Slashdot Mirror

← Back to Stories (view on slashdot.org)

White House Confirms Chinese Cyberattack

Posted by samzenpus on from the testing-the-waters dept.

New submitter clam666 writes "White House sources partly confirmed that U.S. government computers — reportedly including systems used by the military for nuclear commands — were breached by Chinese hackers. From the article: 'The attempted hack used 'spear phishing,' in which an attacker sends an email to a specific target that uses familiar phrases in hopes that the recipient will follow links or download attachments that unleash the hacker's malware. None of the White House's secure, classified computer systems were affected, said the official, who reached out to POLITICO after the Free Beacon story appeared — without having been asked for comment. Nor had there been any attempted breach of a classified system, according to the official.'"

15 of 212 comments (clear)

  1. Nuclear weapons? by girlintraining · · Score: 5, Insightful

    Obligatory: Would you like to play a game of thermonuclear warfare?

    Next up, petitioning the White House to find out why the fuck nuclear control systems are on the internet ...

    --
    #fuckbeta #iamslashdot #dicemustdie
    1. Re:Nuclear weapons? by Billly+Gates · · Score: 5, Funny

      "Next up, petitioning the White House to find out why the fuck nuclear control systems are on the internet ..."

      Well that is easy. That is because IE 6 is required to administer.

      --
      http://saveie6.com/
    2. Re:Nuclear weapons? by couchslug · · Score: 4, Insightful

      "Next up, petitioning the White House to find out why the fuck nuclear control systems are on the internet ..."

      They aren't, (also Read The Fucking Article) but tech reporting and public ignorance in the US are so horrid that all PCs owned by the military are presumed to be connected to each other.

      Hint:
      Unclassified networks are used for Unclassified activities, of which there are many. They are different from Classified networks of various types. The usual communications necessary to getting ordinary business done (ordering asswipe, telling folks physical training is rescheduled, what the fuck ever) don't go on command and control networks.

      An office in one building may (shock, horror) have systems connected to DIFFERENT networks, technologically astounding as that concept may be.

      freebeacon got its page hits (hence the sensationalist title) and you got modded Insightful for displaying no Insight.

      Mods, "Insightful" doesn't mean "me like, yay!". :-)

      --
      "This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
  2. Wait, what? by Alphanos · · Score: 5, Insightful

    How can the attack include military systems used for nuclear commands, yet not include any secure classified systems?

    When they made a list of which government systems should be secured, they decided to leave the nukes off that list?!

    --
    Alphanos
    1. Re:Wait, what? by Anubis+IV · · Score: 4, Informative

      Key word: "reportedly".

      The initial report claimed that those were the systems that were compromised. The White House insider denied that those systems had been compromised, but confirmed that a non-classified network had been compromised.

    2. Re:Wait, what? by Beardo+the+Bearded · · Score: 4, Informative

      The press is most likely wrong. I've been on the news a couple of times, and they always get something wrong.

      Any classified info is airgapped, end of story. I can do drawings on the [system] on the same computer I'm using for /. The vast, vast majority of drawings are not classified. (I joke that part of the OpSec is that if we get captured, I tell them everything I know, and when they fall asleep, we tiptoe out of the room. "In this circuit, we use cable LS2SJ-14. But in this circuit, we went to LS2SJ-12. Hey, PAY ATTENTION!" So like I was saying, we used LS2SJ-12 here...) If I want to look at anything that's classified, or even something that's CG, I have to do the following:

      1. Have the clearance and the need to know.
      2. Get a copy of the document sent to me, usually by FedEx.
      3. Get a supervisor and go to the secure room, sign in, close the blinds and the door.
      4. Get the HDD from the safe.
      5. Check the computer, then put in the HDD.
      6. Power up the computer. It's a stand-alone machine, that's what I was checking for.
      7. Work.
      8. Finish working. Print up stuff or burn it onto a disk. Fill out the form that shows that another copy of the material exists.
      9. Power down the machine and put the HDD back in the safe.
      10. Sign out of the secure room.
      11. Mail the printout or CD to whoever it was that wanted it.

      And that's for CG stuff. The TS stuff is watched constantly by people with weapons.

      If someone can hack their way into a system where the info is not only powered off, but in a separate room from the equipment that can read it, inside a safe, then it's time to give the fuck up.

      --

      ---
      ECHELON is a government program to find words like bomb, jihad, plutonium, assassinate, and anarchy.
  3. Okay by ledow · · Score: 4, Insightful

    Backing up my suspicions for the last 2+ years:

    How does the US know the actual nationality of the hackers and not just their end-proxy?

    The US have been trying to insinuate a cyber-war for years now, and never said how they know who's behind it (if you said the *ATTACK* came from China, fair enough - to say it ORIGINATED there is more of a stretch, and to say it was Chinese hackers is just ludicrous).

    Of course we have suspicions and think we might know who's behind it and who owns the net-blocks, but what a wonderful way to discredit a nation and put the blame on someone else when you want to cyber-attack the US - just proxy through China and start WW3 when the US relatiates.

    Really, US? How do you *KNOW*? On the scale that you can confidently state the Chinese "attacked" you (and coupled with your statements that cyber-attacks could be considered acts of war?)? You're REALLY that sure it was China that did it? That you can announce on the news that it was the country itself?

    Or do you just want to start a war with China for some reason?

    1. Re:Okay by firewrought · · Score: 5, Insightful

      How does the US know the actual nationality of the hackers and not just their end-proxy?

      Perhaps they have collaborating intel from another source (e.g., spies or signals intelligence).

      Or do you just want to start a war with China for some reason?

      I wouldn't be surprised if it was posturing for election rhetoric. Could have been done to preempt a GOP leak ahead of Wednesday's debate, or it could tie-in with Obama's recent "tough on China" talking points. I try not to follow this stuff too closely though, so take my speculation with a grain of salt...

      --
      -1, Too Many Layers Of Abstraction
  4. Re:They aren't on the internet by girlintraining · · Score: 4, Insightful

    Well, not directly. But clearly there's data from public networks leaking into it; Security is badly broken somewhere.

    --
    #fuckbeta #iamslashdot #dicemustdie
  5. Re:So... by M0j0_j0j0 · · Score: 5, Funny

    If you read TFA "Soy sauce has been found all over port 21 and a Beijing duck was stuck on the firewall".

  6. Re:They aren't on the internet by Sparticus789 · · Score: 4, Insightful

    No matter how secure you think a network is, there's always some idiot that does something like:
    1. Upload 50 GB of downloaded music onto a secure network.
    2. Upload 1 TB of downloaded movies onto a secure network.
    3. General wants his/her Wikipedia fix, so there's one hole in the network security.
    4. General #2 wants to check his/her Fantasy Football team from a secure network, hole #2 in security.
    5. Etc. Etc. Etc.

    So-called "secure" networks are nothing of the sort. They leak like a colander.

    --
    sudo make me a sandwich
  7. That's one problem with cyber by daveschroeder · · Score: 5, Insightful

    Attribution.

    Disclaimer: I am a Navy Information Warfare Officer.

    First, it's important to note that the White House didn't confirm the suspected source. It was anonymous officials who said this appeared to originate "from China" -- take that as you will.

    As you point out, an attack may appear to come from a particular (set of) IP address(es), network(s), or source(s). An attack may have a certain profile, or share a profile with other attacks. An attack may have an assumed motivation based on its target. The attacker(s) may even wish to make it appear that the attack is originating elsewhere.

    Even if the "source" is established, is it a nation-state? Hacktivists? Nationalist hackers acting on behalf of government or at the government's explicit or implicit direction? Transnational actors? None of the above?

    No one wants to "start a war" with China, but the error in balancing the cyber threat against the "hype" is assuming that all threats are bogus, or must be the result of hawks looking for neverending war, excuses to begin/escalate the next "Cold War", and similar. The threat from China is very real, long-established, and well-understood for anyone who cares to look. It has been discussed thoroughly, even for the Chinese, in their own strategic literature, and there are very public examples of China's offensive cyber capabilities. China's investment in offensive cyber capabilities comes because of the understanding that dominance of the information realm will essentially allow China to skip large chunks of military modernization and still be highly effective in any conflict with the United States.

    Think of it this way: it's now assumed that the Stuxnet/Duqu/Flame family were created by the US and/or Israel. (Keep in mind that even overt admissions prove nothing, and can be self-serving...) Even before the books and articles about OLYMPIC GAMES, attribution was assumed because of the target and because of snippets of clues in the code. In general, why is that assumption any more or less valid than this? Is it because some are more inclined to believe that of course the US engages in cyber warfare; but any cyber attacks against us are suspect.

    Of course, there are those who will assume that indications of any cyber attack will always be a "false flag" and/or used by those with ulterior motives who want war. It can't possibly be that there are aggressors who indeed want to attack the US, and who greatly benefit from the odd proclivity of those in free societies to see the enemy as their own government, while overlooking the actual adversary. Sun Tzu would be beaming.

    Background:

    Chinese Insider Offers Rare Glimpse of U.S.-China Frictions
    http://www.nytimes.com/2012/04/03/world/asia/chinese-insider-offers-rare-glimpse-of-us-china-frictions.html?_r=1

    "The senior leadership of the Chinese government increasingly views the competition between the United States and China as a zero-sum game, with China the likely long-range winner if the American economy and domestic political system continue to stumble, according to an influential Chinese policy analyst. China views the United States as a declining power, but at the same time believes that Washington is trying to fight back to undermine, and even disrupt, the economic and military growth that point to China’s becoming the world’s most powerful country."

    China is on track to exceed US military spending in real dollars by 2025
    http://www.economist.com/node/21542155

    China’s military rise
    http://www.economist.com/node/21552212

    The dragon’s new teeth: A rare look inside the world’s biggest military expansion
    http://www.economist.com/node/21552193

    Essential

  8. Re:Lets see if there's parity.... by wonkey_monkey · · Score: 5, Funny

    Are you really that stupid, or just trying to start a flamewar?

    That is grossly unfair.

    There's absolutely no reason it can't be both.

    --
    systemd is Roko's Basilisk.
  9. Speaking of classified... by TiggertheMad · · Score: 5, Interesting

    Anyone else do a double take while reading summary?

    "White House sources partly confirmed that U.S. government computers — reportedly including systems used by the military for nuclear commands — were breached by Chinese hackers."

    Check. Got it.

    "Nor had there been any attempted breach of a classified system, according to the official.'"

    Chinese breach nuke system, no classified systems were breached, so nuke systems aren't classified....?

    --

    HA! I just wasted some of your bandwidth with a frivolous sig!
  10. How it works by TiggertheMad · · Score: 4, Insightful

    I wonder if: the WH picks up a phone and calls somebody in the Chinese Embassy or straight to the right contact and says: yo, is this yours? Do you realize we interpret these things as an act of war?

    US Diplomat: We have found out that there are attempts to gain access to US secure systems coming from Chinese controlled IP addresses. We take offense at this activity, and request that you cease immediately.

    China Diplomat: The Peoples Republic abhor illegal and immoral activity, and in now way condone such behavior. While we are on the topic, we have discovered similar attacks on our systems coming from US controlled addresses.

    US Diplomat: It is not the policy of the US to engage in clandestine cyber attacks on state controlled computer systems. We do not condone any such action.

    China Diplomat: Excellent, we are in agreement then!

    ....And both sides keep hacking.

    --

    HA! I just wasted some of your bandwidth with a frivolous sig!