Feeds

Chinese Army: US hacks us so much, I'm amazed you can read this

PLA, USA finger each other harshly in cyber mud-slinging

SANS - Survey on application security programs

Two Chinese military websites - including the Defence Ministry - are routinely subjected to thousands of hacking attacks every month, the majority of which can be traced based to the US, Chinese authorities alleged this week.

Two-thirds of the 144,000 attacks a month against Chinese military sites last year came from the US, the ministry told Chinese journalists on Thursday, Reuters reports.

The accusation follows a high-profile report by US incident response firm Mandiant last week blaming a Shanghai-based People's Liberation Army affiliated team (dubbed Advanced Persistent Threat - APT -1) for attacks against 141 organisations across 20 industries in the US and other English-speaking countries over the last seven years. An Obama administration document days later also categorised China, and to a lesser extent Russia, as the sponsor of cyber-espionage attacks that threatened US jobs in multiple industries as well as menacing national security. Prime targets for these attacks include military contractors, IT and clean energy firms.

None of these accusations are new and China's traditional response has been to deny the charges, say it too has been a victim of cyberattacks, without going into details, and call for international co-operation. However in the face of increased attention to the issue of cyber-spying, which has extended into this week's RSA Conference in San Francisco, the Chinese authorities have decided to make specific counter-accusations against the US for the first time.

"The Defence Ministry and China Military Online websites have faced a serious threat from hacking attacks since they were established, and the number of hacks has risen steadily in recent years," Defence ministry spokesman Geng Yansheng told a closed monthly meeting of local journalists that excludes member of the foreign press corps.

"According to the IP addresses, the Defence Ministry and China Military Online websites were, in 2012, hacked on average from overseas 144,000 times a month, of which attacks from the US accounted for 62.9 percent," he added.

Geng also mentioned plans by the US to expand its military Cyber Command - suggesting that they were unhelpful in any moves to develop increased international cooperation in fighting hacking and computer intrusion.

Disputes about hacking attacks have strained diplomatic ties between China and the United States, already under pressure from arguments over trade, human rights and US support for Taiwan. ®

Bootnote

Everything you probably need to know about accusations of China hacking against the US, as detailed in the Mandiant report, has been summarised in its own inimitable style of animation by Taiwan's NMA TV (YouTube clip below):

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Arts and crafts store Michaels says 3 million credit cards exposed in breach
Meanwhile, Target investigators prepare for long process in nabbing hackers
Canadian taxman says hundreds pierced by Heartbleed SSL skewer
900 social insurance numbers nicked, says revenue watchman
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.