Английская Википедия:Cyberwarfare by China

Материал из Онлайн справочника
Перейти к навигацииПерейти к поиску

Шаблон:Short description Шаблон:Use mdy datesШаблон:EngvarB

Cyberwarfare by China is the aggregate of all combative activities in the cyberspace which are taken by organs of the People's Republic of China, including affiliated advanced persistent threat groups, against other countries.

Organization

While some details remain unconfirmed, it is understood that China organizes its resources as follows:

In 2017, Foreign Policy provided an estimated range for China's "hacker army" personnel, anywhere from 50,000 to 100,000 individuals.[2]

In response to claims that Chinese universities, businesses, and politicians have been subject to cyber espionage by the United States National Security Agency since 2009,[3][4] the PLA announced a cyber security squad in May 2011 to defend their own networks.[5]

List of APTs

Since Xi Jinping became General Secretary of the Chinese Communist Party in 2012, the Ministry of State Security gained more responsibility over cyberespionage vis-à-vis the People's Liberation Army, and currently oversees various APT groups.[6] According to security researcher Timo Steffens, "the APT landscape in China is run in a 'whole country' approach, leveraging skills from universities, individual, and private and public sectors".[7]

Accusations of espionage and cyber-attacks

Шаблон:See also

Australia

In May 2013, ABC News claimed that the Chinese government stole blueprints to the headquarters of the Australian Security Intelligence Organisation (ASIO).[30] In May 2023, Australia, alongside other Five Eyes member states, identified the Chinese government behind the "Volt Typhoon" advanced persistent threat targeting critical infrastructure.[31]

Canada

Officials in the Canadian government claimed that Chinese hackers compromised several departments within the federal government in early 2011, though the Chinese government has denied involvement.[32] In 2014, Canada's Chief Information Officer claimed that Chinese hackers compromised computer systems within the National Research Council.[33] In May 2023, Canada's Communications Security Establishment identified the Chinese government as being behind the "Volt Typhoon" advanced persistent threat targeting critical infrastructure.[34]

India

Officials in the Indian government believe that attacks on Indian government networks, such as the attack on the Indian National Security Council, have originated from China. According to the Indian government, Chinese hackers are experts in operating botnets, of which were used in these attacks.[35] Additionally, other instances of Chinese cyberattacks against India's cyberspace have been reported in multitude.[36][37]

Japan

In April 2021 Japan claimed that the Chinese military ordered cyberattacks on about 200 Japanese companies and research institutes, including JAXA.[38]

The Netherlands

In 2024, the Dutch Military Intelligence and Security Service and the General Intelligence and Security Service stated that Chinese state hackers penetrated a Dutch military network the prior year.[39]

New Zealand

In May 2023, New Zealand, alongside other Five Eyes member states, named the Chinese government as being behind the "Volt Typhoon" advanced persistent threat targeting critical infrastructure.[40]

United States

Шаблон:See also

The United States has accused China of cyberwarfare attacks that targeted the networks of important American military, commercial, research, and industrial organizations. A Congressional advisory group has declared China "the single greatest risk to the security of American technologies"[41] and "there has been a marked increase in cyber intrusions originating in China and targeting U.S. government and defense-related computer systems".[41][42][43][44]

In January 2010, Google reported targeted attacks on its corporate infrastructure originating from China "that resulted in the theft of intellectual property from Google." Gmail accounts belonging to two human rights activists were compromised in an attack on Google's password system.[45] Chinese hackers also gained access to a database containing classified information about suspected spies, agents, and terrorists under surveillance by the US government.[46] American security experts connected the Google attack to various other political and corporate espionage efforts originating from China, which included spying against military, commercial, research, and industrial corporations.[44] Obama administration officials called the cyberattacks "an increasingly serious cyber threat to US critical industries."[42]

In addition to Google, at least 34 other companies have been attacked. Reported cases include Northrop Grumman, Symantec, Yahoo, Dow Chemical, and Adobe Systems.[47] Cyber-espionage has been aimed at both commercial and military interests.[48]

Diplomatic cables highlight US concerns that China is exploiting its access to Microsoft source code to boost its offensive and defensive capabilities.[49]

A number of private computer security firms have stated that they have growing evidence of cyber-espionage efforts originating from China, including the "Comment Group".[50]

China has denied accusations of cyberwarfare,[51] and has accused the United States of engaging in cyber-warfare against it, accusations which the United States denies.[52][53][54][55][56]

During March 2013, high-level discussions continued.[57]

In May 2014, a federal grand jury in the United States indicted five PLA Unit 61398 officers on charges of theft of confidential business information from U.S. commercial firms and planting malware on their computers.[58][59]

In September 2014, a Senate Armed Services Committee probe revealed hackers associated with the Chinese government committing various intrusions of computer systems belonging to U.S. airlines, technology companies and other contractors involved with the movement of U.S. troops and military equipment,[60] and in October 2014, The FBI added that hackers, who they believe to be backed by the Chinese government, have recently launched attacks on U.S. companies.[61]

In 2015, the U.S Office of Personnel Management (OPM) announced that it had been the target of a data breach targeting the records of as many as 21.5 million people.[62] The Washington Post reported that the attack came from China, citing unnamed government officials.[63] FBI director James Comey explained "it is a very big deal from a national security perspective and a counterintelligence perspective. It's a treasure trove of information about everybody who has worked for, tried to work for, or works for the United States government."[64]

In 2019, a study showed continued attacks on the US Navy and its industrial partners.[65]

In February 2020, a US federal grand jury charged four members of China's People's Liberation Army (PLA) with the 2017 Equifax hack.[66] The official account of FBI stated on Twitter that they played a role in "one of the largest thefts of personally identifiable information by state-sponsored hackers ever recorded", involving "145 million Americans".[67]

The Voice of America reported in April 2020 that "U.S. intelligence agencies concluded the Chinese hackers meddled in both the 2016 and 2018 elections" and said "there have already been signs that China-allied hackers have engaged in so-called "spear-phishing" attacks on American political targets" ahead of the 2020 United States elections.[68]

In March 2021, United States intelligence community released analysis in finding that China had considered interfering with the election but decided against it on concerns it would fail or backfire.[69]

In April 2021, FireEye said that suspected Chinese hackers used a zero-day attack against Pulse Connect Secure devices, a VPN device, in order to spy on dozens of government, defense industry and financial targets in the U.S. and Europe.[70][71][72][73]

In May 2023, Microsoft and Western intelligence agencies reported that a Chinese state-sponsored hacking group affiliated with the PLA called "Volt Typhoon" had targeted critical infrastructure and military installations in Guam, Hawaii, Texas and elsewhere.[74][75][76] In January 2024, US authorities stated that they disrupted an operation by Volt Typhoon that had access to critical infrastructure in the US for at least five years.[77][78]

In February 2024, OpenAI announced that it had shut down accounts used by the Charcoal Typhoon and Salmon Typhoon hacking groups. The groups had been using their services to research companies, intelligence agencies, cybersecurity tools and evasion techniques, translate technical papers, write and refactor code, and create phishing campaign content.[28][29] The same month, leaked documents from an MSS, PLA, and MPS contractor based in Shanghai called I-Soon provided details into a campaign to harass dissidents, activists, critical academics, and Uyghurs overseas.[79][80]

Taiwan

Comparing the semiconductor industry in China mainland and Taiwan today, Taiwan is the leader in terms of overall competitiveness. On 6 August 2020, Wired published a report, stating that "Taiwan has faced existential conflict with China for its entire existence and has been targeted by China's state-sponsored hackers for years. But an investigation by one Taiwanese security firm has revealed just how deeply a single group of Chinese hackers was able to penetrate an industry at the core of the Taiwanese economy, pillaging practically its entire semiconductor industry."[81]

Ukraine

In April 2022, The Times reported that days prior to the start of the 2022 Russian invasion of Ukraine, a cyberwarfare unit of the People's Liberation Army launched cyberattacks against hundreds of Ukrainian government sites, according to officials of the Security Service of Ukraine.[82][83]

United Kingdom

In May 2023, the UK's National Cyber Security Centre, alongside other Five Eyes member states, identified the Chinese government behind the "Volt Typhoon" advanced persistent threat targeting critical infrastructure.[31][84]

The Vatican

In July 2020 it was reported that Chinese state-sponsored hackers operating under the named RedDelta hacked the Vatican's computer network ahead of negotiations between China and the Vatican.[85]

IP hijacking

During 18 minutes on April 8, 2010, state-owned China Telecom advertised erroneous network routes that instructed "massive volumes" of U.S. and other foreign Internet traffic to go through Chinese servers. A US Defense Department spokesman told reporters that he did not know if "we've determined whether that particular incident ... was done with some malicious intent or not" and China Telecom denied the charge that it "hijacked" U.S. Internet traffic.[86]

See also

References

Шаблон:Reflist

Шаблон:Cyberwarfare by country Шаблон:Disinformation Шаблон:Authority control

Партнерские ресурсы
Криптовалюты
Магазины
Хостинг
Разное

  1. Шаблон:Cite magazine
  2. "China's Hacker Army Шаблон:Webarchive". Foreign Policy.
  3. Шаблон:Cite news
  4. Шаблон:Cite news
  5. Beech, Hannah. "Meet China's Newest Soldiers: An Online Blue Army". Шаблон:Webarchive Time, 27 May 2011.
  6. Шаблон:Cite news
  7. Шаблон:Cite web
  8. Шаблон:Cite web
  9. Шаблон:Cite news
  10. Шаблон:Cite web
  11. Шаблон:Cite web
  12. Шаблон:Cite web
  13. Шаблон:Cite web
  14. Шаблон:Cite web
  15. Шаблон:Cite web
  16. Шаблон:Cite web
  17. Шаблон:Cite web
  18. Шаблон:Cite web
  19. Шаблон:Cite magazine
  20. Шаблон:Cite news
  21. Шаблон:Cite web
  22. Шаблон:Cite web
  23. Шаблон:Cite web
  24. Шаблон:Cite web
  25. Шаблон:Cite web
  26. Шаблон:Cite news
  27. Шаблон:Cite web
  28. 28,0 28,1 28,2 Шаблон:Cite web
  29. 29,0 29,1 29,2 Шаблон:Cite web
  30. Шаблон:Cite news
  31. 31,0 31,1 Шаблон:Cite news
  32. Шаблон:Cite news
  33. Шаблон:Cite news
  34. Шаблон:Cite web
  35. Шаблон:Cite news
  36. Шаблон:Cite news
  37. Шаблон:Cite news
  38. Шаблон:Cite news
  39. Шаблон:Cite news
  40. Шаблон:Cite news
  41. 41,0 41,1 Шаблон:Cite news
  42. 42,0 42,1 Cha, Ariana Eunjung and Ellen Nakashima, "Google China cyberattack part of vast espionage campaign, experts say". The Washington Post. January 14, 2010.
  43. Шаблон:Cite news
  44. 44,0 44,1 Шаблон:Cite news
  45. "Google cyber attack hit password system" The New York Times, Reuters, April 19, 2010.
  46. Шаблон:Cite web
  47. Шаблон:Cite news
  48. Шаблон:Cite magazine
  49. Шаблон:Cite news
  50. Riley, Michael, and Dune Lawrence, "Hackers Linked to China's Army Seen From EU to D.C. Шаблон:Webarchive", Bloomberg L.P., 27 July 2012
  51. Шаблон:Cite news
  52. Шаблон:Cite news
  53. Nakashima, Ellen, "Report on 'Operation Shady RAT' identifies widespread cyber-spying Шаблон:Webarchive", The Washington Post, August 3, 2011.
  54. Шаблон:Cite news
  55. Шаблон:Cite news
  56. Шаблон:Cite web
  57. "The U.S. Presses on Cyberthreats; In Beijing, Treasury Secretary Frames Issue as a Top Priority in Ties With China". Шаблон:Webarchive March 20, 2013 The Wall Street Journal
  58. Finkle, J., Menn, J., Viswanatha, J. "U.S. accuses China of cyber spying on American companies". Шаблон:Webarchive Reuters, May 19, 2014.
  59. Clayton, M. "US indicts five in China's secret 'Unit 61398' for cyber-spying". Шаблон:Webarchive Christian Science Monitor, May 19, 2014
  60. Chinese hacked U.S. military contractors, Senate panel finds Шаблон:Webarchive September 18, 2014 Reuters
  61. FBI warns U.S. businesses of cyber attacks, blames Beijing Шаблон:Webarchive October 16, 2014 Reuters
  62. Шаблон:Cite news
  63. Шаблон:Cite news
  64. "Hacks of OPM databases compromised 22.1 million people, federal authorities say Шаблон:Webarchive". The Washington Post. July 9, 2015.
  65. Шаблон:Cite news
  66. Шаблон:Cite news
  67. Шаблон:Cite web
  68. Шаблон:Cite news
  69. Шаблон:Cite news
  70. Шаблон:Cite news
  71. Шаблон:Cite news
  72. Шаблон:Cite news
  73. Шаблон:Cite news
  74. Шаблон:Cite news
  75. Шаблон:Cite news
  76. Шаблон:Cite news
  77. Шаблон:Cite news
  78. Шаблон:Cite web
  79. Шаблон:Cite news
  80. Шаблон:Cite news
  81. Шаблон:Cite web
  82. Шаблон:Cite news
  83. Шаблон:Cite news
  84. Шаблон:Cite news
  85. "The Vatican Is Said to Be Hacked From China Before Talks With Beijing" Шаблон:Webarchive. The New York Times.
  86. Шаблон:Cite news
Источник — http://wikihandbk.com/ruwiki/index.php?title=Английская_Википедия:Cyberwarfare_by_China&oldid=14131704