China linked to cyber-attack
The Bethesda-based company said in a statement that its computer network was targeted May 21 with a “a significant and tenacious attack on its information systems network.” The attack was thwarted and no data was compromised, the company said.
“The fact is, in this new reality, we are a frequent target of adversaries around the world,” Sondra Barbour, Lockheed’s chief information officer, said in a letter to employees. She said one new measure was for the company to upgrade “our remote access SecurID tokens” used by employees to access the network.
The intelligence official said the link between the attack and China is based on initial analysis of the methods used. Unidentified hackers used counterfeit SecurID tokens to break through security barriers and breach the Lockheed Martin network. The tokens generate codes that, when mated to a secure computer, provide the first step in providing secure off-site access to networks.
The tokens used to gain unauthorized access to Lockheed Martin were reproduced from public key cryptology technology used by the security company RSA that was targeted in an attack originating from China several months ago, the official said.
Analysts believe the Chinese were able to obtain critical data that allowed them to reproduce keys for RSA’s SecurID keys that help authenticate computer users who access secure networks remotely.
A second U.S. cyber security official said: “It certainly wouldn’t be a surprise if the Chinese were somehow involved.”
Art Coviello, RSA executive chairman, stated in a May 17 open letter to customers posted on the company’s website that “recently our security systems identified an extremely sophisticated cyber-attack in progress being mounted against RSA.”
“Our investigation has led us to believe that the attack is in the category of an Advanced Persistent Threat,” he stated. “Our investigation also revealed that the attack resulted in certain information being extracted from RSA’s systems. Some of that information is specifically related to RSA’s SecurID two-factor authentication products.”
Mr. Coviello said the company is confident that the stolen data would not permit direct attacks on any customers, but he noted “this information could potentially be used to reduce the effectiveness of a current two-factor authentication implementation as part of a broader attack.”
Chinese Embassy spokesman Wang Baodong said China has been a responsible player in cyberspace, and as a victim of cyber-attacks, opposes such activities. “It’s irresponsible to make unwarranted allegations against China and habitually and wilfully link it to cyber hacking events,” Mr. Wang said in an email.
A classified State Department cable made public May 26 provides new details on China’s decadeslong policy of ignoring U.S. appeals to halt transfers of dangerous arms and missiles.View Entire Story
© Copyright 2013 The Washington Times, LLC. Click here for reprint permission.
Bill Gertz is a national security columnist for The Washington Times and senior editor at The Washington Free Beacon (www.freebeacon.com). He has been with The Times since 1985.
He is the author of six books, four of them national best-sellers. His latest book, “The Failure Factory,” on government bureaucracy and national security, was published in September 2008.
By John Solomon
How the government's punishing of the exposure of official wrongdoing can linger for years
Independent voices from the TWT Communities
“Right Angles” explores serious subjects, such as the Islamization of the Middle East and delegitimization of Israel, with humor, candor and a twist.
What does the middle-class conservative think about everything? Find out here.
A carefully guided tour through the confusing world of modern bookselling and publishing.
Columns from Voices around the World talking about the events, people, politics and social issues that concern us wherever, and whoever, we are.
Benghazi: The anatomy of a scandal
Vietnam Memorial adds four names
Cinco de Mayo on the Mall
NRA kicks off annual convention