China stonewalls Panetta on cyberattacks
U.S. Defense Secretary Leon Panetta, left, shakes hands with China's Vice President Xi Jinping at the Great Hall of the People in Beijing, China, Sept. 19, 2012. / AP
(CBS/AP) BEIJING — Despite several years of escalating diplomacy and warnings, the U.S. is making little headway in its efforts to tamp down aggressive Chinese cyberattacks against American companies and the government.
U.S. Defense Secretary Leon Panetta, who is wrapping up three days of meetings with military and civilian leaders, said he has brought the issue up at every session and come away with little more than agreements to talk again.
Meanwhile, cybersecurity analysts say the computer-based attacks emanating from China continue unabated, and in fact are expanding and focusing more intently on critical American oil, gas and other energy companies.
Hackers attack website covering China scandal
U.S. scrutinizes Chinese telecom companies over spy fears
China:Global cyberattack claim "irresponsible"
"No diplomatic actions have made a difference," said Richard Bejtlich, chief security officer for the Virginia-based cybersecurity firm Mandiant. "They remain aggressive — they're kicked out one day and try to get back in the next day."
He said the China-backed hackers' tactics are also evolving, and they are more often going after corporate computer systems by breaching software weaknesses, rather than simply trying to get into a network by duping an individual employee. And he said they appear to be increasingly targeting lucrative energy companies.
Efforts by officials across the U.S. government have not seemed to have any impact, Bejtlich said, adding: "The Chinese don't seem to care. So I don't have any hope that the dialogue is reaching anyone of any note."
Panetta, who is leaving China on Thursday, met with China's leader-in-waiting, Xi Jinping, Wednesday and afterward told reporters that he urged Xi and other leaders to have an ongoing dialogue with the United States about the cyber threat.
"I think it's clear that they want to engage in a dialogue on this issue," Panetta said, "and I guess that's the most important thing. That's the beginning of trying to perhaps be able to develop an approach to dealing with cyber issues that has some semblance of order here as opposed to having countries basically all flying in the dark."
Chinese officials have steadfastly denied the cyberattacks, saying they also are victims of computer hackers and breaches.
But nine months ago senior U.S. intelligence officials for the first time publicly accused China of systematically stealing American high-tech data for its own national economic gain. It was the most forceful and detailed airing of U.S. allegations against Beijing after years of private complaints, and it launched a more open push to combat the attacks.
In 2010, "60 Minutes" correspondent Steve Croft reported not only are America's adversaries intent on obtaining the means to disable an entire U.S. power grid, for instance, with a cyber attack, but they already can.Retired Admiral Mike McConnell, the former U.S. National Intelligence director, told Kroft bluntly: "The United States is not prepared for such an attack." (Click on the player above to see Kroft's full report.)
James Lewis, a cybersecurity expert with the Center for Strategic and International Studies, said the U.S. is starting to push the Chinese harder on the issue, but the administration needs to do more.
"The damage from Chinese cyber espionage is easy to overstate but that doesn't mean we should accept it," he said. "The Bush administration was unaware of the problem; this administration needs to come up with a more dynamic response."
Cyber experts and U.S. officials agree that one of the biggest threats is the possibility of a miscalculation when a cyber breach triggers a clash between the two nations and there is no underlying relationship that can be used to discuss or work out the problem.
"How do you make sure something doesn't go off course and become a flashpoint for a bigger crisis?" Lewis said.
He added that the People's Liberation Army has been more confrontational lately, and lingering questions remain about the relationship between the Chinese political leaders and the military, and whether the civilian officials can effectively rein in the PLA.
Bejtlich and others describe a hierarchy of hackers in China that includes three main groups: those who are employed directly by the government, those who are affiliated with universities or quasi-government agencies and the so-called patriotic hackers who work on their own but direct their attacks against the U.S. and Western interests.
Bejtlich said some of the state-sponsored hackers appear to moonlight, stealing data from Western companies perhaps as a way of making more money. As long as they don't present a threat to China or Chinese companies, it is tolerated.
Panetta has warned repeatedly that cyberattacks and cyberwarfare could set off the next war. And U.S. officials and security experts say government and private industry systems are constantly being probed, breached and attacked. A key threat is an attack against critical infrastructure, including the electric grid, power plants or financial networks, that could plunge the U.S. into crisis.
Officials have said that at this point the main threats from China are intelligence espionage and the theft of corporate and high-tech data, rather than an all-out act of war. But they warn that hackers in China, many of whom work for, are backed by or are tolerated by the Chinese government, are capable of highly sophisticated attacks.
Popular on CBSNews.com
- Boat hijack stokes tension between N. Korea, China
- China probes rice tainted with cancer-causing cadmium
- Lebanon reportedly stopping Syria refugees at border
- Hezbollah suffers heavy losses fighting inside Syria
- Israel and Syria exchange fire on Golan Heights
- Syria activists: 31 Hezbollah fighters killed in Qusair
- Russia shows accused U.S. spy heading home
- Some Swedish youth riot over police shooting death
Do you s69k at Battlefield 3?
Do you think you are simple no good at it?
How about other online games...any issues?
If you answered yes to any of these questions, simply do a google search for online game hacking, I found multiple sites selling hacks, others review online games which complain about the hacks online.
War starts as a game online, we are fighting a war already.
Demand accountability online...from your provider, the government, and the people that sell you that pc you are using.
Microsoft sent into China investigators looking for the software pirates that have stolen their platforms.
When there, several bought brand new LAPTOP computers. As experts in their fields they discovered the computers weren't doing what they were supposed to do on boot up.
The factory fresh computers had been preloaded with viruses. Some of these viruses connected to servers that in turn look for infrastructure, business and other laptops which can cause damage to the American infrastructure....
THIS IS NO JOKE AND IS A SERIOUS BREECH, AND AS FAR AS I'M CONCERNED WAR.
I BELIEVE THIS VERY COMPUTER I AM USING A TOP SHELF MODEL OF TOSHIBA IS ONE OF THOSE MODELS...
I AM GOING TO TOSHIBA TO DEMAND A RELOAD OF MY OPERATING SYSTEM AND WIPE MY DRIVES.
ALL OF YOU SHOULD BE CONCERNED AND DEMAND THE SAME.
If you wnat China to back off, you have to hold some trade sanctions over their heads, not just hope that suddenly they will decide to play nice.
Don't stop at one game, try 100.
What you will see is obvious hacking, which Microsoft denys is possible. I know it is hacking, I consider the operating system to be obsolete and full of holes. Furthermore, I believe microsoft just denies it because their lawyers tell them to.