Who is Hacking into US Critical Infrastructures

Who is Hacking into US Critical Infrastructures

According to the New York Times, Mandiant, a U.S.-based cybersecurity firm, revealed that it was likely that China’s military personnel hacked into Telvent Canada, a firm known as Schneider Electric that makes switches and other gear for oil and gas pipelines. The Chinese military denies the allegations, stating they are “groundless both in facts and legal basis.”

Should the Chinese be to blame, experts say the snooping probably served two purposes:

  • To gather information to improve the Chinese critical infrastructure; and
  • To lay the groundwork for a future attack to shut down U.S. systems.

Headquartered in the outskirts of Shanghai is Unit 61398 of the People’s Liberation Army, where alleged cyber-attacks take place. According to American intelligence officials, they have tapped into this activity of the Chinese army for years. If this is true, then a high percentage of attacks on American corporations, organizations and governmental agencies originate here…in a white, 12-story tower of offices.

Officials at the Chinese embassy in Washington insisted that their government does not engage in computer hacking, and that such an activity is illegal. However, Mandiant has detected more than 140 intrusions since 2006.

The Chinese Ministry of Foreign Affairs has also responded to these allegations. Hong Lei, a ministry spokesman, said, “Making unfounded accusations based on preliminary results is both irresponsible and unprofessional, and is not helpful for the resolution of the relevant problem. China resolutely opposes hacking actions and has established relevant laws and regulations and taken strict law enforcement measures to defend against online hacking activities.”

Obama administration officials have noted that they plan to inform China’s new leaders that the volume and sophistication of the attacks have become so intense that they threaten the fundamental relationship between Washington and Beijing.

It seems that America is in a digital war with China. “In the cold war, we were focused every day on the nuclear command centers around Moscow,” one senior defense official stated. “Today, it’s fair to say that we worry as much about the computer servers in Shanghai.”

Most industrial control systems in America are fairly well guarded, but according to Chief Executive of Digital Bond, Dale Peterson, “Once a hacker is in the system, there’s very few safeguards preventing the intruder from sending commands that could, say, cause an accident at a chemical plant or lead a pharmaceutical factory to dispense the wrong medications.” Both, of which, could obviously cause disastrous results.

The power grid is one of the most critical systems because without electricity everything – offices, factories, etc. – stop operating.

Mark McGranaghan, a power delivery and utilization specialist at the Electric Power Research Institute, stated, “It’s an issue at the top of the list of every utility executive.”

It’s difficult to accurately play the “blame game” when it comes to computer hacking, due to the sophisticated tactics of professional hackers. While people may be able to pinpoint and target the exact area in which the hacking originated, proving exactly who participated in the act of hacking itself is a bit more difficult.

Sources: http://www.nytimes.com/2013/02/19/technology/chinas-army-is-seen-as-tied-to-hacking-against-us.html?pagewanted=all

http://money.cnn.com/2013/02/20/news/economy/hacking-infrastructure/index.html

Photo courtesey of KG News - http://kevingilmour.net

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Survey: Less Than Half of IT Leaders are Confident in their IoT Security Plans

    Viakoo recently released findings from its 2024 IoT Security Crisis: By the Numbers. The survey uncovers insights from IT and security executives, exposes a dramatic surge in enterprise IoT security risks, and highlights a critical missing piece in the IoT security technology stack. The clarion call is clear: IT leaders urgently need to secure their IoT infrastructure one application at a time in an automated and expeditious fashion. Read Now

  • ASIS International and SIA Release “Complexities in the Global Security Market: 2024 Through 2026”

    ASIS International and the Security Industry Association (SIA) – the leading security associations for the security industry – have released ”Complexities in the Global Security Market: 2024 Through 2026”, a new research report that provides insights into the equipment, technologies, and employment of the global security industry, including regional market breakouts. SIA and ASIS partnered with global analytics and advisory firm Omdia to complete the research. Read Now

  • President Biden Issues Executive Order to Bolster U.S Port Cybersecurity

    On Wednesday, President Biden issued an Executive Order to bolster the security of the nation’s ports, alongside a series of additional actions that will strengthen maritime cybersecurity and more Read Now

  • Report: 15 Percent of All Emails Sent in 2023 Were Malicious

    VIPRE Security Group recently released its report titled “Email Security in 2024: An Expert Look at Email-Based Threats”. The 2024 predictions for email security in this report are based on an analysis of over 7 billion emails processed by VIPRE worldwide during 2023. This equates to almost one email for everyone on the planet. Of those, roughly 1 billion (or 15%) were malicious. Read Now

Featured Cybersecurity

Whitepapers

New Products

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3