Chinese computer hackers
hit pause ahead of
Obama summit
(Reuters) – Major intrusions by Chinese hackers of U.S. companies’ computer systems appear to have slowed in recent months, private-sector experts say, ahead of a meeting between China’s president and PresidentBarack Obama with cybersecurity on the agenda.
Three senior executives at private-sector firms in the field told Reuters they had noticed a downtick in hacking activity.
“The pace of new breaches feels like it’s tempering,” said Kevin Mandia, founder ofMandiant, a prominent company that investigates sophisticated corporate breaches.
A point of friction in U.S.-Chinese relations,cybersecurity will be a major focus of talks with Chinese President Xi Jinping this week in Washington, D.C., Obama said earlier this week.
In the same remarks, Obama called for a global framework to prevent the Internet from being “weaponized” as a tool of national aggression, while also holding out the prospect of a forceful U.S. response to China over recent hacking attacks.
Mandia has probed major corporate breaches, including those at Sony Pictures Entertainment, Target and healthcare insurers. Experts have connected some of these to a breach of classified background investigations at the U.S. Office of Personnel Management, which was traced to China.
Government-supported hackers in China may have backed off recently as Chinese and U.S. officials began negotiating in earnest overcybersecurity ahead of the Obama-Xi summit.
“In my gut, I feel like the Chinese and the U.S. over the next couple of years are going to figure this out,” said Mandia, now an executive atMandiant’s parent, FireEye FEYE -0.03% .
The FBI declined to comment on Friday.
The Obama administration has been weighing bringing economic sanctions against Chinese companies that have benefited from intellectual property theft. But no sanctions have been brought and U.S. companies disagree on the wisdom of such retaliation.
U.S. Assistant Attorney General John Carlin, who leads the Justice Department’s National Security Division, has scheduled a press availability on cybersecurity for Wednesday in Pittsburgh.
That is the same day that President Xi is scheduled to attend an Internet industry forum in Seattle hosted by Microsoft Corp. Xi will depart the next day for Washington, D.C.
On Saturday, a Justice Department spokesman said Carlin will make routine remarks and answer questions. The spokesman said he expected U.S cyber espionage charges brought in May 2014 against five Chinese army officers would come up. The indictment alleged the officers conspired from 2006 to 2014 to hack into U.S. entities’ computers and steal information.
In July, the FBI said economic espionage cases it had handled in the preceding 12 months were up 53 percent from a year earlier, withChina the biggest offender. Statistically, that period could have included a falloff toward the end.
While Mandia said his perception of a slowdown was unscientific and based on “how often my phone has been ringing,” others voiced similar views.
Stuart McClure, chief executive of Cylance, a smaller cybersecurity firm, said he too had noticed a drop-off in presumed Chinese attacks going back about six months.
“He has more volume” and so has a broader perspective, McClure said of Mandia. “But we have not seen the samples of attacks like we had been.”
Mandia and McClure spoke Thursday on the sidelines of the Billington CyberSecurity Summit in Washington, D.C.
Tom Kellermann, chief cybersecurity officer at large security vendor Trend Micro TYO -2.06% , said in an interview in New York he also had seen fewer new Chinese hacks recently, though he said one campaign that compromised U.S. defense contractors years ago might be adding new government targets.
“There’s been a consolidation in activity coming out of China,” Kellermann said. “It’s down a notch.”
No comments:
Post a Comment
Comments always welcome!