Chinese cyber attack against White House Office

The news is circulating on internet creating great concern, once again Chinese hackers have hit an infrastructure of a foreign state, once again we are speaking of cyber espionage but this time the victim is excellent because they were able to access the White House Military Office.

The Washington Free Beacon announced the cyber attack against the White House originated from Beijing, reporting the admission of an Obama administration national security official who stated:

‘”This was a spear phishing attack against an unclassified network”

“In this instance the attack was identified, the system was isolated, and there is no indication whatsoever that any exfiltration of data took place.”

confirming that similar attacks happen daily against national networks and that this time the offensive haven’t had disastrous consequences.

According the official the attack is started earlier this month and has targeted the  White House Military Office (WHMO), apparently the hackers have moved the offense from a server located in China.

The incident is really serious due the nature of the sensible information managed by the Office, its network is the US president’s military office, a department responsible for government’s most sensitive communications, including presidential travel, government teleconferences and also strategic nuclear commands.

According a former senior U.S. intelligence official:

“This is the most sensitive office in the U.S. government,” “A compromise there would cause grave strategic damage to the United States.”

The article of The Washington Free Beacon reports:

“According to the former official, the secrets held within the WHMO include data on the so-called “nuclear football,” the nuclear command and control suitcase used by the president to be in constant communication with strategic nuclear forces commanders for launching nuclear missiles or bombers.

The office also is in charge of sensitive continuity-of-government operations in wartime or crises.”

Many cyber experts have no doubts, this is a Chinese cyber warfare operation, in particular responsible for these type of attacks is the famous cyber unit called the 4th Department of General Staff of the People’s Liberation Army.

According rumors the attacks could be linked to the U.S. interference in the  dispute over the Senkakus Islands between China and Japan.

But events like this raise a series of questions.

• How is it possible to hack “hardened” systems of a government such as U.S.?
• Which information have been really exposed?
• Why differently from previous and known attacks, the press have proposed the news emphasizing the possibility of a data breach in a so critical office?
• If a critical Office of one of the most advanced country in cyber warfare has been hacked what could be the real level of security of other government networks?

It must be considered that Chinese military conducts one of the most aggressive cyber strategy, it is recognized one of the most dangerous country for its continuous cyber espionage operations targeting foreign governments and private businesses.  In the past state-sponsored hackers have attacked several U.S. Defense contractors such as Lockheed Martin and Northrop Grumman.

According principal intelligence source U.S. are losing the cyber espionage war against China, and not only. Countries such as Russia but also North Korea and Iran represent a serious menace for the government of Washington. Gen. Keith Alexander, chief the NSA and Cyber Command, declared the China is conducting successfully a cyber espionage campaign on large scale that caused a $1 trillion of loss.

Returning to attack against the White House sincerely I don’t understand the way to manage the news from government side. Why give public information on an offensive against a so critical Office?

I have some response fruit of my imagination that could explain approach followed by White House:

• With a so sensational news the Government desire to increase the sensibleness between the population that a cyber attacks could create serious damages, that the country is involved in a new “model” of war dangerous at least such as a conventional conflict.
• It’s possible that the attack has successfully leaked sensible information and White House made outing before the news could create media problem in a so delicate moment for the country.
• Last consideration … we live in misinformation era, the news of similar attacks could attract many other group of hackers on fake targets, the information spread could deceive them and it is also possible that the U.S. defense could desire address the attacks against honeypots that manage artifact information.

Which is your opinion?

Pierluigi Paganini