News / Asia

US-China Cyber Spying Case Turns Spotlight on Shadowy Unit 61398

Part of the building of 'Unit 61398', a secretive Chinese military unit, is seen in the outskirts of Shanghai, Feb. 19, 2013.
Part of the building of 'Unit 61398', a secretive Chinese military unit, is seen in the outskirts of Shanghai, Feb. 19, 2013.
Reuters
A tense stand-off between the United States and China over state-backed cyber espionage has dragged China's secretive hacking unit “61398” back into focus, after the military group was pinpointed last year for mounting cyber attacks on Western commercial targets.
 
U.S. authorities on Monday charged five Chinese military officers at the unit, accusing them of hacking into American nuclear, metal and solar firms to steal trade secrets. China on Tuesday summoned the U.S. ambassador in Beijing and warned it would retaliate if Washington followed through with the charges. It said the affair would damage “mutual trust.”
 
At the center of the argument is a nondescript tower block in the northern suburbs of China's financial capital Shanghai, home to Chinese People's Liberation Army (PLA) Unit 61398.
 
The 12-story block houses as many as several thousand staff, according to Mandiant, a U.S. cyber security firm recently acquired by global network security company FireEye Inc. Mandiant identified the location as the source of a large number of espionage operations in a 70-page report last year.
 
“This unit is one of the most prolific. The group is really active and very aggressive,” said Pierluigi Paganini, a cyber security expert and founder of Security Affairs, based in Italy.
 
Unit 61398's Shanghai base is kitted out with specialist fiber optic lines, while staff are trained in areas from English linguistics to covert communications, network security and cyber attack strategy, according to the Mandiant report.
 
The unit's operatives, working under code names such as “UglyGorilla”, “DOTA” and “SuperHard”, also have close research and recruitment ties with China's leading academic centers such as the prestigious Shanghai Jiaotong University.
 
Publicly available academic reports, school registers, recruitment notices and local online community notice boards show a web of social, educational and academic networks spreading out from the cyber spying unit. Military units in China are often organized in this way with schools, sports clubs and social events organized communally for unit members.
 
Tip of the iceberg

 
However, unit 61398 - more formally known as General Staff Department (GSD), Third Department, Second Bureau - is just one of dozens of similar groups based in China, and far from the foremost, said Mandiant analyst Jen Weedon.
 
“The unit is one of many and its tradecraft is not that great. They are one of the ones that doesn't seem to mind leaving traces behind,” she told Reuters.
 
The unit, which started operating in or before 2006, saw activity drop sharply in the wake of the 2013 Mandiant report, but has since returned to “business as usual” after it overhauled some of its hacking techniques, Weedon added.
 
The new allegations are that Chinese state-owned firms “hired” the unit, which used a range of cyber attack methods to illegally gather corporate information from mostly U.S. firms and help give Chinese companies a competitive edge.
 
The unit “stole sensitive, internal communications”, using tactics such as “spear phishing” emails to gain access to employees' computers, after which it was able to collect internal data, according to the indictment document, posted on the United States Department of Justice website.
 
Federal prosecutors said the suspects targeted companies including Alcoa Inc, Allegheny Technologies Inc., United States Steel Corp, Toshiba Corp unit Westinghouse Electric Co, the U.S. subsidiaries of SolarWorld AG , and a steel workers' union.
 
Unit 61398 - or at least one very much like it - also stole data from at least one U.S. government agency in a hacking campaign named 'Byzantine Candor', according to diplomatic cables released by Wikileaks.
 
“Hackers based in Shanghai and linked to the PRC's People's Liberation Army [PLA] Third Department” stole data from at least one U.S. government agency, according to a leaked 2008 cable.
 
Officials in Washington have argued for years that cyber espionage is a top national security concern, and the battle is heating up. Both sides have ramped up public and private confrontation, including at a summit last year between U.S. President Barack Obama and Chinese President Xi Jinping.
 
China has denied the unit is involved in cyber espionage, and insists the country is more a victim than a perpetrator of cyber attacks.
 
Paganini said he was not surprised at the latest turn of events, which he described as just the “tip of the iceberg”.
 
“I believe there's an ongoing battle in the cyberspace. These countries are investing large amounts in cyber units that are able to create specific malware and have the ability to get into foreign networks and computers to steal trade secrets and intellectual properties,” he said.

You May Like

Video British Fighters on Frontline of Islamic State Information War

It’s estimated that several hundred British citizens are fighting for Islamic State alongside other foreign jihadists More

Pakistan's Political Turmoil Again Shines Spotlight on Military

Thousands of protesters calling for PM Sharif to step down continue protests in front of parliament, as critics fear political impasse could spur another military coup More

Photogallery Ebola Quarantines Spark Anxiety in Liberian Capital

Food prices rise sharply as residents attempting purchases clash with security forces, leaving one person dead More

Featured Videos

Your JavaScript is turned off or you have an old version of Adobe's Flash Player. Get the latest Flash player.
Native Bees May Help Save Cropsi
X
Deborah Block
August 22, 2014 12:23 AM
U.S. President Barack Obama has called for a federal strategy to promote the health of bees that have been declining. The honeybee has been waning due to parasites, disease and pesticides. Wild bees may be used to take over their role as crop pollinators. Scientists first need to learn a lot more about wild bees, says biologist Sam Droege, who is pioneering the first national inventory on native bees. VOA’s Deborah Block went to his research laboratory in Beltsville, Maryland, to bring you more.
Video

Video Native Bees May Help Save Crops

U.S. President Barack Obama has called for a federal strategy to promote the health of bees that have been declining. The honeybee has been waning due to parasites, disease and pesticides. Wild bees may be used to take over their role as crop pollinators. Scientists first need to learn a lot more about wild bees, says biologist Sam Droege, who is pioneering the first national inventory on native bees. VOA’s Deborah Block went to his research laboratory in Beltsville, Maryland, to bring you more.
Video

Video US Defense Officials Plan for Long-Term Strategy to Contain Islamic State

U.S. defense officials say American air strikes in Iraq have helped deter Islamic State militants for the time being, but that a broad international effort is needed to defeat the extremists permanently. Defense Secretary Chuck Hagel warned Thursday that the group formerly known as the Islamic State in Iraq and the Levant, or ISIL, is better organized, and financially and militarily stronger than any other known terrorist group. Zlatica Hoke has more.
Video

Video Drug-Resistant Malaria Spreads in Southeast Asia

On Thailand’s border with Myanmar, also known as Burma, a malaria research and treatment clinic is stepping up efforts to eliminate a drug-resistant form of the parasite - before it spreads abroad. Steve Sandford reports from Mae Sot, Thailand.
Video

Video Gaza Conflict, Hamas Popularity Challenge Abbas

The Palestinian unity government of Mahmoud Abbas has failed to convince Hamas to agree to Egyptian-negotiated terms with Israel on a Gaza cease-fire. VOA State Department Correspondent Scott Stearns reports on what the Gaza conflict means for President Abbas, with whom U.S. officials have worked for years on a two-state solution to the Israeli-Palestinian conflict.
Video

Video Nigeria's 'Nollywood' Movie Industry Rolls in High Gear

Twenty years after its birth in a video shop in Lagos, Nigeria's "Nollywood" is one of the most prolific film industries on earth. Despite low budgets and whirlwind production schedules, Nigerian films are wildly popular in Africa and industry professionals say they hope, in the future, their films will be as great in quality as they are in quantity. Heather Murdock has more for VOA from Lagos.
Video

Video UN Launches 'Biggest Aid Operation in 30 Years' in Iraq

The United Nations has launched what it describes as one of the biggest aid operations in 30 years in northern Iraq, as hundreds of thousands of refugees flee the extremist Sunni militant group calling itself the Islamic State. As Kurdish and Iraqi forces battle the Sunni insurgents, the fighting has forced more people to flee their homes. Kurdish authorities say the international community must act now to avert a humanitarian catastrophe. Henry Ridgwell reports for VOA from London.
Video

Video Cambodian American Hip Hop Artist Sings of Personal Struggles

A growing underground movement of Cambodian American hip hop artists is rapping about the struggles of living in urban America. Most, if not all of them, are refugees or children of refugees who came to the United States from Cambodia to escape the Khmer Rouge genocide of the 1970s. Through their music, the artists hope to give voice to immigrants who have been struggling quietly for years. Elizabeth Lee reports from Long Beach, California.
Video

Video African Media Tries to Educate Public About Ebola

While the Ebola epidemic continues to claim lives in West Africa, information technology specialists, together with radio and TV reporters, are battling misinformation and prejudice about the disease - using social media to educate the public about the deadly virus. VOA’s George Putic has more.

AppleAndroid