Google and several other American companies have been attacked online through computers at educational institutions in China. New reports from those involved in the investigations have been traced to schools with close ties to the Chinese military, according to The New York Times.
Originally, it was believed that the attacks occurred sometime during the summer of 2009, but new reports indicate the Chinese started hacking in April of last year.
On Jan. 12, Google first reported that it had been subject to sophisticated attacks that probably came from China. These attacks were aimed at stealing trade secrets and computer codes, as well as obtaining e-mails of Chinese human rights activists.
Servers in Taiwan seem to be the source of the attacks according to the National Security Agency, who has been investigating the situation since Google first reported the problem.
The National Security Agency has used expert tactics to trace the attacks back to a specific computer science class taught by a Ukrainian professor at a vocational school in China.
The Jiaotong School has one of the top computer science programs. Some students of the school recently won a competition by IBM beating out such elite schools as Stanford University. The Lanxiang School was established with the support of the Chinese military and trains some students as scientists for the military. The school’s computer network is run by Baidu, the top Chinese search engine and prime competitor of Google.
The United States government seems to have mixed opinions on the hacking by the Chinese schools. Some believe the Chinese government is behind the attacks, using the schools as camouflage for their operations.
Others believe the schools were a false cover intelligence operation being run by a third country. The government believes the hacking is mainly to steal intellectual property from American companies.
The Chinese have adopted a highly distributed approach to online espionage by making it nearly impossible for anyone to track where an attack first originated. James C. Mulvenon, a Chinese military specialist and a director at the Center for Intelligence Research and Analysis in Washington D.C., said,“We have to understand that they have a different model for computer network exploit operations by the Chinese government volunteering as patriotic hackers to support their policies.”
One of the professors who teaches web security at the Jiaotong School said he wasn’t surprised the school had been linked to the hackings, since hacking into foreign web sites is quite normal. The professor continued to say, “I believe there are two types of situations. One is it’s a completely individual act of wrongdoing, done by one or two geek students in the school who are just keen on experimenting with their hacking skills learned from the school, since the sources in the school and network are so limited. Or it could have been done by one of the university’s IP addresses was hijacked by others, which happens frequently,” according to The New York Times.
Shao, who is the dean of the computer science department at the Lanxiang School, said “I think it’s impossible for our students to hack Google or other U.S. companies because they are just high school graduates and not at an advanced level.
Also, because our school adopts close management, outsiders cannot easily come into our school,”according to The New York Times. However, he did acknowledge that every year, four or five students from his department are hired by the military.
Forensic analysts state the hackers were able to gain access to the computers through a tricky technique called man-in-mailbox to exploit the natural trust shared by people who work in organizations. Regardless of how the hacking was performed, U.S. companies must improve the security on their systems to prevent hackers from stealing valuable intellectual property.
1 comments Log in to Comment
You must be logged in to comment on an article. Not already a member? Register now