China may be winning cyber war

Report cites accelerated 'Byzantine Hades' attacks on U.S. systems

The pace of cyber-espionage between China and the United States has picked up in recent years and security experts say China may have taken the upper hand, according to a report by Reuters.

Brian Grow and Mark Hosenball write that China has stolen terabytes of sensitive U.S. data as part of a campaign of attacks that are accelerating. The stolen information includes usernames and passwords for State Department computers and designs for multi-billion dollar weapons systems, the authors write.

Grow and Hosenball cite leaked State Department cables — obtained by Wikileaks and handed over to Reuters — tracing attacks to China and interviews with security experts. U.S. investigators have given a name to China's attacks — “Byzantine Hades.”

Related stories:

How Google attacks changed the security game

Advanced persistent threats are a new way of life

Among the examples they site are the Aurora attacks on Google, announced in January 2010, in which the systems of anywhere from 100 to 100 companies were breached. China has been widely suspected in the attacks.

Aurora is an example of an advanced persistent threat, an under-the-radar targeted attack that uses social engineering tricks to gain access to systems. The approach can be used in spear-phishing attacks on high-value targets, who would likely have access to sensitive information. The Reuters report said spear-phishing is China’s most common form of attack.

Of course, saying which country really has the upper hand is difficult, since so much of it is done in secrecy. Grow and Hosenball point out that little is known about what the United States is carrying out in cyberspace, and the same could be said of any country.

As Marc Fossi, executive editor of Symantec’s Internet Security Threat Report, told GCN’s William Jackson recently: “The targeted attacks we’ve heard about are only the ones we’ve heard about.”


About the Author

Kevin McCaney is a former editor of Defense Systems and GCN.


  • 2018 Fed 100

    The 2018 Federal 100

    This year's Fed 100 winners show just how much committed and talented individuals can accomplish in federal IT. Read their profiles to learn more!

  • Census
    How tech can save money for 2020 census

    Trump campaign taps census question as a fund-raising tool

    A fundraising email for the Trump-Pence reelection campaign is trying to get supporters behind a controversial change to the census -- asking respondents whether or not they are U.S. citizens.

  • Cloud
    DOD cloud

    DOD's latest cloud moves leave plenty of questions

    Speculation is still swirling about the implications of the draft solicitation for JEDI -- and about why a separate agreement for cloud-migration services was scaled back so dramatically.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.