For the past four months, Chinese hackers have persistently attacked the New York Times, infiltrating its computer systems and getting passwords for its reporters and other employees.
After surreptitiously tracking the intruders to study their movements and help erect better defenses to block them, the Times and computer security experts have expelled the attackers and kept them from breaking back in.
The timing of the attacks coincided with the report of a Times investigation, published online on Oct. 25, that found that the relatives of Chinese Premier Wen Jiabao (溫家寶) had accumulated a fortune worth several billion of US dollars through business dealings.
Security experts hired by the Times to detect and block the computer attacks gathered digital evidence that Chinese hackers, using methods that some consultants have associated with the Chinese military in the past, breached the Times’ network.
They broke into the e-mail accounts of its Shanghai bureau chief, David Barboza, who wrote the reports on Wen’s relatives, and Jim Yardley, the Times’ South Asia bureau chief in India, who previously worked as bureau chief in Beijing.
“Computer security experts found no evidence that sensitive e-mails or files from the reporting of our articles about the Wen family were accessed, downloaded or copied,” Times executive editor Jill Abramson said.
The hackers tried to cloak the source of the attacks on the Times by first penetrating computers at US universities and routing the attacks through them, said computer security experts at Mandiant, the company hired by the Times. This matches the subterfuge used in many other attacks that Mandiant has tracked to China.
The attackers first installed malicious software, or malware, that enabled them to gain entry to any computer on the Times’ network. The malware was identified by computer security experts as a specific strain associated with computer attacks originating in China. More evidence of the source, experts said, is that the attacks started from the same university computers used by the Chinese military to attack US military contractors in the past.
Security experts found evidence that the hackers stole the corporate passwords of every Times employee and used those to gain access to the computers of 53 employees, most of them outside the Times’ newsroom.
Experts found no evidence that the intruders used the passwords to seek information that was not related to the reporting on the Wen family.
No customer data was stolen from the Times, they said.
Asked about evidence that indicated the hacking originated in China, China’s Ministry of National Defense on Wednesday said that “to accuse the Chinese military of launching cyberattacks without solid proof is unprofessional and baseless.”
In Beijing, Chinese Ministry of Foreign Affairs spokesman Hong Lei (洪磊) told reporters: “The competent Chinese authorities have already issued a clear response to the groundless accusations made by the New York Times.”
Asked about cyberspying and hacking accusations made against China in general, he said: “To arbitrarily assert and to conclude without hard evidence that China participated in such hacking attacks is totally irresponsible.”
“China is also a victim of hacking attacks. Chinese laws clearly forbid hacking attacks, and we hope relevant parties takes a responsible attitude on this issue,” he said.
Additional reporting by AFP
Auckland rang in 2026 with a downtown fireworks display launched from New Zealand’s tallest structure, Sky Tower, making it the first major city to greet the new year at a celebration dampened by rain, while crowds in Taipei braved the elements to watch Taipei 101’s display. South Pacific countries are the first to bid farewell to 2025. Clocks struck midnight in Auckland, with a population of 1.7 million, 18 hours before the famous ball was to drop in New York’s Times Square. The five-minute display involved 3,500 fireworks launched from the 240m Sky Tower. Smaller community events were canceled across New Zealand’s
The Ministry of Foreign Affairs (MOFA) yesterday said it is closely monitoring developments in Venezuela, and would continue to cooperate with democratic allies and work together for regional and global security, stability, and prosperity. The remarks came after the US on Saturday launched a series of airstrikes in Venezuela and kidnapped Venezuelan President Nicolas Maduro, who was later flown to New York along with his wife. The pair face US charges related to drug trafficking and alleged cooperation with gangs designated as terrorist organizations. Maduro has denied the allegations. The ministry said that it is closely monitoring the political and economic situation
‘SLICING METHOD’: In the event of a blockade, the China Coast Guard would intercept Taiwanese ships while its navy would seek to deter foreign intervention China’s military drills around Taiwan this week signaled potential strategies to cut the nation off from energy supplies and foreign military assistance, a US think tank report said. The Chinese People’s Liberation Army (PLA) conducted what it called “Justice Mission 2025” exercises from Monday to Tuesday in five maritime zones and airspace around Taiwan, calling them a warning to “Taiwanese independence” forces. In a report released on Wednesday, the Institute for the Study of War said the exercises effectively simulated blocking shipping routes to major port cities, including Kaohsiung, Keelung and Hualien. Taiwan would be highly vulnerable under such a blockade, because it
UNRELENTING: China attempted cyberattacks on Taiwan’s critical infrastructure 2.63 million times per day last year, up from 1.23 million in 2023, the NSB said China’s cyberarmy has long engaged in cyberattacks against Taiwan’s critical infrastructure, employing diverse and evolving tactics, the National Security Bureau (NSB) said yesterday, adding that cyberattacks on critical energy infrastructure last year increased 10-fold compared with the previous year. The NSB yesterday released a report titled Analysis on China’s Cyber Threats to Taiwan’s Critical Infrastructure in 2025, outlining the number of cyberattacks, major tactics and hacker groups. Taiwan’s national intelligence community identified a large number of cybersecurity incidents last year, the bureau said in a statement. China’s cyberarmy last year launched an average of 2.63 million intrusion attempts per day targeting Taiwan’s critical
RSS