The Dark Visitor

There are the normal reports, providing vague references to Chinese hackers gaining access to sensitive information at some unnamed installation or organization and then there is this report from Korea. Besides the name of the company involved, it also gives fairly specific details about the type of sensitive information contained on the company’s computer system.

The research institute suspects the culprits are Chinese or North Korean hackers but doesn’t know specifically what information they stole. In the worst case, the blueprints of missiles and Aegis ship could have been stolen.

It’s shocking that our major defense industries are open to attacks from hackers and that our missiles are vulnerable to theft by cyber terrorists. A general review of our cyber security system is needed.

Really, a review of your cyber security system you say?  Read why someday, Chinese hackers may be able to construct their own Aegis class destroyer.   Duly noted that that the article states it could also be North Korean hackers.  How about, both?

Gives valuable stats on Chinese hackers attacks:

According to the Korea Information Security Agency, there were some 2,120 cases of hacking or hacking attempts against various Korean government agencies and entities during the month of March, 2008.

Of them, 53 percent originated from Chinese Internet addresses, while 14 percent came from the United States. Some five percent came from Japanese sources.

I think an International Space Station official said something about having a secure system too…100% hack proof.

Danwei linked to this article indicating that the hackers responsible for compromising the Korean auction site several months ago have been arrested in the PRC.  The article goes on to describe some interesting details such as:

KBS also talked to Chinese hackers who claim there is something of a black market for Korean personal information in China. They say Koreans hire Chinese hackers to break into sites to get information, which is then handed over and sold in Korea.

There is also some limited information about a tool that was used to compromise the Korean sites.