Unknown hackers have broken into the security networks of Lockheed Martin Corp and several other US military contractors, a source with direct knowledge of the attacks said.
They breached security systems designed to keep out intruders by creating duplicates to “SecurID” electronic keys from EMC Corp’s RSA security division, said the person who was not authorized to publicly discuss the matter.
It was not immediately clear what kind of data, if any, was stolen by the hackers. However, the networks of Lockheed and other military contractors contain sensitive data on future weapons systems, as well as military technology currently used in Iraq and Afghanistan.
Weapons makers are the latest companies to be breached through sophisticated attacks that have pierced the defenses of huge corporations including Sony Corp, Google Inc and EMC Corp. Security experts say that it is virtually impossible for any company or government agency to build a security network that hackers will be unable to penetrate.
The Pentagon, which has about 85,000 military personnel and civilians working on cybersecurity issues worldwide, said it also uses a limited number of RSA electronic security keys, but declined to say how many for security reasons.
The hackers learned how to copy the security keys with data stolen from RSA during a sophisticated attack that EMC disclosed in March, according to the source.
EMC declined to comment on the matter, as did executives at major defense contractors.
Rick Moy, president of NSS Labs, an information security company, said the original attack on RSA was likely targeted at its customers, including military, financial, US governmental and other organizations with critical intellectual property.
He said the initial RSA attack was followed by malware and phishing campaigns seeking specific data that would link tokens to endusers, which meant the current attacks may have been carried out by the same hackers.
“Given the military targets and that millions of compromised keys are in circulation, this is not over,” he said.
Defense contractors’ networks contain sensitive data on sophisticated weapons systems, but all classified information is kept on separate, closed networks managed by the US government, said a former senior defense official, who was not authorized to speak on the record.
SecurIDs are widely used electronic keys to computer systems that work using a two-pronged approach to confirming the identity of the person trying to access a computer system. They are designed to thwart hackers who might use key-logging viruses to capture passwords by constantly generating new passwords to enter the system.
The SecurID generates new strings of digits on a minute-by-minute basis that the user must enter along with a secret personal identification number before they can access the network. If the user fails to enter the string before it expires, then access is denied.
VITAL INDUSTRY: A war in the Strait would be a catastrophe, as Taiwan ‘lies at the heart’ of the world’s semiconductor industry, the magazine’s report said The government yesterday welcomed international attention on Taiwan’s security, saying that China is to blame for threatening regional stability, after a report by The Economist called Taiwan “the most dangerous place on Earth.” The report is featured on the cover of the magazine’s latest issue, which depicts the nation as the epicenter of a US-China rivalry. The cover shows Taiwan in a radar display with dots crossing the Taiwan Strait accompanied by a Chinese flag and dots nearing the east coast with a US flag. The US maintains a “one China” policy, while maintaining relations with Taiwan, but such “strategic ambiguity is breaking
HIGH-RISK GROUP: After the latest outbreak, family members of workers exposed to infection would from tomorrow be eligible for government-funded vaccines The Central Epidemic Command Center (CECC) yesterday reported four local COVID-19 cases: three family members of an infected worker at a quarantine hotel and a family member of an infected pilot. The new cases bring the number of infections involving China Airlines Ltd (中華航空) pilots and the Novotel Taipei Taoyuan International Airport hotel, where many of the airline’s crew members quarantined, to 24. Minister of Health and Welfare Chen Shih-chung (陳時中), who heads the center, said three of them are the husband, son and daughter of case No. 1,129, a woman in her 60s, who works at the hotel. The son is in
NEXT STEP? The contract chipmaker said it would decide whether to add more plants based on operation efficiency, cost economics and demand Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) is planning to build several more chipmaking fabs in the US state of Arizona beyond the one already planned, three people familiar with the matter said. TSMC, the world’s largest contract chipmaker, announced in May last year that it would build a US$12 billion fab in Arizona. The 12-inch wafer fab in Phoenix is expected to start mass production in 2024, the Investment Commission said in December, when it approved the plan. Three sources familiar with the matter, speaking on condition of anonymity as they were not authorized to speak to the media, said that up
VIRUS CURBS: Visiting people staying at healthcare and long-term care facilities in Taipei, New Taipei City and Taoyuan is banned until May 17, the CECC announced The Central Epidemic Command Center (CECC) yesterday banned visits to patients or residents at healthcare and long-term care facilities in three cities until May 17. It also reported six imported cases of COVID-19 and two cases with unclear infection sources. As the number of locally transmitted cases rises, some of whom have visited many places in Taipei, New Taipei City and Taoyuan, enhanced disease prevention measures have to be implemented in the three cities, said Minister of Health and Welfare Chen Shih-chung (陳時中), who heads the center. “Visiting people staying at healthcare and long-term care facilities in Taipei, New Taipei City and