Slashdot Mirror

← Back to Stories (view on slashdot.org)

China Denies Role In US Grid Hacks

Posted by timothy on from the stopped-beating-my-wife dept.

Slatterz writes "The Chinese government is denying any involvement in the reported infiltration of US electric grid systems. Xinhua news agency quoted Chinese foreign ministry spokesperson Jiang Yu as saying that any sort of involvement from China in the incident 'doesn't exist at all.' The denial follows a report in the Wall Street Journal which claimed that agents from China and Russia along with several other countries had infiltrated the computer systems charged with managing electricity in the US and left behind software payloads which could be used to control or disable electric grids in the US." Bruce Schneier is skeptical about the whole story.

25 of 91 comments (clear)

  1. Two schools of thought here: by slimjim8094 · · Score: 4, Insightful

    Either they did it and aren't telling (would we?) or these are simple hackers like in Russia, the Ukraine, or even here. Or they're part of the mob.

    This assumption that it must have been committed by the government is unfounded; though I would not be surprised at all. Wouldn't we if we got the shot?

    --
    I have developed a truly marvelous proof of this comment, which this signature is too narrow to contain.
    1. Re:Two schools of thought here: by toQDuj · · Score: 4, Insightful

      Perhaps it's just a case of the US energy grid getting old and crappy, and someone else needing a scapegoat for the trouble to come.

      B.

      --
      Every experiment which ends in a big bang is a good experiment.
  2. "along with several other countries" by Anonymous Coward · · Score: 4, Interesting

    This is code for "Israel".

    1. Re:"along with several other countries" by furby076 · · Score: 3, Insightful

      If Israel hacked the US grid they are most likely getting paid by the US to show the US where the weak-points are. This is not unheard of. Israel is very good with technology and network security. But Israel really doesn't work with Russia, Russia hates Israel - largely due to the fact Israel supported the US during the cold-war against Russia.

      --

      I do not support "The Man". I also do not support your irrational stupidity
    2. Re:"along with several other countries" by Anonymous Coward · · Score: 2, Insightful

      Not necessarily. Israel, France, Britain, and a few other such "allies" all have active intelligence operations in the US, for various reasons. I wouldn't be surprised if hacking into critical infrustructure systems was among the activities of one such country.

      Puh-lease. Israel likely has active intelligence operations in the US, but there's no way that they hacked into the US power grid illicitly because they have no interest to do so. Israel's intelligence in the US is primarily directed at gathering information about Israel's enemies that the US chooses to withhold (for applying political pressure to Israel--neither country is a perfectly wonderful "ally"). Hacking into the power grid is only useful to someone who wants to attack the US or hold it for ransom and clearly Israel, France, and Britain do not fall into that category.

  3. i know ill get bitched at for this by nimbius · · Score: 4, Insightful

    but could it be possible that for once, we're not under constant attack from enemy nations and have nothing to really fear?
    the last time we cringed in terror at another country as a pretext for invasion, it turned out they were guilty of a lot less than we
    originally conjectured.

    if china were hacking into our powerplants and infrastructure, what purpose would it seriously serve? china manufactures a bulk of american goods, and holds a bulk of american debt.
    we are an economic interest, so one could argue harm to us is harm to china.

    --
    Good people go to bed earlier.
    1. Re:i know ill get bitched at for this by emocomputerjock · · Score: 4, Insightful

      Are you honestly asking what purpose does technological dominance serve? Do you think any nation would turn down the ability to flip the switch on another country, regardless of the status of relations between the two?

    2. Re:i know ill get bitched at for this by izomiac · · Score: 3, Insightful

      and holds a bulk of american debt. we are an economic interest, so one could argue harm to us is harm to china.

      Well, apparently China holds 1/16th of the national debt, which is essentially what Japan has as well, so I wouldn't call that the bulk. OTOH, if they did hold the bulk of the US debt, debt as a deterrent isn't that great an idea. Or at least it didn't end well for the Knights Templar...

  4. Re:Homer Simpson did it as he so dumb and china is by InsertWittyNameHere · · Score: 5, Funny

    Me fail English? That's unpossible!

  5. I'm just jealous by lordandmaker · · Score: 3, Funny

    I wish my country's government (UK) was anywhere near that technically adept...

  6. the solution is .. by viralMeme · · Score: 4, Insightful

    The solution is to take computer systems charged with managing electricity off the Internet

    1. Re:the solution is .. by greyfeld · · Score: 4, Interesting
      While that sounds good, it really isn't a realistic or technically feasible. The grid was not originally designed to handle the huge amounts of electricity that are currently being transferred between entities. The power pools must have some way to manage the flow of electricity across the wires to keep the system from being overloaded and brought down. It is also necessary to monitor the flows to collect the tariffs that are charged.

      For example, if Company A in Oklahoma City sells electricity to Company B in Des Moines, the power pools must be able to verify that there is capacity on the lines in between, whose lines the electricity will be travelling across so that they can maintain the stability of the grid, and collect the tariff paid to all the intervening transmission line owners. Without these systems being connected via computers, there is no way to accurately maintain and monitor the current system.

      As the Northeast blackout of a few years ago pointed out, lack of visibility into these systems can result in a devastating cascade of blackouts. If the Chinese or Russions actually do have Trojan Horses planted in these systems, they could literally bring us to our knees and shut down the country. It is really not that far-fetched since many of the smaller electric companies are locally owned co-ops or run by small cities with little or no budgets for security infrastructure or staff. The NERC CIP standards are certainly a step in the the right direction, but require a huge investment in time and manpower many of these smaller companies can't really afford.

      What it really comes down to in the end is continually increasing rates as customers demand reliability from their electricity provider. This reliability comes in the form of better computer controls of the electric system along with increases in the security around those systems. It is no longer feasible from a cost perspective to have a human being at each substation and switch gear with a walkie talkie. Utilities are trying to keep the rates down by automating the systems. Unfortunately, that introduces a new kind of risk. The risk that they are hacked, not only by the simple hacker, but by the nation state that views having a backdoor into our systems as a type of insurance in the event of war.

    2. Re:the solution is .. by IP_Troll · · Score: 3, Insightful

      it really isn't a realistic or technically feasible.

      Either you missed the point of the OP or are ignoring it on purpose. There is no reason for the power grid to be on the consumer internet and you cited none.

      The power grid was designed before the internet.

      The controls you described to switch power between providers already exist. There is not a human being flipping switches at every substation with "walkie talkies", there is already an automated system to switch power which is completely independent from the internet. If you want to upgrade this already existing network to include modern hardware, do not connect it with the internet.

      You are acting like it is impossible to create a network of computers without WWW access. The power grid doesn't need twitter, or even a GUI interface, it just needs to send simple signals between embedded systems. transmitting signals between embedded systems can be accomplished without connecting the power grid to facebook.

  7. The proof is on the wire. by Anonymous Coward · · Score: 3, Informative

    Well I happen to work for a government agency, and a very disproportionately large number of the attacks we see on a daily basis are coming from China. Whether or not these are state sponsored, I don't know, but the Chinese government certainly isn't making any real effort to hold these "useful idiots" at bay. You would of course expect more because they are more populous but it really is disproportionate, more like 8x-10x the amount of attacks seen from other wired countries per capita. At what point does a country become responsible for the traffic that leaves its borders? Especially one with border firewalls? I'm on board with the information warfare theory. I see it every day...I'm in favor of holding them responsible.

  8. Iran's lost connectivity by viralMeme · · Score: 4, Informative

    "Schneier is a computer security expert, not a geo-strategist, and he was wrong about Iran's lost connectivity a few months ago when we all discovered the high frequency of Internet cables malfunctions"

    In what way was Schneier wrong about Iran and how does not being a geo-strategist relate to the validity of the claims that China infiltrated the US power grid?

  9. Re:Someone please hack my grid? by palegray.net · · Score: 3, Funny

    Roger that. I set your coffee machine to start brewing your coffee in about three minutes, but I also took the liberty of making a couple of tweaks to the internal thermostat, just to make sure it's good and hot when you get home. You've got insurance in case something goes awry, right?

    --
    512 MB RAM, 20 GB disk, 200 GB transfer, five datacenters. $19.95/month.
  10. But... by jar240 · · Score: 2, Funny

    Didn't Jack Bauer take care of this two seasons ago?

    --
    "You can drive out Nature with a pitchfork, but It always comes roaring back again." - Tom Waits
  11. Common sense by dword · · Score: 2, Insightful

    This is like "duuuuh!", like you know...
    It's like I can't see why China would like, you know, PUBLICLY ADMIT LIKE THEY'RE FUCKING WITH THE U.S.

    This is not news at all. Thank you.

    1. Re:Common sense by Jaysyn · · Score: 2, Interesting

      A few years ago China grounded one of our "spy" planes & sent it home in crates.

      A few weeks ago China ran one of our naval vessels out of international waters.

      I don't know about admission, but if they aren't too worried about publicly screwing with us in meatspace, I really don't think they'd be worried about it in cyberspace.

      --
      There is a war going on for your mind.
  12. I'm just relieved by Anonymous Coward · · Score: 2, Funny

    If it were the UK hacking the US power system, my wall outlets would start leaking oil.

  13. FUD by omar.sahal · · Score: 3, Insightful

    "intrusions were detected not by the companies in charge of the infrastructure"

    but

    "U.S. intelligence agencies"

    Officials cautioned that the motivation of the cyberspies wasn't well understood
    Officials are the ones making the accusations

    China, for example, has little incentive to disrupt the U.S. economy because it relies on American consumers and holds U.S. government debt.

    A spokesman for the Chinese Embassy in Washington, Wang Baodong said..

    "some people overseas with Cold War mentality are indulged in fabricating the sheer lies of the so-called cyberspies in China."

    As Bruce Schneier said which one of these power outages is by hackers
    I just hope this isn't some cover for the US to do what their accusing others of, why else this line below...

    Congress approved $17 billion in secret funds to protect government networks

  14. Bargaining Chip by kenp2002 · · Score: 3, Interesting

    Modern day espionage as far as I can see it is bargaining chip, much like nuclear weapons. It's about what leverage you have. It's not so much the use of it, but rather a demonstration of what can be done.

    We now are now entering the age of Digital Mutually Assured Destruction and Economic Mutually Assured Destruction. For you wee tikes out there that was what kept the USA and Soviet Union (hell do the kids even know what a soviet is anymore?) from turning the world into the game Fallout 3...

    N-MAD and now D-MAD and E-MAD.

    --
    -=[ Who Is John Galt? ]=-
  15. I will be the first to not bitch at you, then by monoqlith · · Score: 2, Insightful

    You're absolutely right

    I'm skeptical of the whole story. Is our eletrical grid really accessible to spies? If our electric grid is connected at all to the public Internet then we have bigger problems, namely TeH Stupid, and we'll soon defeat ourselves with our own dementia.

    Second, When you find software 'payloads', as the story claims the officials have , is your first impulse not to phase out all infected systems and replace them with safe, clean ones? This seems pretty easy to fix.

  16. Re:That's It by Paul+server+guy · · Score: 2, Insightful

    If they are going to turn off the power while I'm trying to watch "Ow, My Balls" on Fox or if my government successfully gets me to believe that, I am going to vote for whoever will blow them back to the stone age.

    Don't laugh. That's what the "war on terror" and now, this, are all about. We here in the U.S. need a bogie man! We need for someone to be the "bad guy" so that the government can "protect us" from them. And it's really easy to in a culture that is heavily inundated with religions that have a Zorastrianist view that everything is a struggle of "good" vs. "evil". And of course we're the "good guys", so they must be the "bad guys", right?

    I, for one, wouldn't be surprised if the electrical grid weren't being inflitrated by CIA or NSA hackers.

    And I'd mod you insightful...

    --
    Your Moon, Your Mission, Get involved! http://www.openluna.org
  17. Seems unlikely by TiggertheMad · · Score: 2, Insightful

    Given that actively infiltrating another country's critical infrastructure and sabotaging it would be considered a provocative act of war by a good number of states, it seems unlikely that China would be eager to do this. Yes, they are communists, but they are not particularly eager to get in a big pissing match with the USA, when they seem to be doing so well selling us anything that isn't nailed down. It is possible that such an act is the action of a independent minded general or politburo functionary, but if it is, I expect that they will get slapped down. China gets no real benefit by provoking a major trade partner and heavily armed world power. They are doing quite well right now, and we aren't even really an enemy. Rivals perhaps, but there is nowhere the level of animosity between the US and China that there was between the US and the USSR in the 60s or 80s.

    However, China has a number of slavering nationalistic hacker groups operating inside their borders. This seems like the sort of stunt they might pull. If they are responsible, and they blew the job, China will just round up a bunch of them and ship them off to inner Mongolia work camps as an object lesson to their peers. China might be willing to turn a blind eye to their activities while they are a nuisance, but they cannot allow rogue nationalist groups provoke international incidents. It is possible that they are working with the Chinese military, but that doesn't seem that likely, as any link revealed would be a major embarrassment to China and you are back to the same issue of risk vs. reward. States aren't generally eager to cut loose non-government entities to act on their behalf.

    --

    HA! I just wasted some of your bandwidth with a frivolous sig!