News / Asia

US-China Cyber Spying Case Turns Spotlight on Shadowy Unit 61398

Part of the building of 'Unit 61398', a secretive Chinese military unit, is seen in the outskirts of Shanghai, Feb. 19, 2013.
Part of the building of 'Unit 61398', a secretive Chinese military unit, is seen in the outskirts of Shanghai, Feb. 19, 2013.
Reuters
— A tense stand-off between the United States and China over state-backed cyber espionage has dragged China's secretive hacking unit “61398” back into focus, after the military group was pinpointed last year for mounting cyber attacks on Western commercial targets.
 
U.S. authorities on Monday charged five Chinese military officers at the unit, accusing them of hacking into American nuclear, metal and solar firms to steal trade secrets. China on Tuesday summoned the U.S. ambassador in Beijing and warned it would retaliate if Washington followed through with the charges. It said the affair would damage “mutual trust.”
 
At the center of the argument is a nondescript tower block in the northern suburbs of China's financial capital Shanghai, home to Chinese People's Liberation Army (PLA) Unit 61398.
 
The 12-story block houses as many as several thousand staff, according to Mandiant, a U.S. cyber security firm recently acquired by global network security company FireEye Inc. Mandiant identified the location as the source of a large number of espionage operations in a 70-page report last year.
 
“This unit is one of the most prolific. The group is really active and very aggressive,” said Pierluigi Paganini, a cyber security expert and founder of Security Affairs, based in Italy.
 
Unit 61398's Shanghai base is kitted out with specialist fiber optic lines, while staff are trained in areas from English linguistics to covert communications, network security and cyber attack strategy, according to the Mandiant report.
 
The unit's operatives, working under code names such as “UglyGorilla”, “DOTA” and “SuperHard”, also have close research and recruitment ties with China's leading academic centers such as the prestigious Shanghai Jiaotong University.
 
Publicly available academic reports, school registers, recruitment notices and local online community notice boards show a web of social, educational and academic networks spreading out from the cyber spying unit. Military units in China are often organized in this way with schools, sports clubs and social events organized communally for unit members.
 
Tip of the iceberg

 
However, unit 61398 - more formally known as General Staff Department (GSD), Third Department, Second Bureau - is just one of dozens of similar groups based in China, and far from the foremost, said Mandiant analyst Jen Weedon.
 
“The unit is one of many and its tradecraft is not that great. They are one of the ones that doesn't seem to mind leaving traces behind,” she told Reuters.
 
The unit, which started operating in or before 2006, saw activity drop sharply in the wake of the 2013 Mandiant report, but has since returned to “business as usual” after it overhauled some of its hacking techniques, Weedon added.
 
The new allegations are that Chinese state-owned firms “hired” the unit, which used a range of cyber attack methods to illegally gather corporate information from mostly U.S. firms and help give Chinese companies a competitive edge.
 
The unit “stole sensitive, internal communications”, using tactics such as “spear phishing” emails to gain access to employees' computers, after which it was able to collect internal data, according to the indictment document, posted on the United States Department of Justice website.
 
Federal prosecutors said the suspects targeted companies including Alcoa Inc, Allegheny Technologies Inc., United States Steel Corp, Toshiba Corp unit Westinghouse Electric Co, the U.S. subsidiaries of SolarWorld AG , and a steel workers' union.
 
Unit 61398 - or at least one very much like it - also stole data from at least one U.S. government agency in a hacking campaign named 'Byzantine Candor', according to diplomatic cables released by Wikileaks.
 
“Hackers based in Shanghai and linked to the PRC's People's Liberation Army [PLA] Third Department” stole data from at least one U.S. government agency, according to a leaked 2008 cable.
 
Officials in Washington have argued for years that cyber espionage is a top national security concern, and the battle is heating up. Both sides have ramped up public and private confrontation, including at a summit last year between U.S. President Barack Obama and Chinese President Xi Jinping.
 
China has denied the unit is involved in cyber espionage, and insists the country is more a victim than a perpetrator of cyber attacks.
 
Paganini said he was not surprised at the latest turn of events, which he described as just the “tip of the iceberg”.
 
“I believe there's an ongoing battle in the cyberspace. These countries are investing large amounts in cyber units that are able to create specific malware and have the ability to get into foreign networks and computers to steal trade secrets and intellectual properties,” he said.

You May Like

EU Court Fines Poland for Hosting CIA 'Black Sites'

Ruling is first time a court has acknowledged suspects were held and tortured at the sites, under US program launched following the 9/11 terrorist attacks More

Migrant Issues Close to Home Spur Groups to Take Action

Groups placing water, food in the desert, or aiding detainees after release, have one common goal: no more deaths of migrants crossing illegally into the US More

Video At AIDS Conference, Prevention Pill Stirs Excitement

Truveda shows promise, spurring debate over access and other approaches More

Featured Videos

Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
Treatment for Childhood Epilepsy Heats up Medical Marijuana Debatei
X
Shelley Schlender
July 24, 2014 6:43 PM
In the United States, marijuana is classed as an illegal drug by the federal government. But nearly half the states have legalized it, to some degree. Proponents say some strains of marijuana might have exceptional health benefits, for treating pain or inflammation in chronic conditions such as cancer, multiple sclerosis and epilepsy. Shelley Schlender reports on a strain of medical marijuana developed in Colorado that is reputed to reduce seizures in childhood epilepsy
Video

Video Treatment for Childhood Epilepsy Heats up Medical Marijuana Debate

In the United States, marijuana is classed as an illegal drug by the federal government. But nearly half the states have legalized it, to some degree. Proponents say some strains of marijuana might have exceptional health benefits, for treating pain or inflammation in chronic conditions such as cancer, multiple sclerosis and epilepsy. Shelley Schlender reports on a strain of medical marijuana developed in Colorado that is reputed to reduce seizures in childhood epilepsy
Video

Video Airbus Adds Metal 3D Printed Parts to New Jets

By the end of this year, European aircraft manufacturing consortium Airbus plans to deliver the first of its new, extra-wide-body passenger jets, the A350-XWB. Among other technological innovations, the new plane will also incorporate metal parts made in a 3-D printer. VOA's George Putic has more.
Video

Video Death Toll From Israel-Gaza Conflict Surpasses 700

Gaza officials say a shelling hit a compound housing a United Nations-run school in the Gaza Strip, killing more than a dozen people, during an Israeli offensive in the area. Heavy fighting between the Israeli military and Hamas militants continued on Thursday, pushing up the death toll. So far, more than 730 Palestinians and 35 Israelis have been killed in the conflict. VOA's Scott Bobb has the latest from Jerusalem.
Video

Video AIDS Conference Welcomes Exciting Developments in HIV Treatment, Prevention

Significant strides have been made in recent years toward the treatment and prevention of HIV, the virus that causes AIDS. This year, at the International AIDS Conference, the AIDS community welcomed progress on a new pill that may prevent transmission of the deadly virus. VOA’s Anita Powell reports from Melbourne, Australia.
Video

Video Israel Targets Gaza Supply Tunnels

The Israeli military has launched a ground operation in Gaza to destroy the myriad tunnels that may have been used to smuggle weapons to Hamas. VOA's Zlatica Hoke reports that could mean more hardship for the people of Gaza, who obtain some of their essential supplies through these underground passages
Video

Video Researchers Target Low-Cost Avatar Technology

Scientists at the University of Southern California Institute for Creative Technologies say 3-dimensional representations could revolutionize social media. Elizabeth Lee has more from Los Angeles.
Video

Video IAEA: Iran Turns its Enriched Uranium Into Less Harmful Form

Iran has converted its stockpiles of enriched uranium into a less dangerous form that is more difficult to use for nuclear weapons, according to the United Nations’ Atomic Energy Agency. The move complies with an interim deal reached with Western powers on Iran's nuclear program last year, in exchange for easing of sanctions. Henry Ridgwell reports for VOA from London.
Video

Video In Cambodia, HIV Diagnosis Brings Deadly Shame

Although HIV/AIDS is now a treatable condition, a positive diagnosis is still a life altering experience. In Cambodia, people living with HIV are often disowned by friends, family and the community. This humiliation can be unbearable. We bring you one Cambodian woman’s struggle to overcome a life tragedy and her own HIV positive diagnosis.

AppleAndroid