Hundreds of Thousands of Chinese Black-Hats
An anonymous reader sends us to Popular Science for a long article on the loose, uncoordinated bands of patriotic Chinese hackers that seem to be responsible for much of the cyber-trouble emerging from that nation. Quoting: "For years, the U.S. intelligence community worried that China's government was attacking our cyber-infrastructure. Now one man has discovered it's more than that: it's hundreds of thousands of everyday Chinese civilians. ... Jack Linchuan Qiu, a communications professor at the Chinese University of Hong Kong [says:] 'Chinese hackerism is not the American "hacktivism" that wants social change. It's actually very close to the state. The Chinese distinction between the private and public domains is very small.' ... According to [James Andrew Lewis, a senior fellow at the Center for Strategic and International Studies], 'The government at a minimum tolerates them. Sometimes it encourages them. And sometimes it tasks them and controls them.' In the end, he says, 'it's easy for the government to turn on and hard to turn off.'"
To date, we've had hacks that are serious enough to alert us to the real threat, but rarely or never serious enough to cause us real harm.
It's a gentle warning to our vulnerabilities, with plenty of lead time to do something about it. At this point, if we keep on producing vulnerable and exposed important computer systems, we share the blame for the consequences of a serious hack.
I read that article in my latest Pop Sci issue. It was very interesting that many of the Chinese hackers were not explicitly sponsored by the government, but do it for the fame and nationalistic pride. The hacker that the article zeroed in on seemed to disappear after college, but it was fairly obvious he was hired by some level of the government. It's like the Chinese government lets these young hackers learn on their own (so long as they aren't hacking their sites), then offers them jobs once they get skilled enough. The more direct damage from Chinese hackers is more likely from these uncontrollable hobby hackers than from the government sponsored and controlled ones.
The chinese are just as nationalistic as any other group.
Judging from some of the comments about Tibet and the reaction to the protests regarding it during the Olympics I'd say that they are even more so.
Basically, we are still in a cold war with one side KNOWING that it is, while the other side hopes that it is not.
Isn't that the truth? Secretary Gates wants to cancel the F-22 and cut our aircraft carrier fleet down so that we can focus on fighting insurgencies. That's understandable in short term but I pray to god that it doesn't bite us in the ass in the long term. I'm not real worried about insurgents altering the geopolitical balance of power. I am worried about China doing the same.
I want peace on earth and goodwill toward man.
We are the United States Government! We don't do that sort of thing.
by the idiocies of nationalism
if anyone looks to the far east and sees a land blissfully free of the stupidities of monotheism, think again: china does have a religion. that religion is called china. han imperialism is on par with all of the other vicious forces in this world we must contend with and defeat. not that china is alone. russian nationalism and imperialism, american nationalism and imperialism... it's all evil, it all must be defeated
one day we will have a world if not free of organized religon and ethnocentrism, at least outside the all-controlling clutches of such
until then, we must all contend with blind pride: the source of so much evil in this world
nationalism and organized religion are forces in this world which must be defeated if we are all to live in peace
intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
We have an extensive and poorly secured (as no un-passworded systems, vulnerable dictionary-based passwords, no system auditing, almost no network auditing) IT infrastructure, we have loads of national and international computer burglars banging away at it, we have a lot of people who know something about IT looking for a job, and we have a government looking for sensible ways to spend money so as to alleviate the recession.
Am I alone in thinking that it would be money well spent to set up 3 or so military schools in the US specifically to train network administrators? Students to enlist for the duration of their training (basic raining plus 2 years specialist training), subsequently 5 years of operational service as a sergeant. Graduates of this course to be unconditionally qualified for all basic network security and operation anywhere in the government (from local to federal).
It helps protect both our civillian and our military IT infrastructure, it builds a reservoir of people who know how to secure and operate a computer network for any government agency to draw from, and it provides jobs.
So ... how about it?