You have commented 339 times on Rantburg.

Your Name
Your e-mail (optional)
Website (optional)
My Original Nic        Pic-a-Nic        Sorry. Comments have been closed on this article.
Bold Italic Underline Strike Bullet Blockquote Small Big Link Squish Foto Photo
Submit your comments on this article
China-Japan-Koreas
US agency under Chinese hack attack
2006-10-07
COMPUTER hackers based in China have launched sustained attacks on the computers of a US Commerce Department technology export office, a department official said overnight. The official, who requested anonymity, said the attacks had originated from websites registered with Chinese Internet service providers.
I ban five or six Chinese IP blocs a week. Eventually I suppose I'll have them all banned.
“Chinese-based hackers, especially in the Chinese province of Guangdong, have mounted systematic efforts to penetrate US government and industry computer networks in order to access secret information...”
Chinese-based hackers, especially in the Chinese province of Guangdong, have mounted systematic efforts to penetrate US government and industry computer networks in order to access secret information, according to computer security experts. The experts and some US lawmakers believe the attacks are sanctioned by Chinese government agencies.

The attacks on the Commerce Department have been so persistent that the affected office, the Bureau of Industry and Security (BIS), has been forced to replace hundreds of computers and set up a new computer system. The bureau's work is sensitive because it supervises US exports of software and technology for commercial and military uses, as well as commodities. "BIS discovered a targeted effort to gain access to BIS user accounts," said Richard Mills, a Commerce Department spokesman, without commenting on the origin of the attacks. "They took a series of immediate action steps to ensure that no BIS data is compromised. We have no evidence that any BIS data has been lost or compromised," said Mr Mills.

Department officials are concerned about the hacking attacks because the bureau retains sensitive commercial and economic information on US exporters as well as data related to law enforcement records. In a bid to ramp up security, the bureau has restricted employees' Internet access to stand alone computers that are not linked to the bureau's network.
Posted by:Fred

#11  I'd been getting almost daily (scripted) sshd (port 22) probes from China for months. Finally fixed the problem for good. Next step is a 'tar pit' to bog them down and decrease attacks on other sites.
Posted by: DMFD   2006-10-07 23:08  

#10  Along with each confirmation statement that you've connected to a particular account the Chicoms get, they should also get a worm that replicates all the data on their computer and sends it back to a dump site in the US. If done right, few if any Chinese hackers would ever know.
Posted by: Old Patriot   2006-10-07 19:36  

#9  You must have multiple, huge hard drives, ro hold all those addresses.

You can block whole ranges of IP addresses with a statement shorter than this sentence.

Posted by: NoBeards   2006-10-07 12:13  

#8  gromky: I'm surprised that they can get anything going - overseas locations are slooooow in China.
That, they are - for web browsing. Non-web connections are fine. And even for web connections, I doubt hackers working for the Chinese government have to go through the Great Firewall of China. My feeling is that there is a DMZ set up just for them.
Posted by: Zhang Fei   2006-10-07 10:48  

#7  I ban five or six Chinese IP blocs a week. Eventually I suppose I'll have them all banned.

You must have multiple, huge hard drives, ro hold all those addresses.
Posted by: Redneck Jim   2006-10-07 09:14  

#6  Commerce Department technology export office? This isn't warfare, it's some company's hired goons trying to get an economic edge.

I'm surprised that they can get anything going - overseas locations are slooooow in China.
Posted by: gromky   2006-10-07 08:39  

#5  A random thought on secret stealing:
Its one thing to have the Tippy-top Sekret Planz;
It is quite another to do something with them. Implementation is always a problem with the chi-coms.

From what little I have seen, if you spend most of your time/effort into copying others work, you don't realy learn anything. You are not able to improve much on what you have stolen. As a result, you can never surpass the oppositon. You can only go as fast as the person doing the original work.

OTOH, if you suffer from a titanic cultural inferiority complex, Mindless Copying does prevent embarrassing/expensive mistakes.
Posted by: N guard   2006-10-07 08:15  

#4  I wonder how much they've managed to get their hands on already.
Posted by: gorb   2006-10-07 03:07  

#3  We do exactly what Fred does, ban 'em. From the whole shebang. Make their IP blocks non-routable.

Also: Their insistance on monitoring concentrates the ChiComm (grin) channels into a single point of failure and leaves them vulnerable to attack. Only their military has redundancy.
Posted by: Cheanter Thugum4248   2006-10-07 02:50  

#2  More importantly, do we hack back with disk munching killer worms and viruses? In the information age, this is nothing short of a military assault. China must be penalized for such electronic aggression through imposition of import restrictions and levies.
Posted by: Zenster   2006-10-07 00:59  

#1  So do we hack back?
Posted by: 3dc   2006-10-07 00:15  

00:00