The Sense/Net ice had accepted his entry as a routine transfer from the consortium's Los Angeles complex. He was inside. Behind him, viral subprograms peeled off, meshing with the gate's code fabric, ready to deflect the real Los Angeles data when it arrived."

From Neuromancer, by William Gibson, following protagonist Henry Dorsett Case as he uses a Chinese military-made icebreaker to hack a virtual fortress...

If only computer security were really so dramatic :)

Re:

[tzanger]

You know, I'm reading Neuromancer right now. I have never been able to make it though the book, not in any of the several attempts I've made of it over the past 15 or so years. I find I just cannot get in to it. I just started Chapter 5, and it's a chore to not just put the book away. People keep telling me it's good, but... ugh.

Re:

[Feyr]

i can't blame you. i did read it, twice even, but the writing style is pretty dense and it's hard to stay focused on it

Re:

[Harmonious Botch]

Umm...wasn't it a Russian icebreaker?

Good..

[Pranab]

Now we can buy millions of pirated copies of these weapons at almost nothing.

Re:

[Tablizer]

Now we can buy millions of pirated copies of these weapons at almost nothing.

Yes, but the death and destruction only satisfies for a few hours and then you are hungry again.
         

And yet...

[Pantero Blanco]

The US will ignore this for the most part, keep trading with them, and allow corporations to send its citizens jobs to the nation that is attacking it. It makes me sick.

Re:And yet...

[mattpalmer1086]

Hmmmm - if any other country invests in its military capability, it's equivalent to an attack on the US? That's got to be the most fearful stance I've heard in a long time, and especially perplexing coming from someone in the world's biggest military spender, by some very large margin.

Do you not think it better to trade with countries and develop strong relations with them? You have another strategy?

Re:And yet...

[Pantero Blanco]

Hmmmm - if any other country invests in its military capability, it's equivalent to an attack on the US?

Have you been offline for the past decade? Chinese attacks on US networks aren't some nebulous possibility; they've been going on for years. Quite a few articles about it have shown up right here on Slashdot.

As for the US's military spending, that annoys me because it gets blown kicking over some dictator in the Middle East or chasing "terrorists" who kill less people than cars, instead of preparing for and dealing with real threats.

Do you not think it better to trade with countries and develop strong relations with them?

No, not while they're attacking.

Good for the gander

[Harmonious Botch]

Are we assuming that our military isn't attacking them, too? It just seems like standard operating procedure to me.

Re:

[Timesprout]

As for the US's military spending, that annoys me because it gets blown kicking over some dictator in the Middle East or chasing "terrorists" who kill less people than cars, instead of preparing for and dealing with real threats. Do you not think it better to trade with countries and develop strong relations with them? No, not while they're attacking.

Well unfortunately for him Saddam was ahead of the game but signed his own death warrant when he wanted to be paid in Euros for Iraqi oil. God forbid the U

Re:And yet...

[mattpalmer1086]

Have you been off line for the past decade? Chinese attacks on US networks aren't some nebulous possibility; they've been going on for years. Quite a few articles about it have shown up right here on Slashdot.

The article is about investing in cyberwar attack and defense in general, not about launching specific attacks. Yes, Chinese hackers have been targeting US systems and UK systems (and other western nations) for some time. And I imagine that there are US and UK hackers targeting Chinese systems. This is not a declaration of war; this is just business as usual.

As for the US's military spending, that annoys me because it gets blown kicking over some dictator in the Middle East or chasing "terrorists" who kill less people than cars, instead of preparing for and dealing with real threats.

I don't disagree with any of that!

Parent is not a troll...

[ushering05401]

or off topic. When a country develops any sort of new military technology that creates increased competition with American military technology there is a political reappraisal. The dramatic example is nuclear technology, but many others exist. The parent poster is pointing out that these revelations of new military technology will not be handled with regard to China as they would with regard to many other nations.

His comment is not particularly insightful, but his assertions are defendable:

Slashdot has reported on attacks apparently coming from within China (titan rain), and attempts by China to disable U.S. spy sats (ground based laser something or other).

The U.S. government continues to grant China 'Favored Trade Nation' status and facilitate the offshoring of work... esecially in manufacturing despite continued resistance from China to enforce safety/humanitarian regulations in those industries (something we require from our other top trading partners, though not from the poorer ones).

The U.S. government continually ignores international organizations such as Amnesty International who attempt to open dialogue about human rights records.

So now China is creating systems designed to realign the BOP on the net. How will the U.S. react? If it's track record holds true, then the U.S. will not react... which is really puzzling. True, if we have it, then others should not be prohibited... but that is now how we treat the non-chinas of the world.

The only disputable or inflamatory statement made by parent is that he actually feels sick about this.

Regards.

Re:

[ushering05401]

Link: http://politics.slashdot.org/article.pl?sid=06/09 / 28/126207 [slashdot.org]

This is the sat story I was talking about. It is from back in September. It was reported widely and confirmed by the Pentagon on October 6, 2006.

NRO director Donald Kerr indicated that the onboard spy cams were blinded... but I am not finding any specific articles that indicate if the damage was permanent or only in effect while the sat was in some sort of field of fire.

Apparently there was additonal information published in DefenseNews, bu

Re:

[vakuona]

Pardon my naive questions, but is there some rule that binds countries to accept spy satellites over their airspace, looking at whatever they are doing?

Re:

[clragon]

The US will ignore this for the most part, keep trading with them, and allow corporations to send its citizens jobs to the nation that is attacking it. It makes me sick.

I would rather the US make the Chinese depend on them economically, thus maintaining peace, than to reply with a nuke.

Like children at kindergarten

[tronicum]

If they have some, we need them too [navy.com]

not war just scare tactics

[wizardforce]

Do they not realise this is a declaration of war on the US?

not so much war as it is to prevent the US or other capitalist/democratic countries from undermining their regime. china is a known source of some cyber attacks- mainly from less organized hackers but now that it will be more organized- more bang for the buck. they probably wont try to destroy our systems completely as that would likely have a ripple effect on their economy as well- they sell a lot of stuff to us and where they to screw that up it would hurt them quite dearly. there is one thing that we have that they dont and that is oddly enough sheer number- if i remember correctly we out number them in computing power so if we ever needed to we could do a real DOS attack from hell on them.

Re:

[meringuoid]

they probably wont try to destroy our systems completely as that would likely have a ripple effect on their economy as well- they sell a lot of stuff to us and where they to screw that up it would hurt them quite dearly. there is one thing that we have that they dont and that is oddly enough sheer number- if i remember correctly we out number them in computing power so if we ever needed to we could do a real DOS attack from hell on them.

In a shooting war, a DOS wouldn't work, certainly not against China.

Re:

[rucs_hack]

America is creating these kinds of weapons, so why would it be surprising that China would too? Although, given the other things that the US has been convinced other powerful nations had in the past that have been wrong, 'undetectable subs', WMDs, and so on, I wonder if this isn't being made to sound more significant then it really is.

I liken this to the uproar about China developing space based weapons. Um, weren't the US doing it first?

I'd see this more as a sign that China is catching up with the US in t

OK Here's the Plan

[onkelonkel]

1. Convince Chinese government that spam is a plot by Falun Gong.
2. Half a million Peoples Liberation Army Cyberwar Programmers attack!
3. ???
4. Profit?

US military has one too: USAF Cyberspace Command.

[Aaron England]

Last year the Secetary of the Air Force (SECAF) hijacked the realm of cyberspace for the Air Force, when he announced the Air Force's new mission to provide the President with "[options] in in air, space and now cyberspace." According to a recent congressional hearing, the Air Force Cyberpsace Command (AFCYBER) will be stood up sometime Summer 2007.

http://www.af.mil/news/story.asp?storyID=123030505 [af.mil]

Re:US military has one too: USAF Cyberspace Comman

[Puff of Logic]

Last year the Secetary of the Air Force (SECAF) hijacked the realm of cyberspace for the Air Force, when he announced the Air Force's new mission to provide the President with "[options] in in air, space and now cyberspace."

Yes, but in all fairness it's certainly part of the USAF's mission. We've been defending freedom from our cubicles for a long time now and they don't call us the "chair force" for nothing!

Re:US military has one too: USAF Cyberspace Comman

[Great_Geek]

This is one of those irregular verbs:
  By developing cyber weapons, US is defending freedom everywhere.
  By developing cyber defenses, China is destablising the world.
  By having computers, Iran is sponsoring terrorism.

To be serious about it, how can anyone be surprised that a major country is concerned about cyber-security?

Yes?

[Xiph]

Best way of keeping peace, is by preparing for war, incidentally, best way of preparing for war, is excactly the same.
If whatever country you live in, is not doing this, then shame on them.

Re:Yes?

[polar red]

BULLCRAP !!!!

1/Europe was a warzone for a thousand years. The moment the EU(actually its predecessors) was founded, war ceased. The economic bonds between these member states prevent any war. No-one in his right mind would think of a war between 2 of the member states, and yet Europe is the least militarized zone in the world.
2/the way people keep thinking of "enemies" is an outdated concept. At least in some parts of the world. Can you point them on the map? And Can you make a link to countries not involved in any war in 50 years ?

Re:

[rduke15]

And isn't the free security it provides the continent

You say that as if the US was paying to protect Europe. NATO isn't free for it's member states:
NATO: History of Common Budget Cost Shares [fas.org]:

In 1997, the actual cost shares for the United States were 23.35 percent for the civil budget, since all 16 nations participate fully in this budget; 28.08 percent for the military budget, exclusive of the AWACS program; 41.48 percent for the AWACS program; and 26.46 percent of the NSIP budget. The total U.S. cost share

Re:

[meringuoid]

Ummm... doesn't the NATO security shield, left since the last time the U.S. and U.K. had to invade Europe, make up the "prepare for war" part of the European peace?

In part. Should the Red Army come storming west out of Russia towards Poland, the EU will surely be glad of NATO. These days, however, the Russians are more likely to apply pressure by cutting off the gas supply.

And isn't the free security it provides the continent the main reason that we get to hear these over-protected adolescent political

Re:

[amper]

'My country, right or wrong'? Please.

If you're going to quote someone, at least bother to make an accurate quotation.

And they both use Windows

[dattaway]

...this should get interesting.

"Crafting Cyber-Weapons"

[drDugan]

I have an image of thousands of Chineese computer specialists, working tirelessly in huge warehouses of cubicles. I can hear them mumbling now... "Collect metal, collect wood, collect magic talisman of sharpness, rrrun to forge, use skill +5 "Weapon Craft" with added +2 ring-of-the-crafter proficiency." Bingo! a new Shadow Axe of Sharpness, sold for 350 RMB on Ebay. Rinse and repeat.

Re:

[Starayo]

Generals, of course.

This was the first thing I thought of too.

And that's exactly why....

[thrill12]

...my firewall blocks China completely. If anyone wants to enter, they first need to ask politely. Same could count for other countries by the way.
 
This combined with severe passive OS fingerprinting delivers a good way to solve most issues (except DOS attacks ofcourse).
Not perfect, but in the light of current state of internet affairs a most needed solution.

Re:

[andrewjhall]

If you believe that a Chinese hacker couldn't hack into one of a few million PCs outside of China and then attack you from there, you're probably not giving them enough credit...

Imagine the following:

[Anonymous Coward]

Flash forward ten years ... a group of American military commanders are gathered around a conference table deep inside the pentagon to discuss the most recent Chinese cyber attacks on US infrastructure. Voices are raised, tensions are running high, and nobody can seem to reach agreement on the best way forward. But everyone knows that time is running short and that a response is needed.

Suddenly, the huge video conference screen on the wall springs to life. A stern Chinese communist party official appears in a smart beige chairman-Mao suit. The shouting and arguments stop and an eerie silence descends. All eyes turn toward the Chinese official.

He speaks.

"How are you today gentlemen? All your base are belong to us."

Know how your stuff works!!!

[anubi]

Doesn'e even this undermine to our nation just how important it is that we KNOW how our stuff works... and how to fix it if someone messes it up?

Honestly, I am so frustrated with this "its someone else's responsibility to make it work" and other finger pointing paradigms. Its MY stuff, I bought it with legal tender, and if I don't know how to maintain it, do I really have that much business having it?

If my dog made a mess, its obvious to me just what he did and where he did it. If termites made a mess, I can find and put back what they messed up. I feel exactly the same with my computing apparatus, and I highly resent efforts by others ( via DMCA like legal maneuvering ) to keep me ignorant of how my stuff works. It frustrates me to no end to have others make knowledge illegal, enforceable by police at gunpoint, only for the financial gain of blocking off alternative remedies I have for maintenance or customization needs.

Having ANY software vendor locking me in to their "support" is like having the contractor who built my house locking me in for anything I want to do to maintain or modify my house.

Not to say I would want to deprive him of his art of driving nails, but if he was too hard to get along with, or overprices himself, I strongly reserve what I feel is my right to pick up the hammer and saw and do it personally, if need be.

Ignorance is going to be the end of us (US).

Re:Know how your stuff works!!!

[DaMattster]

I largely agree with you. This is why I have decided to go on an open source only diet. Believe me, I am the richer for it. I haven't run Windows since the waning days of Windows 2000 Professional. I have found that FreeBSD and OpenBSD can satisfy almost every computing need that I have, whither it be a minute task or a more advanced routing solution. I like having control of my computing environment. Knowing how my computers and operating systems work have saved me from making purchases based on sales propaganda or FUD. Knowledge really is power. When I hear Microsoft's Get the Facts, I yawn in boredom and can't help wonder how many punters will buy into it.

Really, it comes down to our educational system to help stop some of the ignorance. Colleges should mandate more than just basic computer use courses. There should be a tuple of classes covering basic computer use, basic networking, and basic security. Just like some Comp and Info Sci programs require taking business classes, Business programs should require Info sci classes. If management were wiser to computing, they might listen when their IT professionals make a serious recommendation.

Re:

[TehZorroness]

Ignorance is going to be the end of us (US).

The US is already spiraling to it's grave of idiocy. You have the moronic public in one hand, and the detached government with it's own agendas in the other. This is not going to happen, it has been happening for quite some time now, and is only getting worse.

People care more about Paris Hilton (the f***ing sl**bag) then politics. Politics are by no means a bad thing, but when only corporate entities show interest, problems arise.

Richard Clarke on Countdown

[not_hylas( )]

Richard Clarke, top counter-terrorism adviser to presidents of both parties interview.
Countdown with Keith Olbermann in January '07.

http://www.msnbc.msn.com/id/16771741/ [msn.com]

My Summary:

http://politics.slashdot.org/comments.pl?cid=18061 138&sid=222938 [slashdot.org]

Re:

[timeOday]

Ah yes, Richard Clark, the Digital Pearl Harbor [cnn.com] guy. Remember how worried we were all supposed to be about China before 911? I guess every plot needs a villian.

Haha. And the US does not do this ?

[aepervius]

I am pretty sure the following "news" could be read somewhen in China

"'The US has established information warfare units to develop viruses to attack enemy computer systems and networks,' the annual PLA Defense departement report on USA's military warned. At the same, US armed forces are developing ways to protect its own systems from an enemy attack, it said, echoing similar warnings made in previous years."

This leave me wondering with such a NON-news, what sort of propaganda is theUS trying to kick up. Are there commercial negociation starting soon with China ? Are they trying to put some pressure on China for a better rate ?

Re:

[jd]

Possibly something drummed up by the GAO. Virtually every single Federal department has failed security audits year after year, with some of the military ones getting worse. It would not surprise me if someone came up with the idea of scaring the Feds into finally taking this seriously. (Same with corporate security. A few million credit cards stolen here or there don't seem to bother the online stores much, they still have lousy safeguards and probably retain data on a machine directly connected to the Int

Re:

[readin]

I am pretty sure the following "news" could be read somewhen in China

"'The US has established information warfare units to develop viruses to attack enemy computer systems and networks,' the annual PLA Defense departement report on USA's military warned. At the same, US armed forces are developing ways to protect its own systems from an enemy attack, it said, echoing similar warnings made in previous years."

On the other hand, you wouldn't find this "The main focus of USA's military modernization effo

Re:

[SLi]

While I support independence for Taiwan, you do realize what happened the last time Texas & friends tried to gain independence, right? And IIRC Texas had the right to secede explicitly written in their agreement to join the Union. There are no such agreements between China and Taiwan.

See, there are more ways to view things than the Official Democratic US View(tm)?

Re:

[clragon]

"'The US has established information warfare units to develop viruses to attack enemy computer systems and networks,' the annual PLA Defense departement report on USA's military warned. At the same, US armed forces are developing ways to protect its own systems from an enemy attack, it said, echoing similar warnings made in previous years." This leave me wondering with such a NON-news, what sort of propaganda is theUS trying to kick up. Are there commercial negociation starting soon with China ? Are they t

Interesting

[Howitzer86]

It's interesting to hear repeatedly that they are making so much effort in this area. The obvious target is the United States, though they could effectively attack our allies as well.

Coupled with anti-satellite weapons and a developing blue water navy - One could say they are preparing for conquest.

The rewards are enormous. China could completely destroy our networks and economy in a single day with a well coordinated strike.

That's not enough time to move our forces and fight back.

What is DOD doing? Spying on their citizens and making life a living hell for Iraqis.

Re:

[jpop32]

One could say they are preparing for conquest.

From Wikipedia: American defense expenditures in 2005 were estimated to be greater than the next 14 largest national military budgets combined.

So, you were saying, someone is preparing for conquest?

Re:

[meringuoid]

It's interesting to hear repeatedly that they are making so much effort in this area. The obvious target is the United States, though they could effectively attack our allies as well.

That, and neutrals, and for that matter your enemies. The world doesn't revolve entirely around the US, you know.

Consider: Company A in country M is trying to sell products to company B in country N. Company C in China would like some of that business. So: the Chinese dig out some of their black-magic tools and pwnz0r some

Re:

[AlHunt]

>The rewards are enormous. China could completely destroy our networks and economy in a single day with a well coordinated strike.

To what end? Conquest of what? China destroying our (US) economy would be shooting themselves in the foot with a bazooka. "We" buy an enormous amount of Chinese goods.

Can you imagine the "flight 93" reaction of this country if an invading army set foot on our shores?

I don't discount that they might do things to damage the US, and I suggest everyone think about how you'll ge

Don't bite the hand that feeds

[OKCfunky]

Attacking the country that ultimately controls your economy is not a wise move. Shame on the man that has 50K in debt to the bank. Shame on the bank for allowing multi-hundred billions in debt.

Solution to Cyberwarfare

[unlametheweak]

There is an easy solution to cyberwarfare. Just don't keep important parts of your information infrastructure connected to the Internet; and always have offline backups. If people (especially businesses and government) rely too heavily on one medium (like the Internet) then it will become an obvious target. If worse came to worse, we could always just pull the plug. If your main line of business is related to the Internet, then you need to think of contingencies, like at the very least having VPNs for your customers/clients to use.

If people, businesses, governments, or armies cannot function without the Internet, then things have gone to far. I do however believe that the cyberwarefare concept is more hyperbole than a real threat. If I couldn't read Slashdot because of some Chinese government DoS attack, it would be sad for me, but it would not be the end of the world. And remember: the Internet as it is was designed for redundancy and routing around communication problems.

Duh

[nephridium]

What makes this article newsworthy? TFA doesn't report anything new or out of the ordinary. Any army in the world would recruit hackers and use their abilities. In fact TFA starts with "The People's Liberation Army (PLA) continues to build cyberwarfare units..." - Yes, well, in other news: "A sack of rice just tipped over in Zhejiang province, China. No casualties have been confirmed yet. Authorities advise citizens to remain calm..."

Is this article just general fear mongering or is someone setting up a

im not scared

[Anonymous Coward]

I'm not scared, bring it on! Hope they're ready to find the 3rd (remote) exploit in OpenBSD in 10 years...

Crying Wolf

[bitspotter]

If only our government hasn't had it's reputation soiled by crying wolf all the time, perhaps we could trust it when it tries to warn us about national security threats.

Countermeasure

[Matz0r]

# iptables -I INPUT -s 60.0.0.0/8 -j DROP

Red Flag Linux

[BroadbandBradley]

of course this makes sense now, get the Microsoft windows source code, encourage your citizens to use Red Flag Linux instead, gain a competitive edge when cyber-warefare erupts.

Good thing the DoD is hiring America's best

[Anonymous Coward]

Let's see. I can work for Google or Yahoo or Microsoft and get free sushi and massages, or I can go to work for the DoD, where my skills are vitally needed, and for the privilege I can receive two years of hassle over my $50 unpaid phone bill from ten years ago and told to pee in a cup.

Holy Crap!

[glwtta]

Please tell me they don't have anything at Kuang Grade, Mark Eleven yet - we are so fucked if they do.

If they wanna call it cyberwarfare...

[SleepyHappyDoc]

...then it should be subject to the rules of war. If one nation attacking the network infrastructure of another nation were considered to violate the rules of war, they would think twice. It would hardly be worth it for China to DDoS a few connections if it meant we would start executing their PoW's.

Re:

[LiquidCoooled]

I'm sorry, but I cannot get the image of Stallman bashing a tambourine singing 'Kum by Yar' whilst crossing the battlefield.
Linux is many things, but its not a cyber weapon.

Re:

[ichigo 2.0]

I believe you missed his point. Which I believe was that Linux would be a defense against these cyberweapons. :)

Re:

[neomunk]

Linux is many things, but its not a cyber weapon.

You're right, it can however be a perfectly powerful cyber-weapons factory, deployment platform, hidden storage facility, you name it.

Don't get me wrong, I'm not bashing linux at all, but if my history serves me well here, linux gained a following among, shall we say, highly technical miscreants for a reason. It's powerful and able to be reconfigured to perform most any given task optimally.

Re:One word ...

[vivaoporto]

I like Linux as much as every other guy here but, if you actually believe that Linux is flawless enough to endure a military funded search for flaws and vulnerabilities and come out immaculate, you must be out of touch with reality.

If "given enough eyeballs, all bugs are shallow", given enough eyeballs (and china has the most), money, military grade technology and bad intentions, every bugs is a potential weapon.

Re:

[Pantero Blanco]

I like Linux as much as every other guy here but, if you actually believe that Linux is flawless enough to endure a military funded search for flaws and vulnerabilities and come out immaculate, you must be out of touch with reality.

Care to tell us what is? Because Solaris and Windows sure aren't. OpenVMS has a good record, but I doubt it's completely bugless.

Re:

[vivaoporto]

There is no such thing as "the perfect weapon", the "invulnerable shield" or, for all that matters, "invulnerable O.S.". If there is an Operational System that is secure enough to be resistant to hostile military attacks, it must certainly be kept 1) developed by the military itself 2) restricted for the general public, for the same reasons strong cryptography was back in the days. Who would be fool to let a tool like that potentially fall in the hands of the enemies (whatever side they are)?

Anyway, if t

Re:

[Pantero Blanco]

That was what I was implying. Linux (and other Unixes like *BSD, Solaris, etc) aren't invincible, but as far as I know they're better than the current alternatives. The fact that enough dedicated attackers could break them seems like a moot point to me.

Re:

[RexRhino]

Locking your front door at night is more secure than leaving your door unlocked. That is like Linux vs. Windows. Linux is the closed door, Windows leaves the door wide open.

However, keeping the door locked, while it might protect you from a malicious neighbor, or a crack head robbing your house to buy drugs, isn't going to do anything to stop an elite CIA infiltration team. A locked door on your home just isn't going to be a problem for someone who has dedicated their lives to infiltrating places. Understan

Re:

[meringuoid]

If there is an Operational System that is secure enough to be resistant to hostile military attacks, it must certainly be kept 1) developed by the military itself 2) restricted for the general public, for the same reasons strong cryptography was back in the days. Who would be fool to let a tool like that potentially fall in the hands of the enemies (whatever side they are)?

A lone genius who developed it themselves and just posted it on the internet, perhaps?

Re:

[canuck57]

I like Linux as much as every other guy here but, if you actually believe that Linux is flawless enough to endure a military funded search for flaws and vulnerabilities and come out immaculate, you must be out of touch with reality.

As if the other OS is (even without all the source code).

In fact, because of NSKey I think I would choose an open source OS so I could vet all the the code and know there isn't a deliberate back door. Maybe even consider OpenBSD since it's track record is better than most, an

Re:One word ...

[meringuoid]

It'd seem likely that if viruses are being developed for military applications, some of those viruses are indeed targeted at Linux and the BSDs: even if these operating systems don't have enough market share to be viable for virus writers whose goal is maximum infection percentage, or economic gain through spamming or scamming, they do keep a lot of important servers up and running and serve confidential information from important databases.

Probably not viruses, but worms, and remote-root exploits. If your local equivalent of NSA or GCHQ has found a really nasty bug in, let us say, Apache, which allows root control of the server, they'll quietly code up a worm to exploit it, and keep it in storage against the day they decide they need to knock down a whole bunch of systems.

However, the potential economic gain from owning Apache / MySQL systems is far greater than from owning IIS / SQL Server systems. The reason Windows-based servers are more commonly attacked isn't because they're more numerous, it's because they're more vulnerable. That, and a vulnerability affecting one generally affects all. That's not always the case with the more varied Linux systems, where exploits often depend on a very specific combination of software. So, if you're truly paranoid about informational attack, make sure your crucial systems are as secure as possible, and also varied in configuration, so that no single attack can take out all of them.

Re:

[eMbry00s]

Now, we don't belong to the same nation, but when it comes to nationalism I am inclined to think that the owner of my nation is the enemy of my class.

Re:

[MollyB]

I should think that sitting and reposing are two distinct physical states, happy or sad. The rest of your vivid but rambling post is interesting, not for its content, but for the fact that you took the time to say so little in so many words. I do think that when you dusted off cacodemonic [m-w.com], we'd sailed past hyperbole into gobbledygook. 8)