lolloj - Fotolia

China hacked US firms despite cyber pact, says CrowdStrike

Hackers linked to the Chinese government have attempted to hack into at least five US technology and two pharmaceutical firms, according to security researchers

Hackers linked to the Chinese government have attempted to hack into several US firms since the two countries officially agreed not to spy on each other for commercial gain, according to researchers.

Hackers based in China have been routinely accused of attacking US businesses and government agencies, including the recent breach of OPM systems that affected tens of millions of people, and China has accused US hackers of the same.

In June 2013, whistleblower Edward Snowden claimed the US had hacked hundreds of targets in China as part of more than 61,000 NSA hacking operations worldwide.

On 25 September 2015, US president Barack Obama and Chinese president Xi Jinping agreed that neither government would support the cyber theft of intellectual property (IP).

The agreement appeared to be making progress with reports that China had arrested a number of Chinese hackers at the request of the US.

However, according to US security firm CrowdStrike, hackers linked to the Chinese government have attempted to hack into at least five US technology and two pharmaceutical firms, reports Reuters.

CrowdStrike said the attempted attacks came from several groups, including one previously identified as Deep Panda, and used attack software previously seen in attacks on US defence contractor VAE and health insurer Anthem.

A report published in July 2015 claimed the same Chinese hackers were behind the attacks on Anthem, United Airlines and the US Office of Personnel Management (OPM).

According to CrowdStrike co-founder Dmitri Alperovitch, the attempted breaches appeared to be aimed at the theft of IP and trade secrets.

However, US security firm FireEye said that although the Chinese hackers it monitors are still active, it was too soon to say if they are engaging in economic espionage or if their aims have shifted.

There was no immediate comment from China’s Foreign Ministry or the Obama administration.

A senior US official who asked to remain anonymous said the US would monitor China’s cyber activities closely and press China to abide by all of its commitments.

Read more about US-China cyber relations

Read more on Privacy and data protection

Join the conversation

5 comments

Send me notifications when other members comment.

Please create a username to comment.

....no big fan of china but who watches the US and ensures they are not doing the same? Who reports on when they don't?
Cancel
One big chaos. Nobody really found out who was the author of an attack. According to IP addresses, according to the text of the virus? This is little evidence.
In the ICT environment of security must change the basics - http://www.slideshare.net/JiNapravnik/its-time-to-change-the-basics-of-ict-security

Between governments must be signed agreement, like an agreement on nuclear non- proliferation. Today, the government blame each other for hacker attacks. Actual author may be a "lone wolves" or a terrorist group.
Cancel
He's right, how do we know these aren't bot nets setup in china that are being controlled from somewhere else, like say Iran or Syria?  we don't do we.   China is too easy a scapegoat to point a finger at.
Cancel
I'm shocked, shocked that there's hacking going on in this government. We do it, too, but the Chinese seem to get caught more often. Or they do it more often. Perhaps we need a tighter lid on the cookie jar...?
Cancel
Is this really a surprise? Can anyone really trust people these days? Just look at our politicians, "NO NEW TAXES" is always a joke. It's going to happen. It's just a matter of time. Politicians make deals one day and go back on them the next citing unforeseen circumstances. So deals with other countries to me are the same. Who is accountable and how do we enforce the rules set in place?
Cancel

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close