Home Blog Terms & Conditions Privacy Policy

Adstoppi Blog | China spent years collecting Americans' personal information

Published by:


When Attorney General William Barr announced Monday that the U.S. had charged four Chinese military hackers in the giant Equifax hack of 2017, he also confirmed something that cybersecurity experts had long suspected: China was also behind the hack of information on some 500 million Marriott hotel guests in 2018.

Barr also mentioned the 2015 hack of the Office of Personnel Management, another major breach that included sensitive information from about 21.5 million Americans who had done work for the federal government.

In doing so, Barr publicly confirmed that China has been collecting troves of personal data on U.S. citizens for years.

Beginning around 2014, a host of American organizations that store personal identifying information were hacked, with either the government or major private cybersecurity firms attributing China's Ministry of State Security as the culprit each time. Personal identifying information, or PII, includes names, addresses, birthdays and Social Security numbers.

Cybersecurity experts point to two likely reasons for suspecting China. First, the country's ability to process large amounts of data at scale makes megabreaches a tempting target. Second, it can be used for more traditional espionage, such as identifying people who could become intelligence assets.

China is already the most advanced domestic surveillance state in the world, keeping detailed, real-time records of citizens' location through facial recognition and keenly monitoring social credit scores by mining data and sifting through it with the aid of artificial intelligence.

"For a nation-state, if you're trying to seed a large analytic engine, more data is always better," said Michael Daniel, the White House cybersecurity coordinator under President Barack Obama.

"You want to be able to use big-data analytics, and use machine learning and those kinds of new analytic capabilities that have been emerging over the last decade or so. That only becomes viable if you in fact have large amounts of data," said Daniel, who is president of the Cyber Threat Alliance, an industry trade group.

The U.S. regularly accuses China of stealing corporate trade secrets and giving them to state-affiliated companies for a leg-up in business, which goes against U.S. policy. It's harder for the U.S. to make public accusations of hacking to gather intelligence on foreign targets since the U.S. doesn't deny it does the same.

The 2015 breach of the Office of Personnel Management, which functions roughly as the human resources department of the U.S. government, was the most significant Chinese effort to steal American PII. In addition to the basic PII on the 21.5 million Americans who had worked for the government, China's Ministry of State Security also acquired a trove of background checks on employees interviewed for sensitive work.

But cybersecurity researchers, who track advanced hacker groups by their tactics, infrastructure and targets, have long tied the hackers behind OPM to other megabreaches, like the hack of 80 million customers from Anthem insurance, reported in 2015.

The Marriott hack, which began as early as 2014 and went unnoticed until 2018, was widely believed to bear China's fingerprints, but that wasn't formally confirmed by a federal official before Barr's comment on Monday.

Having a working database of Americans' identifying information is also immediately useful for conventional espionage, said Priscilla Moriuchi, principal analyst at the cybersecurity firm Recorded Future and former East Asian cyberthreats expert at the National Security Agency.

With such a database, one could build "a profile of a person that you're either attempting to recruit or have recruited, or a profile of someone who may be susceptible to recruitment," Moriuchi said, or to verify intelligence gathered through other sources.

The Equifax charges notably, against officers in the People's Liberation Army, rather than the Ministry of State focus mainly on computer intrusion to commit economic espionage, similar to how the Justice Department has charged China previously with trying to steal high-tech trade secrets; it's unclear how China would leverage a credit reporting agency information.

Source: https://www.nbcnews.com/tech/security/china-spent-years-collecting-americans-personal-information-u-s-just-n1134411

Recent Post

In a rare investor update on Monday, Apple said the global effects of the coronavirus outbreak are having have a material impact on the company bottom line. The company does not expect to meet its own revenue guidance for the second quarter due to the impact of the virus, and warns that "worldwide iPhone supply will be temporarily constrained." Store closures and reduced retail traffic in China are also expected to have a significant impact. All of Apple's iPhone manufacturing partner sites have been reopened but are "ramping up more slowly than we had anticipated," which means that fewer iPhones than expected will be manufactured. As a result, "[t]hese iPhone supply shortages will temporarily affect revenues worldwide," says Apple. Regarding Apple's retail presence in China, the company...

Last month, Blizzard announced that all of its scheduled Overwatch League games in China during February and March were canceled in the wake of the coronavirus. Now the publisher has revealed its plan to reschedule the games and it involves moving them out of the country altogether. According to Blizzard, all of the canceled matches which were set to take place in Shanghai, Guangzhou, and Hangzhou will now take place in a studio in Seoul. The matches will be played during the sixth and seventh weeks of OWL, which take place on the weekends of March 14th and March 21st. Previously scheduled games in Miami and Atlanta that were set to take place those weekends will be unaffected, according to Blizzard. Specific match times are expected to be announced "soon." (Seoul will also be home to OWL...

Facebook has canceled its upcoming global marketing conference out of caution for the coronavirus outbreak, according to Reuters. The conference was set to take place in March at San Francisco's Moscone Center, and 4,000 people were expected to attend. "Our priority is the health and safety of our teams, so out of an abundance of caution, we cancelled our Global Marketing Summit due to evolving public health risks related to coronavirus," said a Facebook spokesperson in a statement to The Verge. Facebook canceling its global marketing conference comes on the heels of this week's cancellation of Mobile World Congress, also due to coronavirus concerns. In the days leading up to MWC's cancelation, several vendors, including LG, Ericsson, Nvidia, Intel, Vivo, Sony, Amazon, NTT Docomo, Cisco,...

The world's biggest phone show, Mobile World Congress, is no longer taking place this year. After coronavirus threatened to throw MWC into chaos, the GSM Association (GSMA), which organizes the show, has now canceled it. It comes after more than a week of exhibitors and companies pulling out of MWC. In a statement, GSMA CEO John Hoffman said the coronavirus outbreak has made it "impossible" to hold the event. MWC was scheduled to take place in Barcelona between February 24th and the 27th. Coronavirus infections have exceeded 42,000 with the total number of deaths at more than 1,000. Most infections and deaths have been reported in Wuhan and the surrounding Hubei Province in China, but at least 25 countries have now reported cases. The GSMA had tried to allay fears with increased...

When Attorney General William Barr announced Monday that the U.S. had charged four Chinese military hackers in the giant Equifax hack of 2017, he also confirmed something that cybersecurity experts had long suspected: China was also behind the hack of information on some 500 million Marriott hotel guests in 2018. Barr also mentioned the 2015 hack of the Office of Personnel Management, another major breach that included sensitive information from about 21.5 million Americans who had done work for the federal government. In doing so, Barr publicly confirmed that China has been collecting troves of personal data on U.S. citizens for years. Beginning around 2014, a host of American organizations that store personal identifying information were hacked, with either the government or major...

The race for Oscar glory just kicked into high gear. "The Irishman," "Joker," "Once Upon a Time ... in Hollywood" and "1917" dominated the list of nominees for the 92nd Academy Awards announced early Monday, with each scoring best picture nods. But as always, some of the major headlines revolve around the movies and stars left out of the running. Here's a look at the key takeaways. 'Joker' isn't done conquering the culture Todd Phillips' stark, gloomy take on Gotham City, starring Joaquin Phoenix as the DC Comics supervillain, stirred up sociopolitical debate like few Hollywood blockbusters in recent memory. The major critics were divided over the movie's rough-edged violence and lurid depiction of mental illness, with some accusing Phillips of exploiting cultural anxieties around incels,...

A U.S. citizen diagnosed with novel coronavirus has died in China in what appears to be the first death of an American from the virus that has sickened tens of thousands of people in China and killed more than 700, a U.S. embassy spokesperson said. "We can confirm a 60-year-old U.S. citizen diagnosed with coronavirus died at Jinyintian Hospital in Wuhan, China on Feb. 6," a spokesperson for the U.S. Embassy in Beijing said. "We offer our sincerest condolences to the family on their loss. Out of the respect for the family's privacy, we have no further comment," the spokesperson said. The New York Times first reported the death of the American in Wuhan. China's national health commission said that as of Saturday morning local time, there had been 722 deaths from the virus in the mainland....

LOS ANGELES Federal investigators on Friday ruled out engine failure as a possible cause of the helicopter crash that killed basketball legend Kobe Bryant, his 13-year-old daughter Gianna, and seven others. The chartered Sikorsky S-76B helicopter that crashed into a hill Jan. 26 had two engines that burned in the aftermath, the National Transportation Safety Board said in an investigative update. "Viewable sections of the engines showed no evidence of an uncontained or catastrophic internal failure," the update states. After the crash, the NTSB has launched a Go Team to the site in an attempt to find the cause. The update reported that a witness to the crash said the area was "surrounded by mist," in the NTSB's paraphrasing, when the Sikorsky was spotted moving fast, descending and...

A prominent Chinese doctor, who had been punished by police for blowing the whistle on the coronavirus outbreak, has died, the Wuhan Central Hospital reported. The hospital confirmed Dr. Li Wenliang's death in a post on Weibo, the Chinese version of Twitter: "Ophthalmologist Li Wenliang of our hospital, who was unfortunately infected during the fight against the pneumonia epidemic of the new coronavirus infection, failed after all efforts, and died at 2:58 on February 7, 2020. We deeply regret and mourn this." The confirmation from the hospital came after a day of confusion over the fate of Li, who had tried to warn his colleagues about the deadly new respiratory virus in online chat forums. Two sources had confirmed Li's death Thursday, according to the Global Times, which reported that...

The Apple Watch wasn't just the best-selling smartwatch last year, but also put the Swiss watch industry to shame, according to new sales estimates compiled by Strategy Analytics. The report estimates Apple shipped nearly 31 million units in 2019, a 36 percent jump over last year. The Swiss watch industry, which includes brands like Swatch and TAG Heuer, only shipped an estimated 21.1 million units, a 13 percent decline, Strategy Analytics says. While Apple doesn't break out specific Apple Watch unit sales in its quarterly earnings, Strategy Analytics gathers data from retail partners and other vendors to arrive at its sales estimates. "Analog wristwatches remain popular among older consumers, but younger buyers are tipping toward smartwatches and computerized wristwear," writes Neil...


Login Join Now