Tech

Report: China has had access to administration emails since 2010

An NBC News report corroborated the findings of a top-secret NSA document, which said spies linked to China have accessed the email systems of top national security and trade officials inside the Obama administration.

By Greg Otto

August 10, 2015

Sources tell NBC once this group took targeted officials’ email address books, they targeted officials’ social networks by sending malware to friends and colleagues. (iStock)

Chinese operatives have been accessing the emails of top U.S. officials since April 2010, according to a new report.

A senior U.S. intelligence official corroborated the findings of a top-secret National Security Agency document to NBC News Monday, which said spies linked to China have accessed the email systems of top national security and trade officials inside the Obama administration.

The email breach — at first codenamed “Dancing Panda” by U.S. officials, then “Legion Amethyst” — was discovered in 2010, according to an NSA briefing in 2014, and may still exist.

Sources tell NBC once this group took targeted officials’ email address books, they targeted officials’ social networks by sending malware to friends and colleagues.

The story comes as the focus on Chinese cyberattacks has reached a fever pitch in recent weeks. Top officials have pinned the hack of the Office of Personnel Management to Chinese hackers, while the Obama administration has stopped short of a formal announcement.

Last week, researchers exposed how one group linked to China hacks email systems through the use of “watering hotels,” websites crafted to look legitimate that inject malicious code into specifically targeted users.

The attacks in the NBC report targeted private Gmail accounts of some U.S. officials, as well as other providers.

You can read the full NBC report here.

Report: China has had access to administration emails since 2010

More Like This

Federal CIO calls on Congress to fund Technology Modernization Fund

DOJ ‘not aware of any’ identity theft, fraud following consultant’s data breach

How Google Cloud AI and Assured Workloads can enhance public sector security, compliance and service delivery at scale

Top Stories

Congressional panel outlines five guardrails for AI use in House

With 2023 tax season in the rearview, IRS commissioner eyes expansion of AI capabilities

CMS’s financial office is using LLM pilot to combat loss of institutional knowledge

Top public sector takeaways from Google Cloud Next 2024

Commerce requests information about AI, open data assets, data dissemination

Commerce adds five members to AI Safety Institute leadership

Kiran Ahuja to step down as OPM director

More Scoops

‘Small number’ of DHS email accounts accessed during SolarWinds breach

CIO: Secret Service has cleaned up its act

DHS: Teenager’s malware disrupted 911 call centers in 12 states

Hacked Podesta emails reveal Clinton’s encryption opinion

Report: Mobile malware has doubled since the beginning of the year

The fixes needed to fight phishing

WikiLeaks posts multitude of malware in AKP email dump

Latest Podcasts

Report: China has had access to administration emails since 2010

Darryl Peek on Elastic’s role in enhancing public sector search and data analytics with AI and Google collaboration

Danny Werfel on How Automation has Enhanced his Agency’s Operations.

ManTech leaders discuss innovation and security with Google technologies

Tech

Defense

Cyber

Acquisition