China tried to hack U.S. firms even after cyber pact: CrowdStrike

By

Hackers associated with the Chinese government have tried to penetrate at least seven U.S. companies in the three weeks since Washington and Beijing agreed not to spy on each other for commercial reasons, according to a prominent U.S. security firm.

CrowdStrike Inc said software it placed at five U.S. technology and two pharmaceutical companies had detected and rebuffed the attacks, which began on Sept. 26.

On Sept. 25, President Barack Obama said he and Chinese President Xi Jinping agreed that neither government would knowingly support cyber theft of corporate secrets to support domestic businesses. The agreement stopped short of restricting spying to obtain government secrets, including those held by private contractors.

CrowdStrike Co-founder Dmitri Alperovitch said in an interview that he believed the hackers who attacked the seven companies were affiliated with the Chinese government based in part on the servers and software they used.

The software included a program known as Derusbi, which had previously turned up in attacks on Virginia defense contractor VAE Inc and health insurer Anthem Inc, according to Alperovitch. He said the hackers came from a variety of groups including one that CrowdStrike had previously named Deep Panda.

The "primary benefits of the intrusion seems clearly aligned to facilitate theft of intellectual property and trade secrets, rather than to conduct traditional, national-security-related intelligence collection," CrowdStrike said in a blog post to be published on Monday.

There was no immediate comment from China's Foreign Ministry.

CrowdStrike said it had notified the White House of its findings but declined to identify the targeted companies.

A senior Obama administration official said the government was aware of CrowdStrike's findings but declined to address the company's conclusions.

"As we move forward, we will monitor China's cyber activities closely and press China to abide by all of its commitments," said the official who did not want to be identified by name.

Another U.S. cyber security company, FireEye Inc, said the state-sponsored Chinese hackers that it monitored were still active but it was too soon to say whether their aims had shifted.

"It is premature to conclude that activity during this short time frame constitutes economic espionage," FireEye spokesman Vitor De Souza said.

Tags
Hackers, Barack Obama, Xi Jinping, China
Join the Discussion
More News
New Jersey Off Duty_04292025_1

Off-Duty Female Officer Broke Into New Jersey Home and Assaulted 2 Victims Before Resisting Arrest: Police

Police

Florida Man 'Stomped' on Boy's Face in Brutal Attack Over Play-Doh: Police

Collision

Black Hawk Pilot Ignored Suggestion To Change Course Right Before Collision With Passenger Jet

Gene Hackman

Gene Hackman Had Not Eaten For a Long Times Before Dying, Final Autopsy Report Reveals