Slashdot Mirror
White House Confirms Chinese Cyberattack
New submitter clam666 writes "White House sources partly confirmed that U.S. government computers — reportedly including systems used by the military for nuclear commands — were breached by Chinese hackers. From the article: 'The attempted hack used 'spear phishing,' in which an attacker sends an email to a specific target that uses familiar phrases in hopes that the recipient will follow links or download attachments that unleash the hacker's malware. None of the White House's secure, classified computer systems were affected, said the official, who reached out to POLITICO after the Free Beacon story appeared — without having been asked for comment. Nor had there been any attempted breach of a classified system, according to the official.'"
.... between what happens to the chinese perpetrators and what has happened to Gary McKinnon over the years!
It takes the White House 2 weeks to acknowledge that the assassination of a U.S. Ambassador is a terrorist attack.
It takes the White House less than one day to acknowledge that Chinese hackers have breached an unclassified system.
sudo make me a sandwich
white house phish, bitch! -signed, chinaman
You are NOT allowed to download and/or trade music/pr0n.
Obligatory: Would you like to play a game of thermonuclear warfare?
Next up, petitioning the White House to find out why the fuck nuclear control systems are on the internet ...
#fuckbeta #iamslashdot #dicemustdie
How can the attack include military systems used for nuclear commands, yet not include any secure classified systems?
When they made a list of which government systems should be secured, they decided to leave the nukes off that list?!
Alphanos
...why does hacking is equated to phishing? Also, who designs a system like that? Right credentials.. that is all it takes,,
Backing up my suspicions for the last 2+ years:
How does the US know the actual nationality of the hackers and not just their end-proxy?
The US have been trying to insinuate a cyber-war for years now, and never said how they know who's behind it (if you said the *ATTACK* came from China, fair enough - to say it ORIGINATED there is more of a stretch, and to say it was Chinese hackers is just ludicrous).
Of course we have suspicions and think we might know who's behind it and who owns the net-blocks, but what a wonderful way to discredit a nation and put the blame on someone else when you want to cyber-attack the US - just proxy through China and start WW3 when the US relatiates.
Really, US? How do you *KNOW*? On the scale that you can confidently state the Chinese "attacked" you (and coupled with your statements that cyber-attacks could be considered acts of war?)? You're REALLY that sure it was China that did it? That you can announce on the news that it was the country itself?
Or do you just want to start a war with China for some reason?
Proof positive the dumbest people on the planet work for government.
Who in this day and age opens email from people or companies they haven't first contacted.
Who in this day and age clicks on a URL they don't know that arrives in an email from someone they don't know.
WHen Obama first arrived in the whitehouse in 2009 the computers still had floppy drives and Exchange was down 25% of the time!
I highly doubt even with the new CIO Obama quickly hired to fix this that the whitehouse has any real security if the infrastructure was that poor? That scares me more than the president not receiving his email. I could imagine all the printers, servers, routers, and everything being rootkitted just lke the Chamber of Commerce was where even the thermastat sent data to Chinese IP addresses.
They aren't even on siprnet.
Best Slashdot Co
October Surprise. Or a lame attempt at one.
Also, have fun reading the ridiculous comments on the Politico site.
We play the game with the bravery of being out of range
White House sources partly confirmed that U.S. government computers ...including systems used by the military for nuclear commands, were breached by Chinese hackers.
I'm speechless. May heads roll!
How do they know the phishing emails were sent by Chinese hackers? Are they just using the IP address of where the email originated to determine the nationality of the hackers?
They were able to save us from doom this time, but we might not be so lucky the next time.... ... unless we give them all of our privacy rights and billions of dollars.
Definitely some interesting times ahead as the US's knee jerk SPREAD PEACE LOVE AND DEMOCRACY WITH BOMBS response meets the reality of that whole starting a war in Asia thing.
The Chinese even have Sun-Tzu telling them this iirc! It's wisdom-to-the-max, but imo, also teaches a "wuss weasel" way of doing things in conflicts (then again, "all's fair in love & war", right?)
"Or do you just want to start a war with China for some reason?" - by ledow (319597) on Monday October 01, @02:46PM (#41516421) Homepage
I shouldn't answer for the person you're replying to, but I do NOT *think* anyone here is THAT stupid... especially with an opponent that one HAS to respect!
This?
Well, imo @ least - So far, this isn't "serious" enough to start a REAL war over - even though the U.S. has said it constitutes an "act of war" to do 'cyber-war' style attacks...
No, not serious enough - @ least, not yet, & there's no REAL "solid" proof as you noted too, that it IS the actual Chinese government behind it!
Hey - personally?
Yes - I suspect they ARE to some extent, but largely for "research" purposes...
(Why? This time, let's quote the Roman General Vegetius: "Si vis pacem, para bellum" (if you want peace, prepare for war)).
* In ANY event? I think it would be HELLISHLY interesting though I must admit, to see what nation actually WOULD "come out on top" in a 'cyber war' though, stupid as it sounds & contradicting myself above!
APK
P.S.=> Hey, it's "the primitive in me" man... lol! Everyone LOVES a good fight - what makes me laugh? Even though MOST FOLKS WILL DO ANYTHING TO AVOID GETTING INTO A FIGHT (rightfully so)?? They always watch when ones "goes down" though, don't they??? LOL!
... apk
I'll bet appropriations for cyber security have a lot less trouble passing in the next budget session.
The web page is slow, but the phish is patient.
Chinese or the GOP? Down the strech, shenanigans like this are very possible from a trailing party. Crooked voting machines? Check. Must be this white to vote? Check. Cyberattacks? WHY THE HELL NOT.
Are you still under the delusion that the Politicians for the US Government or any of the 3 letter agencies really give a shit about the USA, or the people that live in the USA?
For anyone under this delusion, I can only ask you to look around. I'm not claiming that everyone working for these agencies is bad mind you, most I consider people that just want to do a job and get a pay check. The people running the shows however, are very bad people. I'm sure many people working at these agencies realize this, but fear opening their mouths for obvious reasons. We all saw what happened with a whistle blower in CA right? I mean, their house was raided, father was left to die having a heart attack. Of course their house was ransacked costing them money, they lost their job, and had to pay a fortune in legal fees. That's one of the few stories that made it to the public, and not an isolated incident.
Currently, we are pretty fucked. Way to many people sleeping through what's been going on, and those that are awake prefer complacency to action.
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
Attribution.
Disclaimer: I am a Navy Information Warfare Officer.
First, it's important to note that the White House didn't confirm the suspected source. It was anonymous officials who said this appeared to originate "from China" -- take that as you will.
As you point out, an attack may appear to come from a particular (set of) IP address(es), network(s), or source(s). An attack may have a certain profile, or share a profile with other attacks. An attack may have an assumed motivation based on its target. The attacker(s) may even wish to make it appear that the attack is originating elsewhere.
Even if the "source" is established, is it a nation-state? Hacktivists? Nationalist hackers acting on behalf of government or at the government's explicit or implicit direction? Transnational actors? None of the above?
No one wants to "start a war" with China, but the error in balancing the cyber threat against the "hype" is assuming that all threats are bogus, or must be the result of hawks looking for neverending war, excuses to begin/escalate the next "Cold War", and similar. The threat from China is very real, long-established, and well-understood for anyone who cares to look. It has been discussed thoroughly, even for the Chinese, in their own strategic literature, and there are very public examples of China's offensive cyber capabilities. China's investment in offensive cyber capabilities comes because of the understanding that dominance of the information realm will essentially allow China to skip large chunks of military modernization and still be highly effective in any conflict with the United States.
Think of it this way: it's now assumed that the Stuxnet/Duqu/Flame family were created by the US and/or Israel. (Keep in mind that even overt admissions prove nothing, and can be self-serving...) Even before the books and articles about OLYMPIC GAMES, attribution was assumed because of the target and because of snippets of clues in the code. In general, why is that assumption any more or less valid than this? Is it because some are more inclined to believe that of course the US engages in cyber warfare; but any cyber attacks against us are suspect.
Of course, there are those who will assume that indications of any cyber attack will always be a "false flag" and/or used by those with ulterior motives who want war. It can't possibly be that there are aggressors who indeed want to attack the US, and who greatly benefit from the odd proclivity of those in free societies to see the enemy as their own government, while overlooking the actual adversary. Sun Tzu would be beaming.
Background:
Chinese Insider Offers Rare Glimpse of U.S.-China Frictions
http://www.nytimes.com/2012/04/03/world/asia/chinese-insider-offers-rare-glimpse-of-us-china-frictions.html?_r=1
"The senior leadership of the Chinese government increasingly views the competition between the United States and China as a zero-sum game, with China the likely long-range winner if the American economy and domestic political system continue to stumble, according to an influential Chinese policy analyst. China views the United States as a declining power, but at the same time believes that Washington is trying to fight back to undermine, and even disrupt, the economic and military growth that point to China’s becoming the world’s most powerful country."
China is on track to exceed US military spending in real dollars by 2025
http://www.economist.com/node/21542155
China’s military rise
http://www.economist.com/node/21552212
The dragon’s new teeth: A rare look inside the world’s biggest military expansion
http://www.economist.com/node/21552193
Essential
Just because the attack came from someone in China doesn't mean China is attacking the USA, the headline implies that.
If some hacker in US attacks a govt computer in another country the headline would not be "US Cyberattacks Country X"
This just shows US Chinese paranoia
...attack the messenger. Brilliant.
Thanks for them though, I have "interests" in this area's why!
* One of the dumbest things we've also done (in a way, it does have a "good side", as do ALL 'hack/crack' attempts (yes, I do believe in making lemonade out of lemons))?
When Microsoft licensed out the sourcecode to Chinese educational institutions (as well as other nations). This can be a real "double-edged sword" for step-tracing & finding potential 'bugs' to exploit.
Then again, as I noted above? Once they're exposed in these "cyber attacks", it's 1 time that "trickledown" thinking, works - since you can BET that MS or other OS makers will patch for it, once it's discovered + used.
(The ones that spook me most? The ones you DON'T know about & haven't been exposed...)
I've met & worked with Chinese programmers since 1994 here & there in both academia, AND in professional environs: They're as good as anyone else is, & quite clever!
APK
P.S.=> Plus, we both noted Sun-Tzu in our posts as well, so, I had to reply (good read from you, must be an INTERESTING job you have there)...
... apk
alike to reap States that there lagged behind, kked to be Kreskin
God Doman MONGORIANS!!! Why they gotta break my SHEEETY FIREWAWL!!!!
And it starts up again. The propaganda about how unsafe cyberspace is from other countries, and therefor we should accept and want our government to have more authority, more power over how it functions. We are supposed to like them having all kinds of additional power, because its for our own good.
BULL!
And we will NOT TOLERATE it.
The next time the US is attacked by a nation - in the sense of Dec 7, 1941, it will go down like this outline:
1. Cyber attack knocking out our infrastructure and parts of our military and government.
2. My fellow Americans run around like the scared sheep that they are.
3. Dorks with AR-15 with the M-4 conversion kits start running around shooting people to "protect" everyone. The cops hide.
3. Attacker sends over wave after wave of really cheap aircraft knocking out all the high tech planes like the f-22 and everything else.
4. They win.
Latest update to the situation room:
These were from one Uighur Muslims with a slight limp in China (obvious from scrutinizing at the IP address by our experts).
Of course Islam absolves the perpetrator from guilt especially if done in response to endless western insult of the Prophet Muhammad.
In unrelated news: a recently de-throned Nigerian prince has acquired US missile codes, along with "$15.000.000 USD".
Wow, that sounds bad.
Wait, so there are only a couple ways that these could both be claimed:
1. Someone is lying
2. Our gov't is actually dumb enough to not classify & secure systems used by the military for nuclear commands
3. Someone is lying
I'm guessing it's either 1 or 3.
Shame on you samzenpus. The white house has only confirmed that an unclassified computer has been hacked. Not one capable of nuclear commands, not that it was a Chinese attack.
First of all, why are these systems connected to the internet ? IDIOTS!
Anyone else do a double take while reading summary?
"White House sources partly confirmed that U.S. government computers — reportedly including systems used by the military for nuclear commands — were breached by Chinese hackers."
Check. Got it.
"Nor had there been any attempted breach of a classified system, according to the official.'"
Chinese breach nuke system, no classified systems were breached, so nuke systems aren't classified....?
HA! I just wasted some of your bandwidth with a frivolous sig!
It was Iran behind the cyber attack. Troops en route, war declared.
China is the enemy.
With the amount of US Debt that China holds, Obama will say nothing and hope this goes away. At any other time and with any other Administration, we would be floating 2 carrier groups into the Sea of Japan and preventing any Chinese trade vessels from docking at our ports.
They are nothing without the American consumer.
Of course. That was a point I made in my second paragraph. Now China can step up and help, offering some token gesture of cooperation, like extracting/forging logs pointing in some other direction.
This was a state acting, as cyber criminals likely don't care about nuclear delivery infrastructure. Assuming that I am a black hat in the official service of state intelligence attempting to compromise highly sensitive information, I am going to work through compromised foreign proxies ("I'm behind 7 proxies!"), burning one or more of them after each use, via drive wipes and deliberate infection with destructive viruses.
It seems weird that you would try something this daring directly from your home soil. It would be a great way to frame China for your misbehavior though, and throw the US off your scent.
HA! I just wasted some of your bandwidth with a frivolous sig!
It's human nature to "want more", but, when is enough, enough? I feel that is what causes it. How so though??
Well, think about U.S. History - We had the depression era, the wars (WW I, II, Korea): With Germany in largely ruin, we had NO manufacturing competition really!
That made for a FAT & HAPPY populace, the "golden age" of America & all that... which is great for the USA! However, there's a downside:
"Spare the rod, spoil the child"
I don't mean that in "corporal punishment" but rather when say, your parents are doing well for themselves AND YOU? They "over-indulge" & spoil you.
Going back to the above in "wanting more" now based on that? I'd think you SEE where it leads, eventually!
(To corrupt children becoming corrupt adults who basically have it all, but want more, & usually that goes past just money, but rather to controlling power being their "want")
I mean... hey, look @ rich folks kids like Paris Hilton for example: The woman HAS money, born into millions... but, obviously, she wanted FAME too ( & with that kind of Ca$h? You can buy PLENTY of press-time & agents to promote you into said "fame")
APK
P.S.=> In the end, I agree, since history shows us that time & again (makes me wonder about the human race, thank goodness we have enough SENSE as well as cowardice actually too, to avoid utter total destruction... @ least SO far! Be a damned shame to "blow it all up", since I feel that we've accomplished a HELL OF A LOT being only what? 100 generations out of cave-dwelling?)
... apk
I wonder if: the WH picks up a phone and calls somebody in the Chinese Embassy or straight to the right contact and says: yo, is this yours? Do you realize we interpret these things as an act of war?
US Diplomat: We have found out that there are attempts to gain access to US secure systems coming from Chinese controlled IP addresses. We take offense at this activity, and request that you cease immediately.
....And both sides keep hacking.
China Diplomat: The Peoples Republic abhor illegal and immoral activity, and in now way condone such behavior. While we are on the topic, we have discovered similar attacks on our systems coming from US controlled addresses.
US Diplomat: It is not the policy of the US to engage in clandestine cyber attacks on state controlled computer systems. We do not condone any such action.
China Diplomat: Excellent, we are in agreement then!
HA! I just wasted some of your bandwidth with a frivolous sig!
Fuck you! Now you have a troll to mark, but correct the OPINION I presented above you fucktards!
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
after the Free Bacon story appeared
Which is it, shortage or surplus??
The US government making up shit as an excuse to blame another country and give us an excuse to invade, or act like dicks, or blow off some obligation to them or something. More than likely though this is a scare tactic used so when they block US internet access to chinas site later and get more funding for some cyber security division they want to create for a couple billion dollars.
The corruption is at worst a symptom of a larger problem. China appears to be suffering from the same problems experienced by Japan on its way to surpassing the US as an economic superpower. Now, that didn't happen, did it? Japan faltered because for the longest time Japan was virtually a one-party state. Now look at that other "great" one-party state, the Soviet Union.
There are otther factors of course, such as Japan's graying population, a problem that China is also facing because of its ill-conceived one-child policy. But even minor, public policy differences produce an incentive to search for solutions different from the accepted orthodoxy.
Monopolies aren't good, whether it's a company or a state party. China most likely wont' surpass the US as a superpower. Both may well go into a state of decline and be surpassed a third country with enough sense not to nurture economic or political monopolies that breed both corruption and stagnation.
Where they trying to cut fins off? Fuckers
A "Nuclear command" that is a unit that has a nuclear capability... so hacking into the airman's computers on say: the 91st Missile Wing would only reveal what YouTube videos are being watched... all the nuclear launch code stuff isn't linked into the world wide web at all... they even have really draconian restrictions on wifi being in the LCCs and LFs etc.
I'm just wondering if that's possible, not going to do it because I don't know how to hack, but in theory, why would it be illegal?
Fuck the Chinese cocksuckers. Please, let's just nuke 'em back to the stone age while we still can.
In my mind's eye I picture a young Tom Hanks delivering these lines with great passion: "Holy crap, folks, the reported breach was a spearphishing EMAIL. This wasn't HACKING, it was just a goddamned EMAIL. You can slice it any way you want to, but there is no way on God's green earth that the delivery of a properly addressed email is a SECURITY BREACH."
Plus the security awareness program for whoever got the malware-laden missive is clearly working properly because no one opened the attachment. This article was just Obama-administration-baiting by the Washington Free Beacon, a conservative publication, and is chock-full of scary terms clearly not entirely understood by the so-called journalists writing it.
that the intelligence services actually wanted to analyze the data and question people before making a conclusion?
We must do "shock and awe" style denial of service attacks on Japan, Mongolia, the Philippines and everyone else around China, but not China itself.
INSCOM always wants to know. And they know how to make General's life miserable or how to put him into a Crackistan shithole full of Malaria and AK47s.
just make the codes 111111. Curtis LeMad did exactly that. Word of mouth authorizes.
Do not trust what the White House says about cyber attacks from China; this is just a precursor to justify another potential war as the United States of America did not get their own way at the recent UN meeting! and if you want to see Julian Assange's footage you can download it from http://www.rt.com
I feel that is enough to say for the time being.