Hackers Behind Breach at Hotel Group Marriott Left Clues Suggesting They Were Working For Chinese Government Intelligence Gathering Operation, Report Says

Marriott said last week that a hack that began four years ago had exposed the records of up to 500 million customers in its Starwood hotels reservation system. Private investigators looking into the breach have found hacking tools, techniques and procedures previously used in attacks attributed to Chinese hackers, Reuters reported, citing three sources who were not authorized to discuss the company's private probe into the attack. From the report: That suggests that Chinese hackers may have been behind a campaign designed to collect information for use in Beijing's espionage efforts and not for financial gain, two of the sources said. While China has emerged as the lead suspect in the case, the sources cautioned it was possible somebody else was behind the hack because other parties had access to the same hacking tools, some of which have previously been posted online.

Russian hackers

[mschaffer]

What is the probability that they were just Russian hackers pretending to be Chinese hackers?

Re: Russian hackers

[houghi]

"Or perhaos just the US trying to blame Russians by claiming to be Chinese. " --Israelis

you mean this guy?

Ok. So you mean this guy: Bruce Hoffmeister. He's been there for over 7 years.
http://news.marriott.com/p/bru...
https://www.linkedin.com/in/br...

Re:you mean this guy?

So funny. The profile page of that turkey on Marriott's webpage shows this in my browser...

© 1996 - {{today | date:'yyyy'}} MARRIOTT INTERNATIONAL, INC.

No wonder they got hacked.

Re:Not Chinese, not Russian

Blaming the $current_badguy is just deflecting blame away from where it belongs.

Except when it's "Russians" in which case it's Trump's fault and Marriott is in the clear.

NSA does this...

Didn't we read about NSA tools that drop Chinese and Russian "clues" into binaries to provide false attribution.

If anything those groups are smart enough to not leave those traces, so this was likely the NSA doing this by my logic.

No need to decide, give them both a time-out

[goombah99]

They are both bad actors, just turn off all internet connections to the US from Russia on Thursdays and China on Fridays. And keep expanding the time-out one day a week till the problem goes away. Sure it won't stop hackers from working through other countries, and their would be workarounds with proxies in other countries, but the colossal inconvenience of it as collective punishment for the whole country will spur the state-sponsored attacks to become too costly.

The internet is already heading for Balkanization between the great firewalls, the death of net neutrality, and the potential bifurcation of ICAAN's root domains, so nothing will be lost by this lesser move.

If the comeback you want to post is "well the US does it to", then great, maybe the US will also see some value in not doing it too.

Re:Not Chinese, not Russian

[MightyMartian]

So we shouldn't pursue the guy that breaks into your house, because you inadvertently left the back door open?

There's room enough for both exploring IT security failings and investigating who it was that broke into those systems. They are not mutually exclusive activities.

INFORMATION wants to be FREE!

[grep+-v+'.*'+*]

So what's with all of the brouhaha? I don't get it. By the way, What's In Your Wallet? ....specifically the credit card numbers, their expiration date, and CVV code.

So what is the actual value of the data?

[bobstreo]

"That suggests that Chinese hackers may have been behind a campaign designed to collect information for use in Beijing's espionage efforts and not for financial gain, two of the sources said."

Wouldn't it be easier to just buy the data from Marriott?

If it's someone "looking to cash in" on the data, what are an additional 500 Million (guessing that there is a whole lot of repeat customers in this data set) records worth?

Used to be hard to get enough information for single credit cards, nowadays you would probably have to sell blocks of 10K records for a couple bucks. All these types of hacks are doing is to really devalue the data they are stealing to the point where it's not actually of much value.

Re:So what is the actual value of the data?

[budsetr]

I think you are hitting upon something here. What is more affordable: hyper-competency and outright owning the rest of the world in technology or propaganda and the appearance of p0wning everybody?

so then who were they REALLY working for?

[bonedonut]

'Clues' were probably left intentionally.

Marriott’s Security Guy isn't to blame...

[bobbied]

Their security guy stayed at a "Holiday Inn Express" last night.... I guess we all now know why...

Re:Not Chinese, not Russian

[MooseTick]

"Marriott got hacked due to the incompetence of their CIO and IT department."

Is it honestly possible to 100% safely lock down a network with PCs in 6500+ publicly accessible locations worldwide where 100k+ hourly employees need constant access?

Its like blaming them for allowing a guest to bring in 7 suitcases loaded with bombs. A determined hacker should be able to break into any network that large and likely compromise some of their data.

Dead giveaway

[nospam007]

The naughty hackers left electronic tools and devices back and the investigation has determined that they were all 'made in China'.

Re:Chinese Snowden

[ennis99]

There are always security breaches and hackers take advantage, this is all. https://downloader.vip/the-pir... https://downloader.vip/yify-yt... https://downloader.vip/rarbg/