Who is Hacking into US Critical Infrastructures

Who is Hacking into US Critical Infrastructures

According to the New York Times, Mandiant, a U.S.-based cybersecurity firm, revealed that it was likely that China’s military personnel hacked into Telvent Canada, a firm known as Schneider Electric that makes switches and other gear for oil and gas pipelines. The Chinese military denies the allegations, stating they are “groundless both in facts and legal basis.”

Should the Chinese be to blame, experts say the snooping probably served two purposes:

  • To gather information to improve the Chinese critical infrastructure; and
  • To lay the groundwork for a future attack to shut down U.S. systems.

Headquartered in the outskirts of Shanghai is Unit 61398 of the People’s Liberation Army, where alleged cyber-attacks take place. According to American intelligence officials, they have tapped into this activity of the Chinese army for years. If this is true, then a high percentage of attacks on American corporations, organizations and governmental agencies originate here…in a white, 12-story tower of offices.

Officials at the Chinese embassy in Washington insisted that their government does not engage in computer hacking, and that such an activity is illegal. However, Mandiant has detected more than 140 intrusions since 2006.

The Chinese Ministry of Foreign Affairs has also responded to these allegations. Hong Lei, a ministry spokesman, said, “Making unfounded accusations based on preliminary results is both irresponsible and unprofessional, and is not helpful for the resolution of the relevant problem. China resolutely opposes hacking actions and has established relevant laws and regulations and taken strict law enforcement measures to defend against online hacking activities.”

Obama administration officials have noted that they plan to inform China’s new leaders that the volume and sophistication of the attacks have become so intense that they threaten the fundamental relationship between Washington and Beijing.

It seems that America is in a digital war with China. “In the cold war, we were focused every day on the nuclear command centers around Moscow,” one senior defense official stated. “Today, it’s fair to say that we worry as much about the computer servers in Shanghai.”

Most industrial control systems in America are fairly well guarded, but according to Chief Executive of Digital Bond, Dale Peterson, “Once a hacker is in the system, there’s very few safeguards preventing the intruder from sending commands that could, say, cause an accident at a chemical plant or lead a pharmaceutical factory to dispense the wrong medications.” Both, of which, could obviously cause disastrous results.

The power grid is one of the most critical systems because without electricity everything – offices, factories, etc. – stop operating.

Mark McGranaghan, a power delivery and utilization specialist at the Electric Power Research Institute, stated, “It’s an issue at the top of the list of every utility executive.”

It’s difficult to accurately play the “blame game” when it comes to computer hacking, due to the sophisticated tactics of professional hackers. While people may be able to pinpoint and target the exact area in which the hacking originated, proving exactly who participated in the act of hacking itself is a bit more difficult.

Sources: http://www.nytimes.com/2013/02/19/technology/chinas-army-is-seen-as-tied-to-hacking-against-us.html?pagewanted=all

http://money.cnn.com/2013/02/20/news/economy/hacking-infrastructure/index.html

Photo courtesey of KG News - http://kevingilmour.net

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Maximizing Your Security Budget This Year

    The Importance of Proactive Security Measures: 4 Stories of Regret

    We all want to believe that crime won’t happen to us. So, some business owners hope for the best and put proactive security measures on the back burner, because other things like growth, attracting new customers, and meeting deadlines all seem more pressing. Read Now

  • Securing the Flow of Operations

    The transportation industry is a complex and dynamic environment where efficient management of physical keys, vehicles and shared devices is critical to ensuring smooth operations, reducing costs and maintaining security. Every day, more transportation facilities are using modern electronic key and asset management systems to better secure, audit and manage the important assets that keep operations running smoothly. Read Now

  • Today's Enterprise

    Protecting servers and data has evolved rapidly over the past 15-plus years. Early on, concerns centered around the environmental conditions of where servers were housed within a building and the effects of humidity, temperature and air quality on their performance. This led to a better understanding of the need for a controlled environment to maximize equipment lifespan and capacity. It was also a driving force behind consolidating servers in a common space, i.e., the data center. Read Now

  • Study Proves It: Security Awareness Training Reduces Phishing Attacks

    Attackers are increasingly targeting human-based vulnerabilities to infiltrate organizations. Humans have direct access to insider systems and data – any threat actor can easily phish users, steal their credentials and secure keys to the kingdom without having to fight advanced cybersecurity defenses. Studies show social engineering attacks and human errors are behind 68% of all breaches.  Read Now

Featured Cybersecurity

Webinars

New Products

  • ResponderLink

    ResponderLink

    Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols. 3

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3