Cyberwarfare in China
Chinese Information Operations and Information Warfare includes the concept of “network warfare”, roughly analogous to the United States concept of cyberwarfare. Foreign Policy magazine puts the size of China's "hacker army" at anywhere from 50,000 to 100,000 individuals.
Western countries have long accused China of aggressive espionage, but although officials and organisations have traced various attacks on corporate and infrastructure computer systems in their countries to computers in China "It is nearly impossible to know whether or not an attack is government-sponsored because of the difficulty in tracking true identities in cyberspace" and China has denied accusations of cyberwarfare, and has accused the United States of engaging in cyberwarfare against it - which the US government in turn denies.
Although details are a little sketchy, it is understood that China organises its resources as follows:
- “Specialized military network warfare forces” (军队专业网络战力量) - military units for carrying out network attack and defense
- "PLA-authorized forces” (授权力量) - network warfare specialists the Ministry of State Security (MSS), the Ministry of Public Security (MPS)
- “Non-governmental forces” (民间力量) - civilian, and semi-civilian groups that spontaneously engage in network attack and defense.
Chinese universities, businesses and politicians have been subjected to cyber espionage by the United States National Security Agency since 2009 according to Edward Snowden and to defend their own networks, the PLA announced a cyber security squad in May 2011.
Accusations of espionage
Organisations, companies and governments in a number of countries have alleged incidents of "hacking" or espionage by China.
Officials in the Canadian government claim that Chinese hackers have compromised several departments within the federal government in early 2011, though the Chinese government has refused involvement.
Officials in the Indian government have alleged that attacks on Indian government networks, such as that of the Indian National Security Council, have originated in China. According to the government, Chinese hackers are experts in operating botnets.
The United States has accused China of cyberespionage against American interests, accessing the networks of important military, commercial, research, and industrial organisations. A Congress advisory group has declared China "the single greatest risk to the security of American technologies" and that "there has been a marked increase in cyber intrusions originating in China and targeting U.S. government and defense-related computer systems".
In January 2010, Google reported on targeted attacks on its corporate infrastructure originating from China "that resulted in the theft of intellectual property from Google". Apparently, the Gmail accounts of two human rights activists were compromised in the raid on Google's password system. American security experts connected the Google attack to various other political and corporate espionage efforts originating from China, including espionage against military, commercial, research, and industrial corporations. Obama administration officials called the cyberattacks "an increasingly serious cyber threat to US critical industries".
In addition to Google, at least 34 companies have been attacked. Reported cases include Northrop Grumman, Symantec, Yahoo, Dow Chemical, and Adobe Systems. Cyberespionage has been aimed at both commercial and military interests
China has denied accusations of cyberwarfare, and has accused the United States of engaging in cyberwarfare against it, accusations which the United States denies. Wang Baodong of the Chinese Embassy in the United States responded that the accusations are a result of sinophobic paranoia. He states that, "China would never do anything to harm sovereignty or security of other countries. In conformity with such national policies, the Chinese government has never employed, nor will it employ so-called civilian hackers in collecting information or intelligence of other countries. Allegations against China in this respect are totally unwarranted, which only reflect the dark mentality of certain people who always regard China as a threat."
As of March 2013, high level discussions continued.
In May 2014 a Federal Grand Jury in the United States indicted five PLA Unit 61398 officers on charges of theft of confidential business information from U.S. commercial firms and planting malware on their computers.
In September 2014, a Senate Armed Services Committee probe found hackers associated with the Chinese government had repeatedly infiltrated the computer systems of U.S. airlines, technology companies and other contractors involved in the movement of U.S. troops and military equipment, and in October 2014, The FBI said that hackers it believes to be backed by the Chinese government have recently launched attacks on U.S. companies.
In 2015, the U.S Office of Personnel Management (OPM) announced that it had been the target of a data breach targeting the records of as many as 21.5 million people. The Washington Post has reported that the attack originated in China, citing unnamed government officials. FBI Director James Comey stated: "It is a very big deal from a national security perspective and from a counterintelligence perspective. It’s a treasure trove of information about everybody who has worked for, tried to work for, or works for the United States government."
During an 18-minute stretch on 8 April 2010, state-owned China Telecom advertised erroneous network routes that instructed "massive volumes" of U.S. and other foreign Internet traffic to go through Chinese servers. A US Defense Department spokesman, told reporters that he did not know if "we've determined whether that particular incident ... was done with some malicious intent or not" and China Telecom denied the charge that it "hijacked" U.S. Internet traffic.
- 2011 Canadian government hackings
- Beijing–Washington cyber hotline
- Chinese intelligence activity abroad
- Death of Shane Todd
- Google China
- Honker Union
- Operation Aurora
- Operation Shady RAT
- Titan Rain
- People's Liberation Army Strategic Support Force
- "China’s Evolving Perspectives on Network Warfare: Lessons from the Science of Military Strategy", April 16, 2015, Joe McReynolds, jamestown.org
- "China's Hacker Army". Foreign Policy.
- Gorman, Siobhan (8 April 2009). "Electricity Grid in U.S. Penetrated By Spies". The Wall Street Journal. Retrieved 1 April 2011.
- Power Grid Penetrated?. Fox News Channel. 22 December 2009. Retrieved 1 April 2011.
- Krekel, Bryan (2009), Capability of the People's Republic of China to Conduct Cyber Warfare and Computer Network Exploitation (PDF), Northrop Grumman, archived from the original (PDF) on February 3, 2011
- Gorman, Siobhan (April 8, 2009). "Electricity Grid in U.S. Penetrated By Spies". The Wall Street Journal. Retrieved November 2, 2010.
- "Power Grid Penetrated?". Fox News.
- "China's Response to BusinessWeek". BusinessWeek. April 10, 2008. Retrieved February 12, 2013.
- Zetter, Kim (January 25, 2010). "China Accuses US of Cyberwarfare". Wired. Retrieved October 23, 2010.
- Nakashima, Ellen, "Report on ‘Operation Shady RAT’ identifies widespread cyber-spying", Washington Post, August 3, 2011.
- Anderlini, Jamil (January 15, 2010). "The Chinese dissident's 'unknown visitors'". Financial Times.
- "China Denies Role in Reported Government of Canada Hack". PCWorld. February 17, 2011. Retrieved February 17, 2011.
- Macartney, Jane (December 5, 2007). "China hits back at 'slanderous and prejudiced' alert over cyber spies". The Times. London. Retrieved April 7, 2008.
- Barnes, Julian E. (March 4, 2008). "China's computer hacking worries Pentagon". Los Angeles Times. Archived from the original on March 10, 2008. Retrieved March 4, 2008.
- Brookes, Peter (March 13, 2008). "Flashpoint: The Cyber Challenge: Cyber attacks are growing in number and sophistication". Family Security Matters. Archived from the original on March 29, 2008. Retrieved April 7, 2008.
- Elegant, Simon (November 18, 2009). "Cyberwarfare: The Issue China Won't Touch". Time Magazine. Retrieved October 25, 2010.
- Warren, Lydia (June 12, 2013). "NSA whistleblower Edward Snowden says U.S. government has been hacking Chinese universities, businesses and politicians for FOUR YEARS as he finally breaks cover". Daily Mail. London.
- http://www.washingtonpost.com/world/asia_pacific/leaker-snowdens-allegations-about-us-hacking-give-china-new-edge-in-cyber-war-of-words/2013/06/13/986c0092-d419-11e2-b3a2-3bf5eb37b9d0_story.html[dead link]
- "Snowden says U.S. hacking targets China; NSA points to thwarted attacks". The Japan Times.
- Beech, Hannah. "Meet China's Newest Soldiers: An Online Blue Army." Time, 27 May 2011.
- "George Brandis briefed by ASIO on claims China stole classified blueprints of Canberra headquarters". ABC News.
- "Foreign hackers attack Canadian government". CBC. February 16, 2011. Retrieved February 17, 2011.
- "Chinese cyberattack hits Canada's National Research Council". CBC. July 29, 2014. Retrieved July 29, 2014.
- "China mounts cyber attacks on Indian sites". Times of India. India. May 5, 2008. Retrieved October 25, 2010.
- Claburn, Thomas. "China Cyber Espionage Threatens U.S., Report Says". InformationWeek. Archived from the original on February 27, 2010. Retrieved November 1, 2010.
- Cha, Ariana Eunjung and Ellen Nakashima, "Google China cyberattack part of vast espionage campaign, experts say," The Washington Post, January 14, 2010.
- McMillan, Robert. "Report Says China Ready for Cyber-war, Espionage". PC World. Retrieved November 1, 2010.
- "Google cyberattack hit password system" NY Times, Reuters, April 19, 2010.
- Jacobs, Andrew; Helft, Miguel (January 12, 2010). "Google, Citing Attack, Threatens to Exit China". The New York Times. Retrieved November 1, 2010.
- Zetter, Kim (January 13, 2010). "Google Hackers Targeted Source Code of More Than 30 Companies". Wired. Archived from the original on September 18, 2010. Retrieved November 1, 2010.
- "US embassy cables: China uses access to Microsoft source code to help plot cyber warfare, US fears". The Guardian. London. December 4, 2010. Retrieved December 31, 2010.
- Riley, Michael, and Dune Lawrence, "Hackers Linked to China’s Army Seen From EU to D.C.", Bloomberg L.P., 27 July 2012
- U.S. Presses on Cyberthreats; In Beijing, Treasury Secretary Frames Issue as a Top Priority in Ties With China March 20, 2013 Wall Street Journal
- Finkle, J., Menn, J., Viswanatha, J. U.S. accuses China of cyber spying on American companies. Reuters, Mon May 19, 2014 6:04pm EDT.
- Clayton, M. US indicts five in China's secret 'Unit 61398' for cyber-spying. Archived May 20, 2014, at the Wayback Machine. Christian Science Monitor, May 19, 2014
- Chinese hacked U.S. military contractors, Senate panel finds September 18, 2014 Investing.com
- FBI warns U.S. businesses of cyber attacks, blames Beijing October 16, 2014 Investing.com
- Peterson, Andrea (2015-09-24). "OPM says 5.6 million fingerprints stolen in biggest cyber attack in US history. America doesn't have anything together this is why this happened". Independent.
- Sanders, Sam (4 June 2015). "Massive Data Breach Puts 4 Million Federal Employees' Records At Risk". NPR.
- "Hacks of OPM databases compromised 22.1 million people, federal authorities say". The Washington Post. July 9, 2015.
- Wolf, Jim (November 19, 2010). "Pentagon says "aware" of China Internet rerouting". Reuters. Retrieved November 26, 2010.