- Big milestone for Britain’s little Prince George who turns 1
- Murphy: Israel must be wary of Hamas using civilian deaths for recruitment
- Royce: Putin recruiting ‘every skinhead and malcontent around Russia’
- Nancy Pelosi is adamant: Congress worked together when Bush was president
- ‘Slender Man’ stabbing victim receives Purple Heart from anonymous veteran
- Kentucky city called socialist for buying gas station, undercutting competitor fuel prices
- Israel hits five mosques, sports complex in overnight Gaza strikes
- Hillary Clinton dogged for refusing reporters’ questions on book tour
- EPA tweet baffles: ‘I’m now a C-List celebrity in Kim Kardashian: Hollywood’ iPhone game
- Australian P.M. Abbott: MH17 evidence tampered with on ‘industrial scale’
Hackers in China hit oil firms
Steal sensitive data from computers of Western companies
Question of the Day
BEIJING | Hackers operating from China stole sensitive information from Western oil companies, a U.S. security firm reported Thursday, adding to complaints about pervasive Internet crime traced to the country.
The report by McAfee Inc. did not identify the companies but said the "coordinated, covert and targeted" attacks began in November 2009 and targeted computers of oil and gas companies in the United States, Taiwan, Greece and Kazakhstan. It said the attackers stole information on operations, bidding for oil fields and financing.
"We have identified the tools, techniques, and network activities used in these continuing attacks — which we have dubbed Night Dragon — as originating primarily in China," said the report.
Google Inc. closed its China-based search engine last year after complaining of cyber-attacks from China against its e-mail service.
Security consultants say China is a leading center for Internet crime, including industrial spying aimed at major companies. Consultants say the high skill level of earlier attacks suggests China's military, a leader in cyberwarfare research, or other government agencies might be stealing technology and trade secrets to help state companies.
The Chinese government has denied that it is involved.
Officials in the United States, Germany and Britain say hackers linked to China's military have broken into government and defense systems. Attacks on commercial systems receive less attention because companies rarely come forward, possibly for fear it might erode trust in their businesses.
Spokesmen from several American, British and Greek oil companies said they were either unaware of the hacking or that they could not comment on security matters.
McAfee, based in Santa Clara, Calif., said the hackers worked through servers in the United States and the Netherlands and used techniques including taking advantage of vulnerabilities in the Microsoft Windows operating system.
McAfee said it identified a person in the eastern Chinese city of Heze in Shandong province who provided servers that hosted an application that controlled computers at the victim companies. The report did not identify the person and said he was not believed to be the scheme's mastermind.
McAfee said extraction of information occurred from 9 a.m. to 5 p.m. Beijing time on weekdays. It said that suggested the attackers were "company men" on a regular job, rather than freelance or amateur hackers.
The attackers used hacking tools of Chinese origin that are prevalent on Chinese underground hacking forums, McAfee said.
Google announced last January that cyber-attacks from China hit it and at least 20 other companies. Google says it has "conclusive evidence" the attacks came from China but declined to say whether the government was involved.
Google cited those attacks and attempts to snoop on dissidents in announcing it wanted to stop censoring search results in China, which the communist government requires. The company closed its China-based search engine in March.
In 2009, a Canadian research group said a China-based ring stole information from thousands of hard drives worldwide. The Information Warfare Monitor said attackers broke into government and private organizations in 103 countries, including the computers of the Dalai Lama and his exiled Tibetan government.
There are no estimates of losses attributable to hacking traced to China, but McAfee has said previously that intellectual property worth an estimated $1 trillion was stolen worldwide through the Internet in 2008.
TWT Video Picks
U.S. appetite for drugs begets violence migrants are fleeing
- IRS seeks help destroying another 3,200 computer hard drives
- Jewish woman booted from JetBlue flight over fight with Palestinian
- YOUNG: A sinking presidency, deeper after November?
- Hillary Clinton dogged for refusing reporters' questions on book tour
- PRUDEN: A deadly enemy within exacerbating immigration crisis
- Rep. Jared Polis' anti-fracking crusade riles Colorado
- Hamas terrorists wear Israeli army uniforms to ambush soldiers in Gaza
- MERRY: Handicaps in Hillary's way
- Blunder on the bases costly in D-Backs' 4-3 loss
- Nancy Pelosi: Congress worked together when Bush was president
Obama's biggest White House 'fails'
Celebrities turned politicians
Athletes turned actors
20 gadgets that changed the world
Fighting in Iraq