Home » Cyber Security » PLA Plans to Hack, Sniff, Explode

PLA Plans to Hack, Sniff, Explode

By Colin Clark Monday, November 16th, 2009 8:52 pm
Posted in Cyber Security, International, Policy

When one of China’s top two military leaders visited America last month, the PLA launched an impressive and coordinated propaganda effort. Those who went to hear Gen. Xu Caihou speak at the Center for Strategic and International Studies were each given an attractive shopping bag with the PLA seal on it and a pointed note in gold letters: “with the compliments of the Ministry of National Defense, People’s Republic of China.” Inside was a copy of China Daily and the lead article, splashed across the top of the paper made the simple point: “Best Defense: Listening and Collaboration.” The subhed: “Trust Becomes the Biggest Force in China-US Military Relations.” Along with the paper was a copy of a book titled, “The Wisdom of Sun Tzu.” And just to add a little grease to the pitch, the propaganda people include a set of ink drawings of China’s 56 ethnic groups!

As Larry Wortzel, vice chairman of the U.S.-China Economic and Security Review Commission and one of the country’s top experts on the Chinese military noted: “The PLA has a very impressive perception management operation. Their website is much better than it was. The public perception they portray is of a more open military.”

Just as they integrate their propaganda efforts, so it turns out the Chinese have crafted an integrated approach to using cyber warfare, melding it with signals intelligence, electronic warfare and precision guided weapons in a new strategy called Integrated Network Electronic Warfare (INEW).

“This sort of multi-spectrum assault has potential implications that go well beyond the battlefield. Given the complex architecture of modern military command, control, communications, computers, intelligence, surveillance, and reconnaissance (C4ISR) systems, there is little chance that cyber warfare would remain localized to a particular theater of conflict,” Wortzel notes in testimony prepared for Tuesday’s hearing before the Senate Judiciary subcommittee on homeland security and terrorism. Cyber attacks specifically targeting domestic civilian infrastructure cannot be ruled out…” he wrote, noting that such attacks are advocated by some Chinese military thinkers.

Given all this, I asked Wortzel about the deep chasm between the nice words spoken by Gen. Xu and the persistent and widespread attacks on US government and defense industry networks by Chinese sources. He discounted Xu’s comments, saying one had to expect a visitor to say nice things the first time he comes to call. But he also warned that China’s extensive hacking efforts — including the recent ploy of dropping thumb drives around for Pentagon officials to pick up — are extensive and intended to gather as much information as possible at the lowest possible cost.

“The first thing you have to realize is that a lot of what is going on now is reconnaissance and espionage. That helps them develop more quickly and helps them save a lot of money on research and development. What we don’t know is what they leave behind in malicious code that they might activate later,” Wortzel said.

More broadly, Wortzel said in his prepared testimony that the Obama administration needs to get moving on protecting US cyber assets. “President Obama made a good start with the 60-day cyber review earlier this year, but there still is no cyber security coordinator at the White House, as recommended by the White House review. Efforts to coordinate standards and policies across government and in the private sector appear stalled without the support of senior leadership in the National Security Council,” he said in his prepared testimony.

This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.

Join the Conversation

	Byron Skinner November 16th, 2009 at 11:10 pm Good Evening Colin, Geee Colin you mean that China acts like American defense contractors at trade shows, or the Dod that hands out embeds to favorites. What no watches, no net books, no big screen TV’s, no trips to Shanghai and a side trip to Hong Kong Disneyland for the family, I would say Colin from your description and from what I’ve seen at military trade shows the Chinese “Press Kit” or goodie bag, was rather on the cheap. I do hope their was a coupon in it for dinners for two at an expensive restaurant in DC. China and C4ISR, they are trying but at least right now they don’t even have a working model or command structure of such and organization. As best as the US can determine they have two working communication satellites up, the lease most of their channels from European vendors. They have no ISR abilities outside their own borders, although they have recently bought two old cold war Russian “Communication Ships” and are attempting to build them as floating relay stations. As far as Chinese mischief, the only one I can recall of late was the panic the Lockheed had over someone hacking into the F35 data base and swore it was from China, not. The Chinese for espionage still prefer to do it the old fashion way, papers, discs, tapes etc. in a brief case and out the door under the noses of security. That’s the W-88 “walked” out of Lawrence Livermore and the recent case that we can’t talk about yet. They know the US’s weaknesses. ALLONS, Byron Skinner
	Colin November 17th, 2009 at 2:13 pm Byron, It's true that defense contractors, which are businesses, certainly outstrip the Chinese in the goodies they hand out. However, I can't remember the last time the British or the French or Germans gave people a goodie bag — complete with an official newspaper containing carefully planted and planned stories — when a senior defense official spoke. True, we do sometimes get bribed with breakfasts or receptions with ambassadors. But in these cases it's the access that sells us — not the free bacon and eggs!
	pennst98 November 17th, 2009 at 4:50 pm While many analysts from think tanks seem to view China’s military modernization as some treat to the United States, I think their move have been more pragmatic than nefarious. Their envoy and visit is nothing more than an attempt to improve communication and relations with our country, a cheap and effective way to prevent conflict. (duh) On the military side of things the Chinese are wary of our current advanced weaponry and tactics, which can dismantle entire armies for breakfast. To put it bluntly this scares the bejesus out of them, especially after watching the US beat downs handed out during Enduring Freedom/Iraqi Freedom. So in order to shore up their defenses (and boost their prestige) they have turned to Russia for quick military upgrades, and espionage to co-opt of counter some of our advanced technologies.
	CharlesHouston November 17th, 2009 at 4:51 pm Colin – could part of that be the fact that the Chinese have no separation between businesses and the military? In the US, we have lots of rules about what civil servants (and by extension, contractors) can accept from businesses, foreign governments, etc etc. The US government might give you a sticker but Boeing could give you a pen. But as a contractor, I have to take lots of business ethics classes that dictate what I can accept from others, when I can share a ride with certain people, etc. Our European allies have similar, though looser, rules.
	pennst98 November 17th, 2009 at 4:56 pm To be be clear, while I certainly find Chinese espionage alarming…it isn’t SURPRISING! It is our duty to protect our secrets/technology from those we do not wish to share it with; allies AND rivals. (lord knows we've had as much troube with our "friends" as we ever did our enemiesI I don’t fault the Chinese for wanting to negate our substantial military advantage, its just good military policy. After all if they don’t substantially upgrade their capabilities or develop a counter to our military technological advantage, they don’t stand a chance against many weapons in our arsenal.
	SkysoldierRecon November 17th, 2009 at 5:26 pm The PLA owns most of China's businesses..and we keep shipping jobs over there..WE are ARMING them..how fucking stupid can we be? Thanx you REPUKE mooks, you singlehadedly DESTROYED the middle class…they are gonna jam us up sooner or later…Chi-com swine..
	Lurking Observer November 17th, 2009 at 7:23 pm Chinese military modernization can prove to be both a pragmatic action, yet also be a threat (or "treat," I suppose!). The Chinese economy is a global one, which gives the PRC global interests. To defend those interests, the PRC would need a military capable of global actions. But their ability to operate globally at some point jeopardizes our global power projection capabilities as well. Indeed, even their regional capabilities can affect our global power projection capabilities—part of the concept of asymmetry. It's true that they are concerned about our capabilities, as displayed from Bosnia to Baghdad. But they have also spent a fair amount of time analyzing those same operations, in order to come up with ways to counter our forces.
	Byron Skinner November 17th, 2009 at 3:16 pm Good Morning Colin, You got it right Colin, China is in the business of selling China, the three EU countries mentioned already have a nice chunk of the DoD budget, China would like to play too. Business is business and as you say you to have access to sell, the buzz is cookin’ and I’m sure that the Chinese are quite aware this and of the dynamics that are happening here, more so them many players in our own defense establishment. On the issue of modernization, China started its current PLA mobilization in 1987, although they have come a lone way mostly in internal reorganizations in the Chain of command, the creation of the PLAR and the new expanded role of the PAP are a good examples, China is still a long way from being any viable challenge to either the United States or Japan. Besides Taiwan which is an ax hanging over the heads of the CCP that could fall at any time, the problem is money. Military industries are expensive to build and foreign purchases of weapons platforms/systems don’t do anything for domestic economic development. The US economy is still in real terms is 3-4 times the size of Chinas and in terms of Dollars/Yuans the US is still out pacing China and will for a long time to come. One trend to take notice of was in yesterdays news. China has increased the number of undergrad students they are sending to the US. India is still the largest supplier of non US students at over 100K, but China with the increase is now over 85K. Next year China is expected to over take India in number of students attending US Universities. Two new trends more females (appox. 40%) and more student to small private liberal arts schools the large state/private universities. Also the majors are tending more towards liberal arts and economics/business vs, engineering, computer science, medicine, and the applied sciences. Pure science is still and are that China see not much value in. It must be remembered that in 2008 the Government of China started an ROTC type program where the government would pay for college and in return, the student upon completion of their education and apprenticeship in their field, China considers real world experience a part of the educational process, would return to China and become officers in the PLA. This is a trend that bares watching. ALLONS, Byron Skinner
	Watching YU November 19th, 2009 at 8:32 am I proposed this same strategy over 20 years ago. Integrating EW and IW.
	Jim Roberts November 19th, 2009 at 12:43 pm I am not concerned by hackers working for the PLA or for anyone for that matter nor should anyone else who wants to protect important data. The solution is at hand but only, for the time being, if your computer operating system uses MS Vista or XP. See http://www.inzerosystems.com for more details. If you have the cajones to test the anti-hacker device at no cost for 30 days, use the following code: O U O X A U 9 Install and relax. No more pesky viruses, trojans or hackers from where ever will bother you again or, worse, steal your data Jim Roberts
	William Brown November 19th, 2009 at 12:59 pm We should concentrate on the contents of “The Wisdom of Sun Tzu.” It will give us the best advice on the philosophy and tactics we should, ourselves use. They are announcing their plans and we should take heed.
	Greed KillZ November 19th, 2009 at 1:04 pm I work in this area. Suffice it to say we are susceptible. Not only are we susceptible, the eggheads and wireheads will give you a false sense of security that ALL weaknesses are covered when they are covering only one. After various stints I have come to the conclusion that there is a divide. There are certain things that are invulnerable world, in a manner of speaking. Then there are things that need to be put in that world that for reasons completely unknown to me but I suspect have to do with greed, and shortsightedness are not. The PLA, and lets face it they are not the worst threat in that realm, are not hobbled by rights suffrage etc. Under the thin membrane of "democracy" they are the same folks that were shooting people in the streets yesterday. It is our own fault, again greed, for not sticking it out until Both Soviets AND China were defeated. WE have no one to blame but ourselves and these guys, the same commies as yesterday with better PR firms will bury us. It's our greatest motivation and greatest weakness. I am sure the reason they don't just flood the market with our debt instruments and kill us outright is because they enjoy having us running on the mill like rats.
	Steve November 19th, 2009 at 1:06 pm China is like having a lion or tiger for a pet. As long as we keep feeding it, we will not get eaten. Once we stop, then we become its food. If we stay on this same course with Communist China, we will all be speaking Mandarin Chinese within the next 60 years. Mao always did say that he would win America from within.
	Kipp Pez November 19th, 2009 at 1:12 pm BTW when it comes to infowar these guys are amateurs compared to some of our strongest "allies" and what they do to us repeatedly including selling the information to these guys. The only comparison apt is that of members of the Coalition force in Afghanistan secretly targeting other coalition forces or even "fragging" their own command. If what was happening in infowar on a daily basis happened in real life we would probably be on WW 6 or 7 by now.
	SkysoldierRecon November 19th, 2009 at 2:16 pm i guess the truth hurt somebody…lol!!!
	SkysoldierRecon November 19th, 2009 at 2:19 pm thats all well and good, but since we got a cadre of GORDON GEKKO'S running things, we are gonna pay. greed is NOT good, and it will be our ruination. Sun Tzu was a master, and the chi-comms are following his directions. 2012 can't come soon enough…
	SkysoldierRecon November 19th, 2009 at 2:21 pm damn ur so right…greed is NOT good..
	Semper Fi November 19th, 2009 at 6:25 pm All they have to do is sell off all their dollars for 10 cents on the dollar and we will fall, as a capitalist society is only as good as its monetary foundation, look at what almost happened last fall. They own us and we continue to pump billions eery day into the money pit. I lived in the orient for half my life and seen many issues decided by one fact, and that is patience. The Chinese will wait us out and then strike, when they are ready and whenwe are weakest, Sun Tzu is their guide in fighting wars. Wake-up the as the sleeping Dragon is coming. An excellant book to read is "Red Dragon Rising".
	Get A Job November 19th, 2009 at 9:20 pm Apparently Skinner, English is not your first language…LOL.
	JCitizen November 20th, 2009 at 4:20 pm Very interesting concept! Ever heard of Trustifier?
	Jim Roberts November 20th, 2009 at 11:05 pm Yes, I am aware of Trustifier. It is one among many fine firms with a proprietary software solution to manage a network of computers. ike its peers, a dedicated hacker with above average skills can get through whatever barriers Trustifier establishes for a network like a hot knife slicing through soft butter. Our claim to fame is no hacker, virus, malware, disgruntled employee can get through our Gateway. None. nada. zip not even through the mouse, VOIP, keyboard or by stealing data via a portable thumb drive. The data is removable but it's turned into gibberish if the network administrator hasn't authorized the download. Big claims = much skepticism. Check it out free for 30 days. (FYI: DARPA bought 1000 of our Gateways. You can't go wrong if you have valuable data you must protect. If it's garden variety data on your home computer, forget it. The price now is too high for protecting that caliber of data. Maybe in 60 months, it will make sense. By then, the price should drop so it's affordable for regular folks like thee and me ). Jim Roberts
	Gordon of Khartoum November 21st, 2009 at 11:50 pm So right, you are, Semper Fi! And the Chinses have already done things along the same line. They devalued their Yuan on the international exchange, which also devalued their prices: competition no one could beat. But in a state run economy, it didn't hurt China-they fixed internal prices and the average Chinese found themselves with lots of work and a fair enough wage. And by doing so, they put foriegn competition out of business and now have a global monopoly on many comodities. Try to buy non-Chinese made ascorbic acid! You won't find it! Out of business: and it was our own CEOs who "outsourced" it. If China calls in their dollar debt, we'll not only be broke, but we also won't be able to produce anything ourselves. They have already won WW3! Why protective tarriffs weren't put in place to stop this can only be explained by corporate greed and our politicians, who didn't see anytign wrong with turning the US into a nation of consumers. That was the "services" economy that was making the flap a decade ago. We'll just sell our management skills and "judgement", which was the biggest sell out, of all.
	Gordon of Khartoum November 22nd, 2009 at 12:08 am As Patton put it, "Fixed fortifications are monuments to man's stupidity.", and I think that our whole computer net is just that. Rather than clamp down production attenuating cyber security mesures, would it be so hard for you IT guys to just responde to these cyber attacks with one of your won? I mean, can't you guys hack as good the other hackers? Everytime I get a phishing e-mail, I wish I knew enough about it to reply with an embeded virus of my own and scramble the phisher's computer. That's "cyber warfare". All we seem to be doing is fending off attacks without taking out the attacker. Someday, the attacker is going to get good enough to beat anything, if we just keep on giving him the OJT and don't take him out..
	Jim Roberts November 22nd, 2009 at 3:53 am The solution is at hand, and it's a fixed fortification, in a manner of speaking. See the tenth reply from the top about the InZero Gateway. DARPA just bought 1000 to protect their data. Clearly, Patton's declaration isn't applicable in cyber war where the fluid solutions (anti-virus software) are always playing catch-up to the ever evolving cyber attacks. The fixed solution–the hardware device made by InZero called Gateway–is the only device in the world that stops all hackers. All. Todo. None get through. Zip. Zero.
	Recon November 21st, 2009 at 11:06 pm The Chinese are adept at building all things with less bells and whistles, and in large numbers now! The same can be said for training large numbers of cyber warfare specialists manning those consoles as required for complete vertical warfare to interrupt logistic flows that they are part of! We have only done this in times of war and currently adverse to for purely political reasons. Wait till they infiltrate our medical , financial and legal systems and we all pop on a piss test, declared bankruptcy, and have warrants out for your arrest! Ever try to deploy with a legal or medical hold!
	Gordon of Khartoum November 22nd, 2009 at 2:23 pm Don't give 'em any ideas, Recon: that one is WAY too good! The only thing you forgot is shutting down every DoD facility for EPA violations: but, we might manage that all by ourselves.
	Gordon of Khartoum November 22nd, 2009 at 2:24 pm I think that we're so focussed on gadgets that we've lost the "art of war". Sun Tzu, Mao's Red Book, even the little Swiss "Total Resistance" pamphlet all say the same thing: guerilla warfare is attritive. That's how the Mujihideen beat Russia in Afgahnistan and that's what's happening to us, yet, our answer is to spend ever more money on expensive technology in a major recession: is history repeating itself? The Eastern art of war is more focussed on outsmarting enemy leadership than outfighting his army The Isreali model is the best, but we're handicapped by the cultural, racial and linguist gap, and we have only a corrupt Afgahn gov't of divided loyalties to help us over that. However, Achille Bazaine had the same problems during his conquest of Algeria and Mexico" "L'system Arab", as he called it: you can't tust any of them,but you can outsmart enough of them to win.
	Gordon of Khartoum November 22nd, 2009 at 3:23 pm It looks like anovel approach-a "hosting" module, in line, between the PC and the net. I'm sure exactly how it works, though. If a virus hits the module, it attacks the module, rather than the PC? And then, your montyly service fee pays to eliminate the virus from the module??
	Jim Roberts November 22nd, 2009 at 5:21 pm Not sure if you are serious or making fun of my remarks Presuming the former, the technical technique is explained in numerous patents. In layman's terms, it's known as a sandbox, a device that traps all hackers, viruses etc. More basically, it's a tiny computer through which it purges extraneous add-ons (viruses) and inquiries (hackers) before sending to the computer it is protecting not electronic signals, but light images. The product is not for sale; only lease. Its lease fee reflects its business application; not its home use. Moreover, most business have few computers that contain data that must be protected. I thought you would be delighted to learn there was at last a solution to keep PLA hackers out of valuable US databases.