Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
Security China United States

FBI Warns Industry of Chinese Cyber Campaign 106

daten writes The FBI on Wednesday issued a private warning to industry that a group of highly skilled Chinese government hackers was in the midst of a long-running campaign to steal valuable data from U.S. companies and government agencies. "These state-sponsored hackers are exceedingly stealthy and agile by comparison with the People's Liberation Army Unit 61398 ... whose activity was publicly disclosed and attributed by security researchers in February 2013," said the FBI in its alert, which referred to a Chinese military hacker unit exposed in a widely publicized report by the security firm Mandiant.
This discussion has been archived. No new comments can be posted.

FBI Warns Industry of Chinese Cyber Campaign

Comments Filter:
  • Because at this point, they've already gone to war with us. It would be devastating for the US economy in the short term but long term I'm not so sure.

    Free trade doesn't work if both sides are not playing the same game.
    • by sdguero ( 1112795 ) on Thursday October 16, 2014 @01:04PM (#48161191)
      Trade Wars lead to real wars.
    • It would be devastating for the US economy in the short term...

      Not if they build it up first, before going to war. But, you know how fanciful that dream is. Everything is done by reaction [youtube.com], and usually a bad one.

    • Re: (Score:2, Insightful)

      by TheP4st ( 1164315 )

      Free trade doesn't work if both sides are not playing the same game.

      Right, the US would never consider spying on Chinese companies and government branches. /sarcasm
      I like to believe that you are just trolling, but based on the inane world view frequently voiced by 'muricans online it is very hard to tell.

      • Re: (Score:2, Informative)

        by TheP4st ( 1164315 )
        I should have added this little reality check:
        NSA Has Undercover Operatives in Foreign Companies [schneier.com]
        The latest Intercept article on the Snowden documents talks about the NSA's undercover operatives working in foreign companies. There are no specifics, although the countries China, Germany, and South Korea are mentioned.
      • voiced by 'muricans online it is very hard to tell.

        Just a quick note: insulting people with differing opinions (no matter how right you may think you are) doesn't actually help you make your case, although it may increase your innate sense of superiority. In addition, those "'muricans" who might otherwise agree with you may just write you off as another bigoted foreign asshole who lumps everyone in a given country together.
        • My intention were not to lump everyone in the US together which is why I used the term 'muricans which in the context refer to a specific category, namely the ones that blindly believe everything uttered by the likes of Glenn Beck or whatever the flavour of right wing pundit is nowadays in other words the same ones that think it is perfectly fine when NSA use undercover agents in foreign corporations but cry foul when other nations have the audacity to do the same.
          And at no point did I attempt to change t
        • by tjb6 ( 3421769 )

          As opposed, for instance, to another "murican" asshole with their world view centred in North America.

          The view from the outside, guys, is that the US does many things to other countries that it would never tolerate having done to itself.

          Unfortunately, the more moderate citizens of the US (I've met quite a few), don't seem to get heard outside of the US.

          Cyber attacks are an extension of espionage - been happening for thousands of years, nearly everyone does it, probably never going to stop, so let's not go d

    • by Charliemopps ( 1157495 ) on Thursday October 16, 2014 @01:13PM (#48161271)

      We're not playing the same game?
      Just how deep in the sand do you have your head buried?

      http://www.dailymail.co.uk/new... [dailymail.co.uk]

      What China is doing is a drop in the bucket compared to what the USA is doing.

    • by jhol13 ( 1087781 )

      Yea, CIA admitted, before 911, that their main task was commercial espionage. So now they are threatened that Chinese might be faster?
      (yes, there are documented cases, e.g. german windmill technology in production being patented in USA)

    • We owe the Chinese... umm, all of our monitory system's worth? I think they may be just checking in on us, big-brother style, just to make sure what the hell we're doing with it all.
  • TAO (Score:4, Interesting)

    by MagickalMyst ( 1003128 ) on Thursday October 16, 2014 @12:56PM (#48161105)
    The NSA refers to its own "Hacker Units" as TAO, or "Tailored Access Operations".

    TAO is also a Chinese word that means "the Way".
  • by Anonymous Coward on Thursday October 16, 2014 @12:56PM (#48161107)

    The group’s sophistication is demonstrated less in how it gains access to targets’ computers and more in how it moves “laterally’’ once inside the system, disguising its behavior to look normal so it goes undetected, said Peter B. LaMontagne, Novetta Solutions chief executive officer.

    In my day, spies had to get into the building, gain access to the blueprint file cabinet drawers, photograph them - on film no less and getting the exposure right, and then make their way out without getting caught.

    It was ALL social engineering back then - OLD school.

    You whipper snappers sitting behind your keyboards eating Cheetoes or Lo Mein (whatever the case may be) and drinking Wired Bull, or whatever those caffeine drinks are called, are just a bunch of lazy good for nothings!

    We had to WALK and GET INTO a building and even TALK to people!

    Pffft!

    I'd like to see some Chinese spy walk into a high tech firm and go un-noticed!

    H1-bs? Oh, shit! Yeah, ....Um.....never mind.

    Captcha "crackpot" - Ahahahahahahahahaha!

  • by TechyImmigrant ( 175943 ) on Thursday October 16, 2014 @01:06PM (#48161201) Homepage Journal

    I presume the company I work for is a target, but it's no less a target from any other government.

    This isn't news I can use. There's no behavior change that is a rational response to this. It's not like we didn't already know there are several governments trying to get access to all out stuff.

    • It's important to keep up the fear factor. People are more compliant.

    • The first thing I thought of when I saw this was: "Incredibly tricky, these orientals". Cliches I grew up with! Great!
      Time to put out the honeypots. All the gory details on lukewarm fusion, and AS YET UNPATENTED. It just needs to look very plausible, 'cos they're very tricky.

    • by TiggertheMad ( 556308 ) on Thursday October 16, 2014 @01:25PM (#48161393) Journal
      This is news that nerds might be interested in. If you have no use for it, clearly you aren't a nerd. Go elsewhere for your news. I am tired of people bitching about stories that don't pertain to them. If you don't find them useful, then don't read them.

      This is important news. If China is stepping up it's state sponsored spying and digital theft, I want to know about it. It might be useful background info to know so that when the president decides to park a cruse missile on a building in China, you know some of the history that lead to this decision.
      • >This is important news.
        I'm not criticizing the reporting. I'm criticizing the FBI for putting out blatantly manipulative, fear mongering press releases.

        > If China is stepping up it's state sponsored spying and digital theft
        They are. So is everyone else. That isn't new news.

        >If you have no use for it
        If they told us something we could take action on, like a way to distinguish these 'new' bad actors from anyone else, that would be news I could use.

        >clearly you aren't a nerd
        Yes clearly. I'll hand m

  • they'd have the world's largest stock of bad tech puns, as well as all the troll stock they'd need to stultify the entire military machine. just think! -- unable to launch total world war because they can't decide on which desktop and which distro to send into the field!

  • What is it about the Chinese that compels them to grin and flatly deny that which is clearly and demonstrably so? No reasonable person above the age of three would be so disingenuous, so why the stupid and childish denials?
    • by tomhath ( 637240 )
      Cultures are different. East is East, West is West.
      • by Jawnn ( 445279 )

        Cultures are different. East is East, West is West.

        Yes, but rational behavior transcends culture, does it not? What possible rational reason could an adult have for denying that which is patently obvious to anyone who cares to look?

    • by PPH ( 736903 )

      Probably a feeling that such activities bring shame upon their people. Nothing like the USA [slashdot.org].

    • Have you heard the US government say: "Yes, we spy on the whole internet including American civilians, including government leaders of friendly nations. Yes, we know it's against our own laws. Yes, we also engage in economic espionage."? I guess I missed that statement from Obama. Of course any government would deny any uncovered secret operation.

      Also, have you thought about the scenario, that the Chinese government is actually NOT involved in this? Have you considered that all these reports from all these

  • And this isn't an act of War why?
  • Irony (Score:3, Insightful)

    by Anonymous Coward on Thursday October 16, 2014 @01:22PM (#48161351)

    Yeah, how dare they trespass on the FBI's domain like that!

  • That's ok since... (Score:5, Insightful)

    by GerardAtJob ( 1245980 ) on Thursday October 16, 2014 @01:23PM (#48161355)

    Since the US does not need any warrant to hack in a remote computer (out of US), why Chinese should not hack into US server without warrant or warning??

    It's legal isn't it ?

    • That's one of the best reasons to curtail the spying and hacking as sponsored by the state. How can we tell the Chinese to cut it out if we do the same to them? The difference between our spying that isn't driven by corporate intellectual property theft and theirs that often is driven by that kind of theft is lost in the noise when you actually want to claim the moral high ground in trade talks. One guilty party will not have much luck shaming another.

  • Asumming Unit 61398 was part of a 65535 strong platoon, I guess there are only 65534 units left to be worried abput?
  • The USA should have an agency (maybe call it the NSA+) that's tasked with helping companies shore up cyber defenses... Maybe even doing code reviews and penetration testing of common software to look for vulnerabilities. Instead we have an NSA that exploits vulnerabilities and creates new backdoors into software and networks with no real oversight or accountability

    • by brrant ( 1997712 )

      The USA should have an agency (maybe call it the NSA+) that's tasked with helping companies shore up cyber defenses... Maybe even doing code reviews and penetration testing of common software to look for vulnerabilities. Instead we have an NSA that exploits vulnerabilities and creates new backdoors into software and networks with no real oversight or accountability

      While they merrily install backdoors in the systems of every business they, "help."

  • by BoRegardless ( 721219 ) on Thursday October 16, 2014 @01:42PM (#48161551)

    Sun Tzu said "I would rather have one good spy than 10,000 soldiers."

  • Wow, now that's news. Did the Chinese give him a signing bonus too?

  • by Jim Sadler ( 3430529 ) on Thursday October 16, 2014 @01:58PM (#48161731)
    Consider the size of US debts to China. Consider that we could seize and keep Chinese assets for the crime of cyber espionage. Or as an alternative we could try a hack that destroys the economic system of China. Maybe China needs a formal warning that we make make them howl, gnash their teeth and cast them into darkness for eternity.
    • Consider the size of US debts to China. Consider that we could seize and keep Chinese assets for the crime of cyber espionage. Or as an alternative we could try a hack that destroys the economic system of China. Maybe China needs a formal warning that we make make them howl, gnash their teeth and cast them into darkness for eternity.

      IMHO wrecking the Chinese economy would have significant negative impact on our own.

  • The chinese might break into your secure email server, but they won't plant child porn on it in an attempt to incriminate you. The FBI, on the other hand..
    • The chinese might break into your secure email server, but they won't plant child porn on it in an attempt to incriminate you. The FBI, on the other hand..

      Citation needed. Most FBI & Justice types I've met would not do that kind of thing. People who are into law enforcement have political agendas, yes, but there's a big red line between acting on a political agenda and outright felony criminal behavior.

      Sure, the FBI will sometimes publicly support things which hurt as a society because it makes it easier for them to do their jobs (e.g. fighting encryption), and they do a lot of entrapment of people who go along with whatever crime they set up (in most d

      • This is easy. See: Freedom Hosting.
        http://arstechnica.com/tech-policy/2013/09/fbi-admits-what-we-all-suspected-it-compromised-freedom-hostings-tor-servers/
        The FBI had compromised this guy's servers for months, and then viola, there's child porn on there. The fact that the dudes you know from the business seem like right ol' chaps is no reflection on the nature of the FBI or its sordid, filthy history.
        You realize the FBI is constantly arming and training wannabe terrorists to the brink of action, right? ht [occupywallst.org]
      • and they do a lot of entrapment of people who go along with whatever crime they set up (in most domestic terrorism cases you hear about the FBI is the one selling the arms to the "terrorists").

        But at the end of the day, they're generally law enforcement guys interested in arresting people who violate the law, not in pretending innocent people have violated the law.

        There is quite a bit of contradiction in those lines, and the former of them is the very reason the grandparent finds the FBI more threatening.

        • and they do a lot of entrapment of people who go along with whatever crime they set up (in most domestic terrorism cases you hear about the FBI is the one selling the arms to the "terrorists").

          But at the end of the day, they're generally law enforcement guys interested in arresting people who violate the law, not in pretending innocent people have violated the law.

          There is quite a bit of contradiction in those lines, and the former of them is the very reason the grandparent finds the FBI more threatening.

          Not at all. They entrap people, yes, but they only arrest people who actually commit the crime. Sometimes it's a pretty terrible thing to do, sometimes it isn't, but either way, it's arresting people who committed the crime.

          • by Rujiel ( 1632063 )
            "but they only arrest people who actually commit the crime" ...after prodding them for months and giving them all the necessary training and materials to commit said crime. Then the FBI cheers as if it helped to solve a situation that it in reality created. You are delusional if you don't see the problem with that.
  • Yeah, Chinese bastards, they even wrote stuxnet and that chinese defelector, snowden, is the worst of lot. (Really, slashdot, really? )
  • by Anonymous Coward

    I'm more concerned about NSA/FBI and police hacking than I am Chinese hackers.

  • I work for a Chinese company. So should I just think of these hackers as automatic cloud storage?

  • by Anonymous Coward

    No more hacking, nothing to hide, everything is free, no more locks on any sort of data, what an epic success!

  • In your firewall:

    1. Whitelist destination IPs for destination port 53, workflow denials adding IPs that have reverse DNS entries. (e.g. don't allow access to fly-by night DNS servers)

    2. Whitelist source IPs for destination port 53. (E.g. do not allow alternate DNS servers to be used inside your org)

    Have your org's DNS servers point to OpenDNS or GoogleDNS -- they do a good job of filtering out the rifraf

  • "The FBI on Wednesday issued a private warning to industry that a group of highly skilled Chinese government hackers was in the midst of a long-running campaign to steal valuable data from U.S. companies and government agencies"

    Nothing to read here, moving on ...
  • They're evolving!!!
  • by Anonymous Coward

    Encryption bad;
    http://yro-beta.slashdot.org/story/14/10/16/1915216/fbi-director-continues-his-campaign-against-encryption
    Hackers Bad;
    Ripping off data as per this story.

    Does not encryption foil hackers? Then it's good unless it stops the FBI, then it's bad.
    This good/Bad thing about who gets to steal your data is pretty confusing.
    Chinese bad, FBI good?

As of next week, passwords will be entered in Morse code.

Working...