Slashdot Mirror

← Back to Stories (view on slashdot.org)

China Hacked HPE, IBM and Then Attacked Clients, Report Finds (reuters.com)

Posted by BeauHD on from the corporate-cyber-espionage dept.

An anonymous reader quotes a report from Reuters: Hackers working on behalf of China's Ministry of State Security breached the networks of Hewlett Packard Enterprise and IBM, then used the access to hack into their clients' computers, according to five sources familiar with the attacks. The attacks were part of a Chinese campaign known as Cloudhopper, which the United States and Britain on Thursday said infected technology service providers in order to steal secrets from their clients. While cybersecurity firms and government agencies have issued multiple warnings about the Cloudhopper threat since 2017, they have not disclosed the identity of technology companies whose networks were compromised. IBM said it had no evidence that sensitive corporate data had been compromised. HPE said it could not comment on the Cloudhopper campaign.

Cloudhopper targeted managed service providers (MSPs) to access client networks and steal corporate secrets from companies around the globe, according to a U.S. federal indictment of two Chinese nationals unsealed on Thursday. Prosecutors did not identify any of the MSPs that were breached. Cloudhopper, which has been targeting technology services providers for several years, infiltrated the networks of HPE and IBM multiple times in breaches that lasted for weeks and months. Reuters was unable to confirm the names of other breached technology firms or identify any affected clients. Both IBM and HPE provided statements but declined to comment on the specific claims made by the sources. "The security of HPE customer data is our top priority," HPE said. "We are unable to comment on the specific details described in the indictment, but HPE's managed services provider business moved to DXC Technology in connection with HPE's divestiture of its Enterprise Services business in 2017."

"IBM has taken extensive counter measures worldwide as part of its continuous efforts to protect itself and its clients against constantly evolving threats," the company said in an emailed statement. "We take responsible stewardship of client data very seriously and have no evidence that sensitive IBM or client data has been compromised."

18 of 59 comments (clear)

  1. Unforgivable by neilo_1701D · · Score: 2

    This is unforgivable, in terms of IBM and HPE.

    They stored client details in a manner that hacked credentials could access them? IBM and HPE could be up for millions, if not billions, in damages here. Client details should be amongst the most secure credentials they have. As a senior technical consultant, my credentials at my clients are usually second only to their system administrators. If they leaked out, it would be catastrophic!

    Would not want to be at HPE or IBM right about now...

    1. Re: Unforgivable by Anonymous Coward · · Score: 3, Insightful

      I wouldn't want to work at HPE / DXC anyways. Nastiest vendor I've ever met.

      Alligator eats alligator. It's like the swamp version of a turducken.

    2. Re: Unforgivable by phantomfive · · Score: 1

      How much would you have to be paid to sell your credentials?

      --
      "First they came for the slanderers and i said nothing."
    3. Re: Unforgivable by Archtech · · Score: 2

      I wouldn't want to work at HPE / DXC anyways. Nastiest vendor I've ever met.

      So sad. For most of its long life, Hewlett-Packard was the epitome of honesty and straight dealing.

      --
      I am sure that there are many other solipsists out there.
  2. Why bother hacking? by Anonymous Coward · · Score: 1

    When a large chunk of IBM is based in China? They donâ(TM)t need backdoors. They have the keys to the front door because they were hired to build it....

  3. How is this not an act of war? by schwit1 · · Score: 1, Interesting

    At what point does the US say 'enough', and punches back twice as hard?

    1. Re:How is this not an act of war? by Guybrush_T · · Score: 1

      First, you would need to prove this is an attack by the state, not by some random hacker group.

      I'm still trying to find who claims this is coming from China and see what exactly they are talking about. So far ... I couldn't find anything.

    2. Re:How is this not an act of war? by Guybrush_T · · Score: 3, Informative

      So this seems to be the origin : https://www.pwc.co.uk/cyber-security/pdf/cloud-hopper-report-final-v4.pdf

      Mentioning a probably-China-based "APT10" group, based on the time of most attacks.

      "CloudHopper" is the codename PwC gave to the APT10 attack, not a secret service code name.

    3. Re: How is this not an act of war? by The+Evil+Atheist · · Score: 2

      I suppose keyboard warriors like you are hard men. Oh wait, cunts like you just keep complaining about SJWs and acting worse than them.

      --
      Those who do not learn from commit history are doomed to regress it.
    4. Re:How is this not an act of war? by gtall · · Score: 1

      As soon as asshole leaves office and Putin has not cock-holster running the U.S.

    5. Re:How is this not an act of war? by Archtech · · Score: 1

      Wrong. We actually have them caught red handed. You don't know shit about this, that's true.

      Please give concrete evidence of those statements.

      Otherwise we shall have to conclude that you are making them up and know nothing.

      --
      I am sure that there are many other solipsists out there.
  4. But but but the US did this in the 19th century! by MikeRT · · Score: 1

    The US Secret Service was the main federal law enforcement and intel agency until the rise of organized crime and J Edgar got momentum. I defy anyone to show evidence that the federal government had the Secret Service running around Europe breaking into star inventors' offices and pilfering their secrets.

    If they did, and were caught, the empires of Europe would have declared war on us. It is one thing to steal ideas at the patent office. This is an act of aggression.

  5. Psy-ops by UK - US Deep State Actors .. by najajomo · · Score: 1

    Hackers working on behalf of China's Ministry of State Security breached the networks of Hewlett Packard Enterprise and IBM, then used the access to hack into their clients' computers, according to five sources familiar with the attacks.”

    The Truth About Cambridge Analytica-SCL: Psy-ops by UK-US Deep State Actors

    Its ‘hard sell’ was a demonstration of how the UK government could use a sophisticated media campaign of mass deception to fool the British people into the thinking an accident at a chemical plant had occurred and threatened central London.”

    1. Re: Psy-ops by UK - US Deep State Actors .. by najajomo · · Score: 2

      Cambridge Analytica is dead – but its obscure network is alive and well “The company’s executives have formed a web of linked companies, suggesting its work will continue”

      Cambridge Analytica and SCL: How I peered inside the propaganda machine

      Cambridge Analytica staff set up new firm

      “we must look first at Cambridge Analytica, LLC .. is a Delaware Limited Liability Company that was formed in June of 2014 .. the larger the database Cambridge controls, along with its ability to demonstrate the value proposition for its analytical tools, the greater the likelihood Cambridge will be retained by political entities.”

  6. Re:You can't trust communists by rtb61 · · Score: 1

    How did the US/UK espionage find this out, oh, they noticed the extra traffic whilst they were doing the exact same thing and you just know that is true. How did they track it in China, well, of course because they were hacking servers in China. It's not like they can reach for the global treaty to block these attacks and blocks global propaganda services, why because the US don't want them because they want to hack and propagandise the entire rest of the planet, to serve US citizens, absolutely not, to serve infinite greed and ego, of the psychopathic pin heads at the top.

    The story should read, How the US hacked China, to show how China hacks the US to find out how the US hacks China, to publicly demonstrate why treaties are required and for me to condemn the US government as a pack of lying cunts for blocking those cyber treaties. Stop fucking with the internet you fucking dick brains and oh yeah and merry fucking Christmas.

    --
    Chaos - everything, everywhere, everywhen
  7. With journalistic integrity like this... by Anonymous Coward · · Score: 1

    "Reuters was unable to confirm the names of other breached technology firms or identify any affected clients. "

    "The sources, who were not authorized to comment on confidential information gleaned from investigations into the hacks"....

    I now announce from my basement that I have found the cure for all cancers but I can't tell you how or give you any proofs.

  8. Re:Cloudhopper, hopper? by AHuxley · · Score: 1

    The NSA had a CLOUDBURST, CLOUDCOVER, CLOUDCOVER II, HOPPER (work in the USA, by contractors)
    CLOUDFUNNEL (US work done in the UK).

    --
    Domestic spying is now "Benign Information Gathering"
  9. Re:You can't trust communists by gtall · · Score: 2

    Well, I fine upstanding nation like China will surely abide by any treaty you think you have signed with it.