A cyberespionage campaign blamed on China was more sweeping than previously known, with suspected state-backed hackers exploiting a device meant to boost Internet security to penetrate the computers of critical US entities.
The hack of Pulse Connect Secure networking devices came to light in April, but its scope is only now starting to become clear.
The hackers targeted telecommunications giant Verizon and the Metropolitan Water District of Southern California, the US’ largest water agency.
News broke earlier this month that the New York City subway system, the country’s largest, was also breached.
Security researchers said that dozens of other high-value entities that have not yet been named were also targeted as part of the breach of Pulse Secure, which is used by many companies and governments for secure remote access to their networks.
It is unclear what sensitive information, if any, was accessed.
Some of the targets said that they did not see any evidence of data being stolen.
That uncertainty is common in cyberespionage and it can take months to determine data loss, if it is ever discovered.
However, even if sensitive information was not compromised, experts say that it is worrisome that hackers managed to gain footholds in networks of critical organizations whose secrets could be of interest to China for commercial and national security reasons.
“The threat actors were able to get access to some really high-profile organizations, some really well-protected ones,” said Charles Carmakal, head technology officer of Mandiant, whose company first publicized the hacking campaign in April.
China has a long history of using the Internet to spy on the US and presents a “prolific and effective cyberespionage threat,” the US Office of the Director of the National Intelligence said in its most recent annual threat assessment.
The Chinese government has denied any role in the Pulse hacking campaign and the US government has not made any formal attribution.
In the Pulse campaign, security experts said sophisticated hackers exploited never-before-seen vulnerabilities to break in and were hyper diligent in trying to cover their tracks once inside.
“The capability is very strong and difficult to defend against, and the profile of victims is very significant,” BAE Systems Applied Intelligence head of cyber Adrian Nish said. “This is a very targeted attack against a few dozen networks that all have national significance in one way or another.”
The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency issued an April alert about the Pulse hack saying that it was aware of “compromises affecting a number of US government agencies, critical infrastructure entities and other private sector organizations.”
The new details of the Pulse Secure hack come at a time of tension between the US and China.
US President Joe Biden has made checking China’s growth a top priority, and said the country’s ambition of becoming the wealthiest and most powerful country in the world is “not going to happen under my watch.”
THE TRAGEDY OF PUNCH: Footage of the seven-month-old Japanese macaque has gone viral online after he was rejected by his mother and formed a bond with a soft toy A baby monkey in Japan has captured hearts around the world after videos of him being bullied by other monkeys and rejected by his mother went viral last week. Punch, a Japanese macaque, was born in July last year at Ichikawa City Zoo. He has drawn international attention after zookeepers gave him a stuffed orangutan toy after he was abandoned by his mother. Without maternal guidance to help him integrate, Punch has turned to the toy for comfort. He has been filmed multiple times being dragged and chased by older Japanese macaques inside the enclosure. Early clips showed him wandering alone with
Australian Prime Minister Anthony Albanese yesterday said he did not take his security for granted, after he was evacuated from his residence for several hours following a bomb threat sent to a Chinese dance group. Albanese was evacuated from his Canberra residence late on Tuesday following the threat, and returned a few hours later after nothing suspicious was found. The bomb scare was among several e-mails threatening Albanese sent to a representative of Shen Yun, a classical Chinese dance troupe banned in China that is due to perform in Australia this month, a spokesperson for the group said in a statement. The e-mail
South Korea would soon no longer be one of the few countries where Google Maps does not work properly, after its security-conscious government reversed a two-decade stance to approve the export of high-precision map data to overseas servers. The approval was made “on the condition that strict security requirements are met,” the South Korean Ministry of Land, Infrastructure and Transport said. Those conditions include blurring military and other sensitive security-related facilities, as well as restricting longitude and latitude coordinates for South Korean territory on products such as Google Maps and Google Earth, it said. The decision is expected to hurt Naver and Kakao
TENSIONS: The march went ahead without clashes, but arrests were still possible as police investigate suspects behind Nazi salutes, racist slurs and homophobic insults Thousands of people on Saturday marched in southeastern France under heavy security in tribute to a far-right activist whose killing, blamed on the hard left, has put the country on edge. The crowd — many wearing black and some covering their lower faces with masks — marched through the city of Lyon carrying flowers and placards bearing pictures of Quentin Deranque and the words: “justice for Quentin” and “the extreme left kills.” The 23-year-old died from head injuries following clashes between radical left and far-right supporters on the sidelines of a demonstration against a politician from the left-wing France Unbowed
RSS