China is directing “the single largest, most intensive foreign intelligence gathering effort since the Cold War” against the United States, according to a report released yesterday by Medius Research.
The report, sponsored by progressive political organization Patriot Majority, traces a 15-year pattern of events that was triggered by China’s “humiliation” during the 1995-96 Taiwan crisis, when two U.S. task forces sailed unchallenged into the Taiwan Strait, and culminated in several highly publicized cyber attacks in early 2010, which the report attributes to China.
Circumstantial Evidence, but No Smoking Gun
The report is an in-depth compilation and analysis of material that is publicly available or was obtained from government on background. Although it provides no evidence of a smoking gun that would conclusively implicate the Chinese government in cyber espionage, the report’s lead investigator Richard Parker states, “I believe it’s there, and I believe it’s classified.”
There is a substantial body of circumstantial evidence:
• Intelligence gathering “is a core mission of the People’s Liberation Army (PLA).” This is substantiated by numerous PLA documents, including one that described “seizing control of an adversary’s information flow as a prerequisite to air and naval superiority.”
• China is investing in the resources needed for “building an informationalized force and winning an informationalized war,” including a 1,100 person cyber operation with a submarine cave entrance worthy of a James Bond film, all hidden beneath the white sands and villages of Hainan Island, a popular tourist destination.
• The relationship between Chinese hackers and the Chinese government is “blurred.” In 2001, for example, hackers defaced the web sites of several U.S. federal agencies after a Chinese pilot was killed in an encounter with a U.S. reconnaissance aircraft in an incident that provoked a formal U.S. apology. According to the report, U.S. intelligence officials believe that the hack “had the ‘tacit blessing’ of the Chinese government and perhaps even official help.”
Is This War?
A recent article in FederalTimes.com puts the cost of Chinese cyber attacks against the Department of Defense at more than $100 million dollars for the first half of 2009 alone, but the Medius report is careful to characterize alleged Chinese activities as espionage, not war. When asked to comment on former Director of National Intelligence Mike McConnell’s widely quoted assertion that “the United States is fighting a cyberwar,” Patriot Majority President Craig Varoga said, “The point is not to focus on the words, but the potential threat. [This threat] has not leaped to the forefront of American consciousness and policy making where it should be. We don’t want to wait until there’s a crisis to begin this discussion.”
Private Sector Dilemma
Lead investigator Parker believes one of the trickiest issues raised by the report is what the role of government should play in addressing private vulnerabilities. “We don’t want taxpayers subsidizing corporate IT security, but this is a national problem and we can’t simply say that we’re only going to product the government’s infrastructure.”
Related Content: Defining and Debating Cyber Warfare
Related Content: “Smart” Power Grids a Prime Target in Cyberwarfare
More from Michael Stevens
- PCI Compliance Is No Slam Dunk
- Security Concerns Primary Roadblock to Corporate Adoption of Web 2.0
- Study: 8 of 10 Web Apps Would Fail a PCI Audit
- New U.S. Cybersecurity Strategy Revealed
- Cyber Security Risks Report Contains Few Surprises
- Former MIS Head Indicted for Cybercrime
- U.S. and Europe Lag Asia in IT Security Spending Outlook, Maturity
- SMBs Embrace Social Media and Pay the Price
Latest News
- Aembit Scores $16.6M Seed Funding for Workload IAM Technology
- Millions Stolen in Hack at Cryptocurrency ATM Manufacturer General Bytes
- Waterfall Security, TXOne Networks Launch New OT Security Appliances
- Hitachi Energy Blames Data Breach on Zero-Day as Ransomware Gang Threatens Firm
- NBA Notifying Individuals of Data Breach at Mailing Services Provider
- Adobe Acrobat Sign Abused to Distribute Malware
- New York Man Arrested for Running BreachForums Cybercrime Website
- Huawei Has Replaced Thousands of US-Banned Parts With Chinese Versions: Founder
