McAfee Report: Chinese Hackers Attack Oil Companies
February 10, 2011 1:16 PM
comment(s) - last by
Several financial documents, bidding contracts and copied proprietary industrial processes were obtained by the hackers
announced that five multinational gas and oil companies and seven other unidentified companies have had their computer systems broken into by Chinese hackers, where sensitive information such as bidding plans have been stolen.
Dmitri Alperovitch, McAfee's vice president for threat research, named the attacks "Night Dragon" in McAfee's report.
"It speaks to quite a sad state of our critical infrastructure security," said Alperovitch. "These were not sophisticated attacks, yet they were very successful in achieving their goals."
The Night Dragon report did not release the names of the five energy firms, nor did it identify those responsible for the hacking. But the computer security company did report that the hack was traced to China through a server leasing company located in Shandong Province, which hosted the malware. It was also traced to Beijing IP addresses, which were being used between 9 a.m. and 5 p.m.
The report notes that the
hackers infiltrated the computer systems
either through public websites or infected e-mails sent to executives within the companies. They have obtained financial documents, bidding contracts and copied proprietary industrial processes.
"Starting in November 2009, coordinated covert and targeted cyberattacks have been conducted against global oil, energy and petrochemical companies," said McAfee in its report. "We have identified the tools, techniques and network activities used in these continuing attacks - which we have dubbed Night Dragon - as originating primarily in China."
The hackers not only
broke into the computer systems
, but also targeted executives and other individuals in Greece, Taiwan, Kazakhstan and the United States in order to obtain confidential information.
"That information is tremendously sensitive and would be worth a huge amount of money to competitors," said Alperovitch.
Alperovitch added that there is no evidence that
is "government sponsored in any way."
China has had quite a past linked to hacks like this, such as the hack on
in December 2009. Chinese hackers broke into Google's network in an attempt to retrieve the e-mail accounts of Chinese human rights activists.
"This is normal business practice in China," said Jim Lewis, a cyber expert with the Center for Strategic and International Studies think tank. "It's not always state sponsored. And they do it to each other."
Foreign Ministry spokesman Ma Zhaoxu announced at a press briefing in Beijing today that he had no idea that the hack on the five energy companies had even occurred.
"I really have no grasp of this situation, but we frequently hear about
these types of reports
," said Zhaoxu.
The hacks stemming from China has Western companies and governments concerned, but officials say are familiar with these attacks.
"We are aware of these types of threats, but we can't comment specifically about what's in the Night Dragon report," said FBI spokeswoman Jenny Shearer.
Lewis said that Beijing does not arrest hackers very often, but it is "not impossible."
This article is over a month old, voting and posting comments is disabled
2/10/2011 4:51:16 PM
"The report notes that the hackers infiltrated the computer systems either through public websites or infected e-mails sent to executives within the companies"
If it really was the later, then it's a good reason to make sure executives either have access only to the internet and not the internal company's network, or vice-versa.
Seriously, many of these attacks seem to depend on the ignorance of an inside user. These "executives" should know better than to run "Happy New Year.exe" that came in an shady email...
"This is about the Internet. Everything on the Internet is encrypted. This is not a BlackBerry-only issue. If they can't deal with the Internet, they should shut it off." -- RIM co-CEO Michael Lazaridis
Pro-Wikileaks Hacker Group Calls For War Against the UK Government
January 31, 2011, 10:32 AM
Hamburgled: Hackers Nab McDonald's, Walgreen's Email Databases
December 15, 2010, 6:17 PM
Cybersecurity is Everyone's Problem
June 24, 2009, 7:59 AM
Report: AT&T Eyeing $40B DirecTV Purchase
May 1, 2014, 8:00 AM
WebOS Class Action Settlement Costs HP $57 Million
April 1, 2014, 10:22 AM
IBM Workers Strike Over Terms of Deal That Will Have Them Working for Lenovo
March 6, 2014, 9:29 AM
Google Picking Up Artificial Intelligence Company "DeepMind" for $400 Million
January 27, 2014, 9:25 AM
Quick Note: Qualcomm Grabs up Palm, IPAQ, and Bitfone Patent Portfolio from HP
January 24, 2014, 9:18 AM
Verizon Buys Intel Media OnCue Cloud TV assets
January 21, 2014, 10:26 AM
Most Popular Articles
Apple Scores Patents, Preps New Reversible USB Plug for iPhone 6 Connector
August 18, 2014, 1:32 PM
New AMD Fusion-Based Laptop From HP to Pack a Punch at $199
August 18, 2014, 4:13 PM
BlackBerry Reinvents Itself, Prepares for Potential Smartphone-Free Future
August 18, 2014, 7:51 PM
New Photos Show “Assembled” iPhone 6, Protruding Camera Ring
August 20, 2014, 2:32 PM
Lumia 830 Gets Major Upgrades Including New 20.1 Megapixel Toshiba Sensor
August 15, 2014, 6:00 PM
Latest Blog Posts
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
Justice Leaks Details of Next HTC One Two Flagship Phone
Dec 5, 2013, 4:04 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information