For the past four months, Chinese hackers have persistently attacked the New York Times, infiltrating its computer systems and getting passwords for its reporters and other employees.
After surreptitiously tracking the intruders to study their movements and help erect better defenses to block them, the Times and computer security experts have expelled the attackers and kept them from breaking back in.
The timing of the attacks coincided with the report of a Times investigation, published online on Oct. 25, that found that the relatives of Chinese Premier Wen Jiabao (溫家寶) had accumulated a fortune worth several billion of US dollars through business dealings.
Security experts hired by the Times to detect and block the computer attacks gathered digital evidence that Chinese hackers, using methods that some consultants have associated with the Chinese military in the past, breached the Times’ network.
They broke into the e-mail accounts of its Shanghai bureau chief, David Barboza, who wrote the reports on Wen’s relatives, and Jim Yardley, the Times’ South Asia bureau chief in India, who previously worked as bureau chief in Beijing.
“Computer security experts found no evidence that sensitive e-mails or files from the reporting of our articles about the Wen family were accessed, downloaded or copied,” Times executive editor Jill Abramson said.
The hackers tried to cloak the source of the attacks on the Times by first penetrating computers at US universities and routing the attacks through them, said computer security experts at Mandiant, the company hired by the Times. This matches the subterfuge used in many other attacks that Mandiant has tracked to China.
The attackers first installed malicious software, or malware, that enabled them to gain entry to any computer on the Times’ network. The malware was identified by computer security experts as a specific strain associated with computer attacks originating in China. More evidence of the source, experts said, is that the attacks started from the same university computers used by the Chinese military to attack US military contractors in the past.
Security experts found evidence that the hackers stole the corporate passwords of every Times employee and used those to gain access to the computers of 53 employees, most of them outside the Times’ newsroom.
Experts found no evidence that the intruders used the passwords to seek information that was not related to the reporting on the Wen family.
No customer data was stolen from the Times, they said.
Asked about evidence that indicated the hacking originated in China, China’s Ministry of National Defense on Wednesday said that “to accuse the Chinese military of launching cyberattacks without solid proof is unprofessional and baseless.”
In Beijing, Chinese Ministry of Foreign Affairs spokesman Hong Lei (洪磊) told reporters: “The competent Chinese authorities have already issued a clear response to the groundless accusations made by the New York Times.”
Asked about cyberspying and hacking accusations made against China in general, he said: “To arbitrarily assert and to conclude without hard evidence that China participated in such hacking attacks is totally irresponsible.”
“China is also a victim of hacking attacks. Chinese laws clearly forbid hacking attacks, and we hope relevant parties takes a responsible attitude on this issue,” he said.
Additional reporting by AFP
A Chinese aircraft carrier group entered Japan’s economic waters over the weekend, before exiting to conduct drills involving fighter jets, the Japanese Ministry of Defense said yesterday. The Liaoning aircraft carrier, two missile destroyers and one fast combat supply ship sailed about 300km southwest of Japan’s easternmost island of Minamitori on Saturday, a ministry statement said. It was the first time a Chinese aircraft carrier had entered that part of Japan’s exclusive economic zone (EEZ), a ministry spokesman said. “We think the Chinese military is trying to improve its operational capability and ability to conduct operations in distant areas,” the spokesman said. China’s growing
Nine retired generals from Taiwan, Japan and the US have been invited to participate in a tabletop exercise hosted by the Taipei School of Economics and Political Science Foundation tomorrow and Wednesday that simulates a potential Chinese invasion of Taiwan in 2030, the foundation said yesterday. The five retired Taiwanese generals would include retired admiral Lee Hsi-min (李喜明), joined by retired US Navy admiral Michael Mullen and former chief of staff of the Japan Self-Defense Forces general Shigeru Iwasaki, it said. The simulation aims to offer strategic insights into regional security and peace in the Taiwan Strait, it added. Foundation chair Huang Huang-hsiung
PUBLIC WARNING: The two students had been tricked into going to Hong Kong for a ‘high-paying’ job, which sent them to a scam center in Cambodia Police warned the public not to trust job advertisements touting high pay abroad following the return of two college students over the weekend who had been trafficked and forced to work at a cyberscam center in Cambodia. The two victims, surnamed Lee (李), 18, and Lin (林), 19, were interviewed by police after landing in Taiwan on Saturday. Taichung’s Chingshui Police Precinct said in a statement yesterday that the two students are good friends, and Lin had suspended her studies after seeing the ad promising good pay to work in Hong Kong. Lee’s grandfather on Thursday reported to police that Lee had sent
A Chinese ship ran aground in stormy weather in shallow waters off a Philippines-controlled island in the disputed South China Sea, prompting Filipino forces to go on alert, Philippine military officials said yesterday. When Philippine forces assessed that the Chinese fishing vessel appeared to have run aground in the shallows east of Thitu Island (Jhongye Island, 中業島) on Saturday due to bad weather, Philippine military and coast guard personnel deployed to provide help, but later saw that the ship had been extricated, Philippine navy regional spokesperson Ellaine Rose Collado said. No other details were immediately available, including if there were injuries among
RSS