Cyber-assault HQ: how US is under attack from this office in Shanghai

Online security firm traces breaches to building occupied by Chinese military

A barrage of malicious cyber-attacks against computer networks in the United States and other countries over several years has been sourced by a private US security firm to a single building on the fringes of Shanghai, which, it says, is occupied by the Chinese military.

A 60-page report released by Mandiant, a Virginia-based firm that specialises in cyber-espionage, concludes that hundreds or perhaps thousands of English-speaking Chinese computer experts toil daily inside the anonymous-looking 12-storey building in the Pudong district of Shanghai. ‘Unit 61398’, as it is known, hacks into foreign networks on behalf of the People’s Liberation Army (PLA), Mandiant alleges.

“The nature of Unit 61398’s work is considered by China to be a state secret; however, we believe it engages in harmful computer network operations,” the security firm said in the report, which drew instant rebukes from the Chinese government. “It is time to acknowledge the threat that is originating in China, and we wanted to do our part to arm and prepare security professionals to combat that threat effectively.”

The company asserted that the unit, one of several in China believed to be involved in invading overseas computer systems, had “stolen hundreds of terabytes of data from at least 141 organisations across a diverse set of industries beginning as early as 2006”.  While most of the activity targeted corporations in the United States are smaller number is located in Canada and Britain, it said.

Cyber-espionage is becoming an increasingly urgent worry in Washington.  The concern is not just that China, as well any number of other countries, is successfully stealing corporate information – for example merger plans, design blueprints, pricing documents or negotiating strategies – but that it is developing the capacity to sabotage physical infrastructure networks in the US like gas pipelines or power grids.

“In the cold war, we were focused every day on the nuclear command centres around Moscow,” one senior defence official was cited as saying by the New York Times, which first revealed the contents of the Mandiant report. “Today, it’s fair to say that we worry as much about the computer servers in Shanghai.”

President Barack Obama included a call to arms to confront the cyber-threat in his State of the Union address last week.  “We know foreign countries and companies swipe our corporate secrets,” he said. “Now our enemies are also seeking the ability to sabotage our power grid, our financial institutions, our air-traffic control systems. We cannot look back years from now and wonder why we did nothing.”

Beijing continues to deny sanctioning such activity. “Hacking attacks are transnational and anonymous,” foreign ministry spokesman Hong Lei said.  “Determining their origins are extremely difficult. We don’t know how the evidence in this so-called report can be tenable.” When BBC journalists approached the building they were briefly detained and forced to relinquish their footage.

Unit 61398 has been known both to private cyber-security firms as well as US intelligence for a while and is sometimes referred as the ‘Comment Crew’ because it has been known to infiltrate online forums and leave comments.  The Mandiant report does not name any victims but says that the 141 companies already infiltrated span 20 major industries.

American companies known to have been targeted by Comment Crew, however, include Coca Cola at a time when it was considering a take-over of a Chinese juice company and RSA, a technology company that creates computer codes to protect confidential corporate and government databases. Alarm bells sounded last September when a unit of Telvent which supplies equipment enabling utility companies remotely to operate valves and switches on gas and oil networks had been invaded by unidentified cyber-intruders.

Responding to the report, White House spokeswoman Caitlin Hayden reiterated only that the United States “has substantial and growing concerns about the threats to U.S. economic and national security posed by cyber intrusions, including the theft of commercial information.” 

The Mandiant report acknowledges that while it has traced assorted cyber-intrusions to servers precisely in the rather run-down district of Pudong where the building occupied by Unit 61398 stands, it cannot be certain they are actually within its walls.  But to suppose they are not is barely plausible, the firm says.

Start your day with The Independent, sign up for daily news emails
Arts and Entertainment
Lou Reed distorted the truth about his upbringing, and since his death in 2013, biographers and memoirists have added to the myths
musicThe truth about Lou Reed's upbringing beyond the biographers' and memoirists' myths
News
people
News
Ed Miliband received a warm welcome in Chester
election 2015
Life and Style
Apple CEO Tim Cook announces the Apple Watch during an Apple special even
fashionIs the iWatch for you? Well, it depends if you want for the fitness tech, or the style
Have you tried new the Independent Digital Edition apps?
ebooks
ebooksA special investigation by Andy McSmith
  • Get to the point
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs General

Recruitment Genius: Project Implementation Executive

£18000 - £23000 per annum: Recruitment Genius: They work with major vehicle ma...

Recruitment Genius: Chiropractic Assistant

£16500 per annum: Recruitment Genius: A Chiropractic Assistant is needed in a ...

Recruitment Genius: Digital Account Executive - Midlands

£18000 - £26000 per annum: Recruitment Genius: They work with major vehicle ma...

Recruitment Genius: Web Developer

£28000 - £30000 per annum: Recruitment Genius: This company provides coaching ...

Day In a Page

NHS struggling to monitor the safety and efficacy of its services outsourced to private providers

Who's monitoring the outsourced NHS services?

A report finds that private firms are not being properly assessed for their quality of care
Zac Goldsmith: 'I'll trigger a by-election over Heathrow'

Zac Goldsmith: 'I'll trigger a by-election over Heathrow'

The Tory MP said he did not want to stand again unless his party's manifesto ruled out a third runway. But he's doing so. Watch this space
How do Greek voters feel about Syriza's backtracking on its anti-austerity pledge?

How do Greeks feel about Syriza?

Five voters from different backgrounds tell us what they expect from Syriza's charismatic leader Alexis Tsipras
From Iraq to Libya and Syria: The wars that come back to haunt us

The wars that come back to haunt us

David Cameron should not escape blame for his role in conflicts that are still raging, argues Patrick Cockburn
Sam Baker and Lauren Laverne: Too busy to surf? Head to The Pool

Too busy to surf? Head to The Pool

A new website is trying to declutter the internet to help busy women. Holly Williams meets the founders
Heston Blumenthal to cook up a spice odyssey for British astronaut manning the International Space Station

UK's Major Tum to blast off on a spice odyssey

Nothing but the best for British astronaut as chef Heston Blumenthal cooks up his rations
John Harrison's 'longitude' clock sets new record - 300 years on

‘Longitude’ clock sets new record - 300 years on

Greenwich horologists celebrate as it keeps to within a second of real time over a 100-day test
Fears in the US of being outgunned in the vital propaganda wars by Russia, China - and even Isis - have prompted a rethink on overseas broadcasters

Let the propaganda wars begin - again

'Accurate, objective, comprehensive': that was Voice of America's creed, but now its masters want it to promote US policy, reports Rupert Cornwell
Why Japan's incredible long-distance runners will never win the London Marathon

Japan's incredible long-distance runners

Every year, Japanese long-distance runners post some of the world's fastest times – yet, come next weekend, not a single elite competitor from the country will be at the London Marathon
Why does Tom Drury remain the greatest writer you've never heard of?

Tom Drury: The quiet American

His debut was considered one of the finest novels of the past 50 years, and he is every bit the equal of his contemporaries, Jonathan Franzen, Dave Eggers and David Foster Wallace
You should judge a person by how they peel a potato

You should judge a person by how they peel a potato

Dave Hax's domestic tips are reminiscent of George Orwell's tea routine. The world might need revolution, but we like to sweat the small stuff, says DJ Taylor
Beige is back: The drab car colours of the 1970s are proving popular again

Beige to the future

Flares and flounce are back on catwalks but a revival in ’70s car paintjobs was a stack-heeled step too far – until now
Bill Granger recipes: Our chef's dishes highlight the delicate essence of fresh cheeses

Bill Granger cooks with fresh cheeses

More delicate on the palate, milder, fresh cheeses can also be kinder to the waistline
Aston Villa vs Liverpool: 'This FA Cup run has been wonderful,' says veteran Shay Given

Shay Given: 'This FA Cup run has been wonderful'

The Villa keeper has been overlooked for a long time and has unhappy memories of the national stadium – but he is savouring his chance to play at Wembley
Timeless drama of Championship race in league of its own - Michael Calvin

Michael Calvin's Last Word

Timeless drama of Championship race in league of its own