A China-based network stole Indian military secrets, hacked the Dalai Lama’s office and computers around the world in an elaborate cyber espionage scheme, Canadian researchers said Tuesday.
Researchers at the University of Toronto’s Citizen Lab said they documented a “complex ecosystem of cyber-espionage that systematically compromised government, business, academic and other computer networks in India, the offices of the Dalai Lama, the UN and several other countries.”
Data stolen from dozens of hacked computers mostly in India contained sensitive information about missile systems and artillery designs and Sino-Indian relations, they said in a report titled Shadows in the Cloud.
Personal, financial and business information of citizens from 31 countries was accessed, including from Canadian visa applications.
“We recovered one document that appears to be an encrypted diplomatic correspondence, two documents classified as ‘SECRET,’ six as ‘RESTRICTED’ and five as ‘CONFIDENTIAL,’” the researchers said.
At a press conference, researcher Greg Walton said these were “very targeted and deliberate attacks.”
“They suggest to us a shift is occurring from criminal and industrial espionage in cyberspace to a possibility of political espionage, whether that is directed by government or not,” he said.
Walton explained the attacks “were specifically crafted to hit individuals, usually in positions of power.”
He said state spies, or criminal groups aiming to sell information to governments are likely involved. “We believe a market has emerged for this,” he said.
The researchers traced the attacks to southern China, “and to known entities within the criminal underground of the PRC [People’s Republic of China].”
At one point, they even tracked down and chatted online with an unidentified suspect.
China denied involvement in the attacks cited in the Citizen Lab report, which comes just weeks after Google effectively shut down its China search engine over censorship and cyber-attacks.
“Some reports have, from time to time, been heard of insinuating or criticizing the Chinese government ... I have no idea what evidence they have or what motives lie behind,” Chinese Foreign Ministry spokeswoman Jiang Yu (姜瑜) said.
The report highlighted what it said was “an obvious correlation to be drawn between the victims, the nature of the documents stolen, and the strategic interests of the Chinese state.”
Recovered files detailed India’s security situation in Assam, Manipur, Nagaland and Tripura states, India’s international relations with West Africa, Russia and the Middle East, and concerned Naxalite and Maoist “extremists.”
One file contained personal information on a member of India’s Directorate General of Military Intelligence. About 1,500 letters sent from the Dalai Lama’s office in 2009 were also recovered.
The researchers said the attacks would start with the opening of an attachment in an email seemingly sent by a familiar person, infecting computers.
The hackers would then misuse services such as Twitter, Google Groups, Blogspot and Yahoo Mail to send “new malicious binaries to compromised computers” ordering them to transfer documents to a “drop zone.”
The Canadian researchers traced the cyber-attacks to servers in Chengdu, China, but could not identify the culprits. Chengdu is home to the Chinese military’s technical reconnaissance bureaus tasked with signals intelligence collection.
Several infected computers were also found to be “checking in” with a server in nearby Chongqing, China, where organized crime groups reportedly operate online.
“We have no evidence in this report of the involvement of the People’s Republic of China or any other government in the Shadow network ... or that the attackers were directed in some manner — either by sub-contract or privateering — by agents of the Chinese state,” the report concluded.
“But an important question to be entertained is whether the PRC will take action to shut the Shadow network down,” the report said.
CHAMPIONS: President Lai congratulated the players’ outstanding performance, cheering them for marking a new milestone in the nation’s baseball history Taiwan on Sunday won their first Little League Baseball World Series (LLBWS) title in 29 years, as Taipei’s Dong Yuan Elementary School defeated a team from Las Vegas 7-0 in the championship game in South Williamsport, Pennsylvania. It was Taiwan’s first championship in the annual tournament since 1996, ending a nearly three-decade drought. “It has been a very long time ... and we finally made it,” Taiwan manager Lai Min-nan (賴敏男) said after the game. Lai said he last managed a Dong Yuan team in at the South Williamsport in 2015, when they were eliminated after four games. “There is
Chinese Nationalist Party (KMT) lawmakers have declared they survived recall votes to remove them from office today, although official results are still pending as the vote counting continues. Although final tallies from the Central Election Commission (CEC) are still pending, preliminary results indicate that the recall campaigns against all seven KMT lawmakers have fallen short. As of 6:10 pm, Taichung Legislators Yen Kuan-heng (顏寬恒) and Yang Chiung-ying (楊瓊瓔), Hsinchu County Legislator Lin Szu-ming (林思銘), Nantou County Legislator Ma Wen-chun (馬文君) and New Taipei City Legislator Lo Ming-tsai (羅明才) had all announced they
Nvidia Corp CEO Jensen Huang (黃仁勳) yesterday visited Taiwan Semiconductor Manufacturing Co (TSMC, 台積電), as the chipmaker prepares for volume production of Nvidia’s next-generation artificial intelligence (AI) chips. It was Huang’s third trip to Taiwan this year, indicating that Nvidia’s supply chain is deeply connected to Taiwan. Its partners also include packager Siliconware Precision Industries Co (矽品精密) and server makers Hon Hai Precision Industry Co (鴻海精密) and Quanta Computer Inc (廣達). “My main purpose is to visit TSMC,” Huang said yesterday. “As you know, we have next-generation architecture called Rubin. Rubin is very advanced. We have now taped out six brand new
POWER PLANT POLL: The TPP said the number of ‘yes’ votes showed that the energy policy should be corrected, and the KMT said the result was a win for the people’s voice The government does not rule out advanced nuclear energy generation if it meets the government’s three prerequisites, President William Lai (賴清德) said last night after the number of votes in favor of restarting a nuclear power plant outnumbered the “no” votes in a referendum yesterday. The referendum failed to pass, despite getting more “yes” votes, as the Referendum Act (公民投票法) states that the vote would only pass if the votes in favor account for more than one-fourth of the total number of eligible voters and outnumber the opposing votes. Yesterday’s referendum question was: “Do you agree that the Ma-anshan Nuclear Power Plant
RSS