Free Newsletters - Space News - Defense Alert - Environment Report - Energy Monitor
by Staff Writers
Washington (AFP) June 10, 2014
A Chinese military unit has run a hacking campaign that includes sending bogus email in a bid to intercept Western satellite communications and aerospace secrets, a US security firm said.
The report by the California-based firm Crowdstrike points to broader hacking by China weeks after the United States for the first time filed charges against Chinese military officers over alleged cyber-espionage.
Dubbed "Putter Panda" for its focus on the golf-playing set, the Shanghai-based unit is a "determined adversary group" that has operated since at least 2007 by sending email attacks that target Microsoft Outlook, Adobe Reader and other common software, Crowdstrike said.
Putter Panda's strategy includes sending email from innocuous-looking addresses -- firstname.lastname@example.org was one example -- and offering fake invitations in hopes that users will click and unwittingly give hackers access to their computer systems.
One attachment sent to workers at the Toulouse Space Center in France was a false brochure for a local yoga studio, promoting "a universal method to better know yourself, the universe and the gods, as recommended by Socrates."
Crowdstrike, in the report released Monday, said that Putter Panda appears bent on "obtaining intellectual property and industrial secrets related to defense technology" with an intent to "conduct space surveillance, remote sensing and interception of satellite communications."
Putter Panda "is likely to continue to aggressively target Western entities that hold valuable information or intellectual property relevant to these interests," it said.
Crowdstrike linked email addresses associated with Putter Panda to a personal blog of a 35-year-old named Chen Ping. On the blog, he said he works for the "military/police" and posted pictures that appear to show him exercising in front of soldiers and wearing army-style khaki as he drunkenly celebrated a birthday.
Crowdstrike linked Putter Panda with the People's Liberation Army's Unit 61486 in a high-rise building in Shanghai's northern Zhabei district.
The group is in addition to the already-known Unit 61398. A report last year by another security firm, Mandiant, said that Unit 61398 employed thousands of workers in a 12-story building near Shanghai who pilfered intellectual property and government secrets overseas.
A US grand jury last month indicted five officers from Unit 61398 for allegedly breaking into US computers to benefit Chinese state-owned companies, leading to US job losses in the steel, solar and other industries.
China summoned the US ambassador to protest and suspended cooperation on cyber issues. China accused the United States of hypocrisy as Washington conducts sweeping surveillance around the world, as revealed by former contractor Edward Snowden.
Military Space News at SpaceWar.com
|The content herein, unless otherwise known to be public domain, are Copyright 1995-2014 - Space Media Network. All websites are published in Australia and are solely subject to Australian law and governed by Fair Use principals for news reporting and research purposes. AFP, UPI and IANS news wire stories are copyright Agence France-Presse, United Press International and Indo-Asia News Service. ESA news reports are copyright European Space Agency. All NASA sourced material is public domain. Additional copyrights may apply in whole or part to other bona fide parties. Advertising does not imply endorsement, agreement or approval of any opinions, statements or information provided by Space Media Network on any Web page published or hosted by Space Media Network. Privacy Statement All images and articles appearing on Space Media Network have been edited or digitally altered in some way. Any requests to remove copyright material will be acted upon in a timely and appropriate manner. Any attempt to extort money from Space Media Network will be ignored and reported to Australian Law Enforcement Agencies as a potential case of financial fraud involving the use of a telephonic carriage device or postal service.|