Unknown hackers have broken into the security networks of Lockheed Martin Corp and several other US military contractors, a source with direct knowledge of the attacks said.
They breached security systems designed to keep out intruders by creating duplicates to “SecurID” electronic keys from EMC Corp’s RSA security division, said the person who was not authorized to publicly discuss the matter.
It was not immediately clear what kind of data, if any, was stolen by the hackers. However, the networks of Lockheed and other military contractors contain sensitive data on future weapons systems, as well as military technology currently used in Iraq and Afghanistan.
Weapons makers are the latest companies to be breached through sophisticated attacks that have pierced the defenses of huge corporations including Sony Corp, Google Inc and EMC Corp. Security experts say that it is virtually impossible for any company or government agency to build a security network that hackers will be unable to penetrate.
The Pentagon, which has about 85,000 military personnel and civilians working on cybersecurity issues worldwide, said it also uses a limited number of RSA electronic security keys, but declined to say how many for security reasons.
The hackers learned how to copy the security keys with data stolen from RSA during a sophisticated attack that EMC disclosed in March, according to the source.
EMC declined to comment on the matter, as did executives at major defense contractors.
Rick Moy, president of NSS Labs, an information security company, said the original attack on RSA was likely targeted at its customers, including military, financial, US governmental and other organizations with critical intellectual property.
He said the initial RSA attack was followed by malware and phishing campaigns seeking specific data that would link tokens to endusers, which meant the current attacks may have been carried out by the same hackers.
“Given the military targets and that millions of compromised keys are in circulation, this is not over,” he said.
Defense contractors’ networks contain sensitive data on sophisticated weapons systems, but all classified information is kept on separate, closed networks managed by the US government, said a former senior defense official, who was not authorized to speak on the record.
SecurIDs are widely used electronic keys to computer systems that work using a two-pronged approach to confirming the identity of the person trying to access a computer system. They are designed to thwart hackers who might use key-logging viruses to capture passwords by constantly generating new passwords to enter the system.
The SecurID generates new strings of digits on a minute-by-minute basis that the user must enter along with a secret personal identification number before they can access the network. If the user fails to enter the string before it expires, then access is denied.
A Chinese freighter that allegedly snapped an undersea cable linking Taiwan proper to Penghu County is suspected of being owned by a Chinese state-run company and had docked at the ports of Kaohsiung and Keelung for three months using different names. On Tuesday last week, the Togo-flagged freighter Hong Tai 58 (宏泰58號) and its Chinese crew were detained after the Taipei-Penghu No. 3 submarine cable was severed. When the Coast Guard Administration (CGA) first attempted to detain the ship on grounds of possible sabotage, its crew said the ship’s name was Hong Tai 168, although the Automatic Identification System (AIS)
An Akizuki-class destroyer last month made the first-ever solo transit of a Japan Maritime Self-Defense Force ship through the Taiwan Strait, Japanese government officials with knowledge of the matter said yesterday. The JS Akizuki carried out a north-to-south transit through the Taiwan Strait on Feb. 5 as it sailed to the South China Sea to participate in a joint exercise with US, Australian and Philippine forces that day. The Japanese destroyer JS Sazanami in September last year made the Japan Maritime Self-Defense Force’s first-ever transit through the Taiwan Strait, but it was joined by vessels from New Zealand and Australia,
SECURITY: The purpose for giving Hong Kong and Macau residents more lenient paths to permanent residency no longer applies due to China’s policies, a source said The government is considering removing an optional path to citizenship for residents from Hong Kong and Macau, and lengthening the terms for permanent residence eligibility, a source said yesterday. In a bid to prevent the Chinese Communist Party (CCP) from infiltrating Taiwan through immigration from Hong Kong and Macau, the government could amend immigration laws for residents of the territories who currently receive preferential treatment, an official familiar with the matter speaking on condition of anonymity said. The move was part of “national security-related legislative reform,” they added. Under the amendments, arrivals from the Chinese territories would have to reside in Taiwan for
CRITICAL MOVE: TSMC’s plan to invest another US$100 billion in US chipmaking would boost Taiwan’s competitive edge in the global market, the premier said The government would ensure that the most advanced chipmaking technology stays in Taiwan while assisting Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) in investing overseas, the Presidential Office said yesterday. The statement follows a joint announcement by the world’s largest contract chipmaker and US President Donald Trump on Monday that TSMC would invest an additional US$100 billion over the next four years to expand its semiconductor manufacturing operations in the US, which would include construction of three new chip fabrication plants, two advanced packaging facilities, and a research and development center. The government knew about the deal in advance and would assist, Presidential
RSS