Slashdot Mirror

← Back to Stories (view on slashdot.org)

Australian Intelligence HQ Blueprints Hacked

Posted by Unknown on from the found-the-exhaust-port dept.

SandmanWAIX writes "In an embarrassing revelation today it appears as though the blueprints to the new Australian federal intelligence agency ASIO headquarters have been stolen, reportedly by a cyber attack originating from China. Several other governmental departments have been reported as being breached also. The blueprints which have been compromised include the security system, comms network, floor plan and server locations of the new ASIO headquarters located in the Australian capital city, Canberra."

30 of 180 comments (clear)

  1. how long will this behavior be tolerated... by Covalent · · Score: 2, Interesting

    Until China starts to face real responses?

    --
    Great warrior...hrmph! Wars not make one great.
    1. Re:how long will this behavior be tolerated... by Anonymous Coward · · Score: 4, Insightful

      When every other country stops doing the same?

    2. Re:how long will this behavior be tolerated... by pokoteng · · Score: 3, Insightful

      It may not come easy to hear this for Americans, but fact is, China's owned the world for quite some time; the far far vast majority of everything you own and will use and own etc, comes from China. Everything depends on them. They're the ones with the power, not the US with their supposed big guns. Attacking China will just destroy everything about US, or just about any other first world nation.

      They won't face any response at all. It just gets filtered out, like their firewall.

      --
      the game
    3. Re:how long will this behavior be tolerated... by demachina · · Score: 4, Insightful

      U.S. and Britain have been doing it wholesale since at least World War II so that would set the bar to at least 70 years.

      --
      @de_machina
    4. Re:how long will this behavior be tolerated... by c0lo · · Score: 3

      Until China starts to face real responses?

      Pray tell: what exactly real responses would you suggest?

      --
      Questions raise, answers kill. Raise questions to stay alive.
    5. Re:how long will this behavior be tolerated... by WWJohnBrowningDo · · Score: 4, Informative

      How doe the fact that only 2.7% of US consumer spending is spent on Chinese goods fit into your little narrative?

      The average US consumer can't buy a "Made in China" home, nor a "Made in China" car, nor "Made in China" food, nor "Made in China" gas. As it turns out, housing, transportation, and food makes up the majority of a consumer's spending.

    6. Re:how long will this behavior be tolerated... by symbolset · · Score: 2

      It's likely China has operatives working for the architect firm that designed the thing, and the construction sub and materials suppliers as well. It's certain that the American CIA did, and Israeli Mossad and whatever the KGB are calling themselves now as well. Other countries have spies too: South Korea and Argentina might give it a go, not with direct agents but secondary contacts that gather info from workers using the pillowtalk method. Hacking in remotely is just providing a plausible excuse for knowing the intel the Humint has already gathered. When such stuff is built it's almost comical how often the agents and double agents stumble over each other: it's a wonder they can get any actual design work done what with all the cloak and dagger shit going on. At this point they might as well do the design as a community collaboration wiki style.

      Nobody's going to have a snit fit about this on the international incident level. If somebody puts to public bid a contract to build an intelligence HQ, network solution or datacenter then all the major powers are expected to try their best to get their spies and spy devices in. If they didn't try they wouldn't be doing their jobs. It's the responsibility of the main contractor to foil the attempts. Who was that this time? Bechtel again? I'm sure they're on it (wink, wink).

      Let's not fault China specially for doing what we would do and did do as if that was some expression of dire intent making them evil. They're a global superpower and getting engaged in this activity is just a prerequisite of that role. Their activity here is evidence of nothing but that they fulfill their responsibility to be proactive in an uncertain world to the best of their ability, as we would do and actually do. And that's if we actually caught them doing it, which I find unlikely.

      It's time to step down the tension. The Chinese agents didn't hurt anybody, kidnap or kill anybody - even if it was actually them. What with how global Internet works it's possible that the CIA or some other agent (even a commercial interest!) actually controls devices in the PRC from where such activity can be done, blaming China for acts committed by agents from elsewhere by their IP address - which we all know is faint cause. Certainly that's how I would do it. China has the biggest base of zombie computers there is what with their devotion to pirated Windows XP and sketchy pirated apps. These zombies are available for rent by the hour, day, week or month - or for sale outright. If you're a cyber spy what are you going to do: rent zombies from your own country, or one that causes a secondary benefit when discovered by IP address, shifting the blame to your adversary? What with all the malware going on there it's a wonder anyone in China can get their work done.

      --
      Help stamp out iliturcy.
    7. Re:how long will this behavior be tolerated... by symbolset · · Score: 3, Insightful

      The problem with DNA targeted bioweapons: evolution. When the organisms run out of targeted DNA they evolve to target other DNA patterns.

      --
      Help stamp out iliturcy.
    8. Re:how long will this behavior be tolerated... by The1stImmortal · · Score: 2

      Fair point, however in this particular case it's unlikely to be US interests (eg, CIA) performing the intrusion. Given the Australian "relationship" with US security agencies, I wouldn't be surprised if we'd already volunteered all the conceivable data on the new ASIO HQ to the US, sent in triplicate. They probably use ASIO sensitive documents as scrap paper at CIA headquarters. There's little information AU doesn't willingly and happily hand over to the US (sadly)

    9. Re: how long will this behavior be tolerated... by Anonymous Coward · · Score: 2, Insightful

      Americans.

      China holds far less debt than mist people think.

    10. Re:how long will this behavior be tolerated... by Anonymous Coward · · Score: 3, Insightful

      You are just FOS and you know it. Even Petroleum is mostly produced in the USA. Only a small percentage is imported and of the oil imports, most come from immediate neighbours Canada and Mexico.

      Maybe the cheap tools you use for your hobbies to drive two nails and one screw per year come from China, but professional tools and parts are produced in the USA.

      Food, well, as i said, you are just FOS.

      The 'Oh my Gawd China Rulez de Werld!' nonsense, is just that. China is still a poor and struggling country with a long road ahead.

    11. Re:how long will this behavior be tolerated... by tlambert · · Score: 3, Funny

      The problem with DNA targeted bioweapons: evolution. When the organisms run out of targeted DNA they evolve to target other DNA patterns.

      We won't tell the bioweapons they're running out until it's too late. Pass it on.

    12. Re:how long will this behavior be tolerated... by tlambert · · Score: 2

      *balls of disapproval*

      There's a special place in hell for people with such ideas.

      Fredrick, Maryland is a place in hell?

      Seriously, we've been war-gaming this scenario since at least 1958, if not earlier. The Biological Weapons Convention was signed in 1972, as an addendum to the Geneva Convention. See:

      http://en.wikipedia.org/wiki/Biological_Weapons_Convention

    13. Re:how long will this behavior be tolerated... by c0lo · · Score: 5, Interesting

      Maybe the answer is to say "stop carrying out cyber attacks on western nations, stop stealing western intellectual property etc or we will enforce sanctions against Chinese products" Plenty of other countries with low cost base for manufacturers to move to (countries that aren't stealing western IP and government/military secrets)

      Maybe the correct answer would be "Let's secure our shit". Highly likely to be a lot cheaper.

      Let's put the things in perspective:
      - the cost of ASIO's new building between 2007-2012: $631 mils (after 37% budget blow-out - and it's not completed yet).
      - the Australia-China bilateral trade value for a single FY (2011-2012): $121.1 billion, Australia's exports to China of over $60 billion.

      --
      Questions raise, answers kill. Raise questions to stay alive.
    14. Re:how long will this behavior be tolerated... by symbolset · · Score: 5, Informative

      It was quite amazing in the 1980's when we discovered that East Germany was beaming low powered microwaves at the American embassy in West Berlin. The thought was that they were attempting to slowly degrade the health of our diplomats. It turns out that there were cylinders buried in the walls that were passive under normal conditions but under microwave energy would sympathetically resonate with the microwave signal modulated by the ambient sound. Clever stuff that, 30 years ago.

      This is nothing compared to Xerox providing copiers to the Soviet government that recorded on film a copy of every page to be retrieved only by an authorized Xerox technician called when the copier failed because the film was full. Ah, those were easy days of spy. We got a lot of good stuff out of that, and Xerox got some special privileges as well, including the ability to run their own experimental nuclear reactor.

      If you think this isn't still going on, and has gotten more clever, you're in denial. That is part of the backlash about other countries driving tech. If Intel doesn't provide the chipsets for Iran's nuclear ambitions how are we going to know what they're up to? China's RockTech doesn't care to report that stuff. They just want to sell chips.

      --
      Help stamp out iliturcy.
    15. Re: how long will this behavior be tolerated... by Anonymous Coward · · Score: 5, Funny

      Who cares about mist people? They're all smoke and mirrors anyway.

    16. Re:how long will this behavior be tolerated... by c0lo · · Score: 3, Interesting

      Maybe the correct answer would be "Let's secure our shit". Highly likely to be a lot cheaper.

      Or is it a great test of disinformation?

      It may well be so. However, the target of disinformation may be the Australian tax payer... it really strikes me as unusual that this comes a short time after the Ozzie spooks cried for more money and in the conditions of serious budget blowouts for the ASIO's new building.
      Maybe that's about another project budget overblow and this is an arranged cover-up? Nah, that's paranoia... the Ozzie spies are fairdinkum blokes and highly professional.

      --
      Questions raise, answers kill. Raise questions to stay alive.
    17. Re:how long will this behavior be tolerated... by cheater512 · · Score: 3, Interesting

      Actually there are 2 'Made in China' car dealerships near me here in Australia. They are called Great Wall and Chery.

      They looks quite good and cheap too.

    18. Re:how long will this behavior be tolerated... by Savage-Rabbit · · Score: 2

      It may not come easy to hear this for Americans, but fact is, China's owned the world for quite some time; the far far vast majority of everything you own and will use and own etc, comes from China. Everything depends on them. They're the ones with the power, not the US with their supposed big guns. Attacking China will just destroy everything about US, or just about any other first world nation.-

      How doe the fact that only 2.7%

      Because Glenn Beck said so in one of his monologues on Fox New?

      --
      Only to idiots, are orders laws.
      -- Henning von Tresckow
    19. Re:how long will this behavior be tolerated... by Savage-Rabbit · · Score: 3, Insightful

      Chinese manufacturers made up for less than 1% of auto sales in Australia last year.

      I'm not denying you can buy Chinese cars overseas; my point was that the "average" consumer won't be driving a Made in China car in the West.

      That's what they used to say about Japanese and Korean cars.

      --
      Only to idiots, are orders laws.
      -- Henning von Tresckow
    20. Re:how long will this behavior be tolerated... by Anonymous Coward · · Score: 3, Interesting

      Real Responses?

      Fuck man, everyone bounced through China back in the day, they were like the default launching pad for most cyber attacks in my era.

      Why? Because *everyone* owned them.....

        From an old fart in Australia!

    21. Re:how long will this behavior be tolerated... by AmiMoJo · · Score: 2

      Maybe the cheap tools you use for your hobbies to drive two nails and one screw per year come from China, but professional tools and parts are produced in the USA.

      Funny you should mention tools because US brands like Black & Decker or DeWalt have taken a real beating in the last few years. Some DeWalt stuff is still okay but B&D is mostly just crap. If you want quality you buy Japanese or German.

      Just sayin'.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  2. The hack came from outer space by Anonymous Coward · · Score: 2, Interesting

    Anyone who says a "cyber attack" originates from China should be smacked in the head with an Ethernet cable. How would you know exactly where an attack originates?

    Oh, and anyone who says "cyber attack" should be shot.

  3. Could be a decoy by readingaccount · · Score: 5, Insightful

    There's always the possibility the attackers found a "fake" blueprint under a lighter level of security, put there to make them think they found something worthwhile and back out to avoid further detection. Then you make it public (like it now has) and make the enemy believe something that's actually a complete ruse.

    Sure, it looks embarrassing for you, but one of the major elements of intelligence is counter-intelligence and misdirection. Let the enemy believe they now know something juicy, and they'll further base actions on incorrect intel.

    Just a thought. Of could be as simple as the Aussie Government completely fucking up by running a poorly patched Windows XP infected with a compromised USB. Some idiot on the article's comments section (tonyy) did suggest Linux would have been more secure. As if the Chinese wouldn't know how to write Linux malware and infect via social engineering if it were the predominant OS used on Government machines (which it will never be - Windows is just too well designed for corporate use on the desktop).

  4. Re: the closer that australia gets to china, .... by Anonymous Coward · · Score: 2, Insightful

    As an Aussie I would like to remind you of a certain gentleman by the name of Bradley Manning -I seem to remember he was responsible for the largest recent security breach of the Western Alliance.

    So who exactly is the weakest link?

  5. Minutes ago I invented a solution by EmperorOfCanada · · Score: 2

    Networked computers are great. I work with them all day every day. But if I had something even a 1/1000th as secret (say an embarrassing video) I would keep it offline, encrypted, and in a physically secure location. My assumption from a security standpoint is that networked cyber security is 99.9% to keep the script kiddies out. Keeping out the determined evildoer take some serious and continuous effort; or you just make it a physical effort for the bad guys.

    Even the guys with the Rob Ford Crack video wouldn't let the reporter hold their phone.

  6. I miss the old internet by phantomfive · · Score: 5, Insightful

    Back when most people on the internet were still computer literate, a report like this would explain how the attack happened, how it was discovered, and other interesting/important details.

    Now all we hear is a few buzzwords, a few propaganda works, and no more real information than what is in the headline. For all we know it never actually happened. Maybe they just found malware on a computer and overreacted.

    --
    "First they came for the slanderers and i said nothing."
  7. Re:Air gaps by AHuxley · · Score: 2

    ASIO is like the security and counter-surveillance ~FBI wrt embassy staff in Australia, bad people/spies in the community.
    Australian Secret Intelligence Service (ASIS) is ~CIA
    Defence Signals Directorate is ~NSA
    The Defence Signals Directorate would know all about air gaps given its close working relationship with the NSA file structures.
    Australian Secret Intelligence Service would at least have some institutional knowledge of what the CIA can do with any network.
    ASIO is growing and in very public ways, huge contracts, the press, budgets, court cases, vetting of staff, helping the attorney general department find evil authors book chapters...
    Too many people, too much cash to spend, fancy new offices to ensure get fitted out just right - a lot of files are going to be in flux at any one time.
    Private contractors, layers of subcontractors would all be fully vetted on site, but their office staff, cleaners... fancy new cloud storage, cheap phone IT support...
    Also the term "breached" can be a strange in .au too- as in IT subcontractors setting up/hosting/maintaining the public face of any .gov backend/site can be "any" trusted multinational.
    The "culture" is one of privatisation, expensive and foreign bespoke interfaces.
    Local IT support loves the failing OS that need large staff teams at overtime rates once turn key is done, the love of cloud and getting what could not be connected in 20 years done this year.

    --
    Domestic spying is now "Benign Information Gathering"
  8. Pot calling the silver spoons black by dbIII · · Score: 2

    Some of your clowns believe in the utter voodoo of polygraph tests so don't you dare pretend a small but professional agency is the weak link. Bay of Pigs is just the start of a long list of failures from a highly politicised bunch. Other places that keep politics out of their agencies are vastly more professional.

  9. Crisis Timeline by TheRealHocusLocus · · Score: 2

    May 2013: blueprints to the new Australian federal intelligence agency ASIO headquarters have been stolen

    June 2013: a man in London plants a small tenant garden outside a flat in London. The peas and carrots are arranged in geometric shapes that depict the seating arrangement of the ASIO conference room. By the time this pattern is discovered in August, he will have disappeared.

    June 2013: Better Bathrooms magazine June issue contains an artist's rendition of "a functional yet stylish layout, corporate washroom of the future", whose commodes and sinks are a direct match for ASIO facilities.

    July 2013: A teacher presents an odd but intricate crayon drawing done by one of her students that matches the basement layout of ASIO HQ. This uncanny similarity is never explained, the parents are questioned then released.

    August 2013: The first copies of ASIC HQ 3D plans are uploaded to Pastebin.

    October 2013: Small 3D models of ASICHQ are being printed and displayed, feature in Wired Magazine: "Your own HQ"

    February 2014: Full size scale 3D printed models of ASIC HQ are spotted all over the world, including one only a block away from the original ASIC HQ building. New employees and service companies become confused and arrive at the faux copy.

    May 2018: China publishes the plans for its newest metropolis, from above the planned city's layout bears a striking resemblance to ASIC HQ.

    June 2018: The jungle is cleared from around a newly discovered Aztec city abandoned around 1400AD... its network of narrow streets and communal buildings suggests...........

    --
    <blink>down the rabbit hole</blink>