- Associated Press - Friday, February 1, 2013

WASHINGTON (AP) - High-level talks with the Chinese government to address persistent cyberattacks against U.S. companies and government agencies haven’t worked, so officials say the Obama administration is now considering a range of actions.

China-based hackers have long been an economic and national security concern, but as cybersecurity experts report an increase in attacks, U.S. leaders are looking at ways to better address the threat and analyze its impact.

Two former U.S. officials said the administration is preparing a new National Intelligence Estimate that, when complete, is expected to detail the cyberthreat, particularly from China, as a growing economic problem. One official said it also will cite more directly a role by the Chinese government in such espionage.

The official said the NIE, which reflects the views of the nation’s various intelligence agencies, will underscore the administration’s concerns about the threat, and will put greater weight on plans for more pointed diplomatic and trade measures against the Chinese government. The two former officials spoke on condition of anonymity because they were not authorized to discuss the classified report.


“We have to begin making it clear to the Chinese,” Secretary of State Hillary Rodham Clinton said Thursday, “that the United States is going to have to take action to protect not only our government’s, but our private sector, from this kind of illegal intrusions.”

She said the U.S. must help build an international alliance against the cyberthreat and added that there is a lot the U.S. is working on “in the event that we don’t get some kind of international effort under way.” She said no specifics have been finalized.

Underscoring that widespread threat, both The New York Times and The Wall Street Journal reported Thursday that their computer systems had been infiltrated by China-based hackers. In both cases they said the focus was on monitoring news coverage and the reporters digging into stories the Chinese government deemed important.

Although the Obama administration hasn’t yet decided what steps it may take, actions could include threats to cancel certain visas or put major purchases of Chinese goods through national security reviews.

“The U.S. government has started to look seriously at more assertive measures and begun to engage the Chinese on senior levels,” said James Lewis, a cybersecurity expert at the Center for Strategic and International Studies. “They realize that this is a major problem in the bilateral relationship that threatens to destabilize U.S. relations with China.”

To date, extensive discussions between Chinese officials and top U.S. leaders _ including President Barack Obama and Defense Secretary Leon Panetta _ have had little impact on what government and cybersecurity experts say is escalating and technologically evolving espionage. The Chinese deny such espionage efforts.

The newly disclosed four-month long cyberattack against the Times is just the latest in a long string of breaches said to be by China-based hackers into corporate and government computer systems across the United States. Companies ranging from defense and high-tech industry leaders to Internet search leader Google have complained for years of computer network attacks that cybersecurity firms traced back to China, including allegations that some were backed or endorsed by the Beijing government.

The Times attacks, routed through computers at U.S. universities, targeted staff members’ email accounts, the Times said, and were likely in retribution for the newspaper’s investigation into the wealth amassed by the family of a top Chinese leader. The Wall Street Journal, meanwhile, said its computer systems were breached by China-based hackers in an effort to monitor the newspaper’s coverage of China issues.

Media organizations with bureaus in China have believed for years that their computers, phones and conversations were likely monitored on a fairly regular basis by the Chinese. The Gmail account of an Associated Press staffer was broken into in China in 2010.

Richard Bejtlich, the chief security officer at Mandiant, the firm hired by the Times to investigate the cyberattack, said the breach is consistent with what he routinely sees China-based hacking groups do. But, he said it had a personal aspect to it that became apparent: The hackers got into 53 computers but largely looked at the emails of the reporters working on a particular story. The newspaper’s investigation delved into how the relatives and family of Premier Wen Jiabao built a fortune worth over $2 billion.

“We’re starting to see more cases where there is a personal element,” Bejtlich said, adding that it gives companies another factor to consider. “It may not just be the institution, but, is there some aspect of your company that would cause someone on the other side to take personal interest in you?”

Story Continues →