Slashdot Mirror

← Back to Stories (view on slashdot.org)

Did China Hack The CIA In A Massive Intelligence Breach From 2010 To 2012? (ibtimes.com)

Posted by EditorDavid on from the spies-vs-spies dept.

schwit1 quotes the International Business Times: Both the CIA and the FBI declined to comment on reports saying the Chinese government killed or imprisoned 18 to 20 CIA sources from 2010 to 2012 and dismantled the agency's spying operations in the country. It is described as one of the worst intelligence breaches in decades, current and former American officials told the New York Times.

Investigators were uncertain whether the breach was a result of a double agent within the CIA who had betrayed the U.S. or whether the Chinese had hacked the communications system used by the agency to be in contact with foreign sources. The Times reported Saturday citing former American officials from the final weeks of 2010 till the end of 2012, the Chinese killed up to 20 CIA sources.

27 of 115 comments (clear)

  1. Betteridge's law of headlines by Anonymous Coward · · Score: 2

    Betteridge's law of headlines says "No."

  2. Strategic competitors by Beeftopia · · Score: 5, Insightful

    China and Russia are strategic competitors. We should strive to have good relations with both, enhance partnership at points of shared interest, but also realize they are competitors. And for cryin' out loud, we should not be outsourcing a vast amount of our manufacturing base and knowledge to a strategic competitor. Enhancing economic partnership, certainly. Giving up our manufacturing base to one or the other is madness.

    The pundits tell us we're a smart advanced country, manufacturing is beneath us. However, countries like China, Japan, and Germany, with national IQs equal to or greater than ours, cultivate manufacturing. So there's that.

    1. Re:Strategic competitors by Beeftopia · · Score: 3, Insightful

      Sit down at the goddamned table and figure out how the
      hell HUMANITY is going to survive another 1000 years
      without blowing each other the fuck up over this fucking
      COMPETITION of yours.

      The economy - of any country - is a competition for resources. Take the most homogeneous, socialist northernmost Scandinavian country - Norway or Sweden - and it's still a competition for resources. Take a heterogeneous country that's only relatively recently been hewn from the frontier, like the US and it is most assuredly a competition for resources. Even with disinterested technocrats (which is a fantasy construct, like unicorns - all humans have preferences and desires) allocating resources, people are still going to compete to accrue more resources.

      And if within any country it is a competition, you may rest assured externally it is more so of a competition.

      It doesn't need to be violent. There can be accepted rules of the game, like baseball or football. But, like, don't like it, doesn't matter. It is what it is.

  3. Probably by Anonymous Coward · · Score: 5, Insightful

    It takes a special combination of arrogance and stupidity to believe that the U.S. can infiltrate and spy on every other intelligence organization on the planet, but somehow nobody is able to do the same to us using the same security vulnerabilities we leave in software specifically so people can be spied upon.

    So yes, I do believe the CIA was breached.

    1. Re:Probably by ShanghaiBill · · Score: 4, Insightful

      If this was a result of a "software vulnerability" then a lot of people at the CIA need to be fired and/or jailed. There is absolutely no reason that a list of double agents should be stored online or even on a computer at all. The "need to know" actual identifying information should be limited to the each asset's direct handler. Even the handler's boss doesn't need to know. Instead, the asset himself can be given secondary contact information and a code word to use if the main handler goes silent. Knowledge segmentation is standard spook tradecraft. How could they possibly screw up something so simple so badly?

    2. Re:Probably by dbIII · · Score: 2, Interesting

      Knowledge segmentation is standard spook tradecraft. How could they possibly screw up something so simple so badly?

      They kind of fucked that up on day one. They learned the nasty lesson from UK spooks of using criminals to do various work, but they didn't learn to keep them at arms length and in the dark (good segmentation) but invited them into the fold to become full members of the org. The Church Commission stuff and many other things go on about such fuckups at a fundamental level and it's very likely to be just as fucked up now a few decades later.

    3. Re:Probably by Hartree · · Score: 4, Funny

      "It's called American excpetionalism."

      Are you sure it's not just dyslexia?

    4. Re:Probably by currently_awake · · Score: 3, Interesting

      China doesn't need to break American crypto, they just need to follow the data through their firewall to find the spies. They could also use a little bit of social engineering or a "dropped" USB stick if that wasn't possible. Secrecy doesn't exist against a country.

  4. Re:Oh great, another one! by Anonymous Coward · · Score: 2, Insightful

    Actually we just have our reporters emerging from their 8 year hibernation.
    They are very cranky a little out of it.

    For example, this one did not get the memo not to go back so far in time.

  5. The NSA's role? by whoever57 · · Score: 4, Insightful

    Perhaps if the NSA concentrated on cyber security instead of cyber attacks, this might not have happened?

    --
    The real "Libtards" are the Libertarians!
    1. Re:The NSA's role? by Anonymous Coward · · Score: 2

      To be fair, you have no idea what the NSA concentrates on, except for the info that has been selectively leaked.

  6. CIA = by Zurkeyon3733 · · Score: 5, Funny

    C_atastrophically I_gnorant A_ssholes...

  7. Re:You'll never be in media with that attitude. by ShanghaiBill · · Score: 4, Insightful

    For no particular reason we cannot have headlines written like that for at least the next 4 years...

    Proper Headlines:
    Massive Chinese Data Breach Cripples CIA
    Administration in Chaos Over Chinese Hack
    Did Russia Pass Hacked Information to China
    Crippling CIA Hack Leaked, Did Trump Know?
    Trump Failed to Act On Chinese Hacking Allegations

    None of those are "proper" headlines, because there is no actual evidence that they are true. TFA does not contain a single named or quoted source. It consists entirely of rumors, conjecture, and innuendo.

    The reason that Betteridge's Law of Headlines is generally accurate is that using a question as a headline is a great crutch for weak journalism.

  8. Re:Lowest hanging fruit? by drinkypoo · · Score: 2

    They likely had an easy back door through then Secretary of State Hillary Clinton's private email server.

    We'll never know, due to all the deletion they did to hide evidence. (That is, after all, why she took Colin Powell's advice and got her own email server to begin with.)

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  9. How other nations work their spies by AHuxley · · Score: 4, Interesting

    The Soviet Union went for the mids and politics of US/UK gov/mil/contractors. Someone to talk to, some cash, some politics.
    Classic spy offers.
    The UK and later the US tried to counter that with better working conditions, better wages and more testing of trusted staff to see if they had been turned.
    From the 1920-1970's the UK leaked everything interesting to the Soviet Union.
    The US tried to counter such efforts by fully understanding the past and politics of every applicant. That worked until the USA did not walk the past of every applicant and hired on contractor trust or because a vital skill was needed. The FBI and other agencies would also test trusted US staff with undercover cash offers and see if they reported any security contacts outside work.
    The US needed translators, experts for Korea, Vietnam, France, China, the Soviet Union, its Middle East occupations. Generations of very interesting people got clearances based on skill not security. They did their job well and reported back US methods and got to understand how the US looked for staff and then how to move up the ranks of the US clandestine services.
    The US could have stopped all that by not using contractors but that was not an option politically. Any new security that blocked a contractor was removed by US party political efforts to allow contractors back into the most secret parts of the US gov and mil.
    It took China a long time to understand how the CIA, NSA and GCHQ spy in China.
    Dont have radio, data networks or any chatter from base to base to a command structure, everything is been collected on by the NSA and GCHQ.
    MI6 and the CIA used a different approach. Invite a lot of students from China to top US and UK universities and try and get the students to enjoy freedom and democracy. When they returned to the Communist gov in China they would recall the fun freedoms and might just consider working for the CIA, MI6 later in China.
    What the CIA and MI6 did not consider is that China would flood the West with trusted Communists that would enter the US and UK educations systems, learn and take everything back to China.
    China started to notice the efforts to turn its graduates in the UK and US. China allowed some of its graduates to be turned and waited, watched and slowly understood what the West needed and wanted from spies in China over the years.
    It took a few decades but China finally saw the pattern of the US and UK spy efforts in China, different to NSA and GCHQ collect it all.
    China now understands when and how the approach will take place and has flooded the West with people who seem to want to spy for the CIA and MI6.
    What the West saw as very smart people finally wanting freedom, wanting to change politics in China was just China flooding the West with its own spies.
    The other issue for the GCHQ and NSA is the quality and amount of data collected in China and translation needed. Local staff at US and UK collection sites, later working on material all needed China experts. The secure hiring of expert staff over generations was always an issue given the skills needed and the time needed for results, Korea, Vietnam, handover of Hong Kong and later decades.
    The US and UK so needed staff and spies in China that they never had the time to fully consider the idea that hiring a lot of people without the best security practices was not a good idea.
    Decades later the results are the same that the UK faced with spies from the Soviet Union in the 1920-1980's.

    Is the CIA leaking from computer databases? If any nation had that easy access deep within the CIA they would not act. They would watch and alter the flow of information and use it as a disinformation strategy to flush out more spies. Why act now and get the CIA to consider its issues and then be totally locked out?
    The data flow back from spies in China could be a weak point. Using the "internet" or contact with a foreigner in China.
    China understands every network in and out and the server

    --
    Domestic spying is now "Benign Information Gathering"
    1. Re:How other nations work their spies by jandersen · · Score: 2

      What the CIA and MI6 did not consider is that China would flood the West with trusted Communists that would enter the US and UK educations systems, learn and take everything back to China.

      Hmm, that reads like a 60es spy thriller. Are you saying that "the immensely powerful inner circle of the Chinese Communist Party, known only to a few, highly classified individuals" etc, somehow have brainwashed the enormous numbers of Chinese students going abroad, to be fanatically devoted to extreme Maoism and interested only in subverting the legitimate government of rich people over American consumers? Without anybody ever noticing? Wow. But with that amount of power, why haven't they simply wiped the rest of the world clean of the stain of evil things like capitalism, and presumably democracy? Sorry, perhaps I shouldn't be sarcastic, but I think it is far fetched; and looking at your opening comments, you have already given a better explanation: the US attracted talent in the past by offering them better opportunities, better conditions etc. than both USSR and China did. Now the situation is the opposite, and while an overseas education is still considered better, most of the students do want to come back to China. While they are in the West for their studies, many do a PhD, and part of that is doing groundbreaking research, sponsored by a hi-tech company, during which time they learn a lot, none of which involves spying; but they do take that back to China - how could it be otherwise?

      In the West, since the advent of neo-everything in politics - neo-conservatism, neo-liberalism, neo-fundamentalism etc - governments have been outsourcing a lot of things that used to be government funded, and scientific research in particular is now almost invariably business oriented, non basic research, in which the universities place PhD students in hi-tech companies; and because universities are facing substantial cuts to public funding (and have been for many years) they have to actively try to attract paying students from overseas. Thus, we have a direct link from regressive policies originating in the US, to the current situation where a lot of hi-tech research is effectively being exported to China, all of this being above board and perfectly legal. Personally, I don't mind - what goes around, comes around. What we get in return is a good relationship with a China, who can see the benefit of nurturing a good understanding with us, and our next generation will perhaps go to China and take some of their advances back to us - if we manage to make our countries worth returning to. I think it is something be optimistic about - wouldn't it be nice if we competed on which country is the nicest to live in, rather than who has the biggest bomb?

  10. Re:Clearly the only viable options are... by MatthiasF · · Score: 3, Insightful

    Secretary of State doesn't receive that kind of information. That's National Security Council or private briefings. Would have never been shared by email, not even secure email.

  11. Normal to execute spies. by BarbaraHudson · · Score: 5, Interesting

    The story talks about the execution of more than a dozen spies, but doesn't mention that this is perfectly acceptable under the Geneva Conventions. Leaving people to perhaps be a little outraged that "how dare they execute someone." The US has a history of doing the same thing (and so does pretty much everyone else on the q.t.) - I just find it interesting that neither the story, nor the comments, reflect on the consequences of this. Someone blackmails you into spying for them, you could end up dead. Why not just say "screw it" instead? You might even get your would-be blackmailer swinging at the end or a noose instead, or with, you.

    --
    "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    1. Re:Normal to execute spies. by Anonymous Coward · · Score: 2, Interesting

      I know the Rosenbergs (I think that was their name) were executed. Are there examples of the US executing spys in the US since then?
      I'm not thinking of any, and remember a number of them being caught and in the news. One place I worked at had posters of spys caught by the government as reminders not to mishandle classified info, but those all just got jail time.

      I'm just curious if I hadn't heard of any or just forgot.

    2. Re:Normal to execute spies. by BarbaraHudson · · Score: 2

      There were plenty who were shot in the field in WW2 by both sides. It's perfectly legal.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
  12. Re:Clearly the only viable options are... by AutodidactLabrat · · Score: 3, Insightful

    Satan keeps his word
    not so Trump
    Stop libelling Satan!

  13. Re:Clearly the only viable options are... by Maritz · · Score: 2, Funny

    It's the random use of capitals that make you particularly persuasive.

    --
    I do not want your cheap brainburning drugs. They are useless for work. And I am a working man today.
  14. Re:Clearly the only viable options are... by Maritz · · Score: 3, Insightful

    Before long, Republicans are going to want to impeach Trump themselves. You can talk about it being partisan, but the reason Putin wanted Trump in is because of his incompetence, not his political views. Even partisan democrats are saying put the psychotic white-christian-america Pence in instead. At least he has a functioning brain.

    --
    I do not want your cheap brainburning drugs. They are useless for work. And I am a working man today.
  15. Re:Clearly the only viable options are... by Anonymous Coward · · Score: 4, Informative

    Secretary of State doesn't receive that kind of information. That's National Security Council or private briefings. Would have never been shared by email, not even secure email.

    Fail.

    Membership

    The National Security Council is chaired by the President. Its members are the Vice President (statutory), the Secretary of State (statutory), the Secretary of Defense (statutory), the Secretary of Energy (statutory), the National Security Advisor (non-statutory), and the Secretary of the Treasury (non-statutory). ...

  16. What was the communications system? by wildstoo · · Score: 2

    Investigators were uncertain whether the breach was a result of a double agent within the CIA who had betrayed the U.S. or whether the Chinese had hacked the communications system used by the agency to be in contact with foreign sources.

    Yahoo Messenger with a ROT-13 plugin?

    1. Re:What was the communications system? by AHuxley · · Score: 2

      The CIA has a few ways into and out of China.
      The "internet".
      A person who is spying for the US in China gets to go on holiday and meet their CIA handlers.
      Someone in China the CIA trusts collects messages. Embassy, long term educational, faith, private company or brand.

      The problems are the internet is well understood by China in and out of China. Every VPN or other connection is tracked to its origin and destination by China.
      Use encryption and that is noted. Try and hide encryption and China gets really interested.
      Travel out of China by people China trusts is not easy. Its a risk to meet US officials in a third nation or the USA and then return.
      Meeting or been friends with US officials, US faith groups or US workers in China is not easy.
      The final issues is that of social media. China can now track every US gov worker, tourist in China and considers their social media use.
      Does a US person in China have a past that suggests a low level embassy worker, person of faith, company worker for a big US brand?
      Or did they graduate from a very different and expensive US university course usually selected by people seeking advancement into the US mil and gov?
      The US tries to clean up the online pasts of most of their clandestine workers but China can buy into the US private detective databases that kept all the early social media and university online image collections. No well educated face trying to pass as just a US worker in China can be sure that their more skilled past and education in the US has not been traced back by China. So meetings with US individuals with complex pasts by people in China with interesting work is always very carefully watched.
      What happened? The USA leaked from the US database side? Globally more activity would be seen, as such data would been shared with a lot of other nations. Or used in very long term and complex ways.

      Someone from the USA got talking to someone interesting in China and their once removed US online social media did not match their resume used in China? China saw a hidden pattern of US friendships in China?
      China saw digital online chatter going to very interesting servers been used by the USA?
      Someone from China took a holiday and met in some nation with the US gov? China looked back for the same holiday patterns.
      The US hopes a few officials in China will read the "news" and start talking a lot so the GCHQ and NSA pick up the media induced chatter?
      Would China risk a well placed person in the US gov or mil for this? The US likes to test all its trusted staff with bait. A lot of names, projects, complexity thats created just for a person been tested and is so vital to another nation it has to be reported. If another nation takes the bait that person is detected based on the unique information passed on.
      The US hopes to flush out any spies with their work load. Most other nations active in the USA are now aware of such methods and have learned never to respond to such methods.
      Communist nations do not send spies to the USA to get caught passing messages.
      Communist agents are in the USA to set and alter US policy. No communications needed for decades of work.

      --
      Domestic spying is now "Benign Information Gathering"
  17. Snowden did NOT do his job by mi · · Score: 2, Interesting

    Chinese spies hacking the CIA, they are just doing their job

    Chinese spies are doing their job, that's right. But Snowden's treason, likely, made that job easier. The asshole has blood on his hands — blood of Americans and those foreigners, who chose to help us, be it for money or to destroy the Communist regime, or both.

    That said, I can't wait for Snowden and Manning to come out condemning Trump for sharing intelligence with Russia.

    --
    In Soviet Washington the swamp drains you.