Chinese spies attempted to spear-phish US diplomats?
Posted on 02 February 2011.
While some of the documents from the batch of US diplomatic cables dumped by WikiLeaks have proved to be more explosive than others, every now and then some nugget of information fished from the less controversial cables turns up and proves interesting enough to merit a mention.

Such an instance has recently been remarked on by The Washingtonian's Shane Harris, and concerns an e-mail spear-phishing attempt thought to have been orchestrated and executed by Chinese spies.

It happened back in 2009, when the US was conducting negotiations with China regarding a possible reduction of greenhouse-gas emissions. At the time, five State Department employees who were involved in the negotiations have received e-mails purportedly coming from National Journal’s columnist and editor Bruce Stokes.

Titled "China and Climate Change” and containing relevant comments, the e-mails seemed like a legitimate request for a comment from a well-known journalist who also has various connections to the diplomatic corps.

Unfortunately for the targets, the messages weren't sent by Stokes, and contained attachments with malware that would open a backdoor on the recipients' computer and allow intruders to remotely access it and retrieve files from it.

But whether the attack succeeded or not, the cable doesn't say. It also doesn't say that the Chinese are behind it, only that it happened while the negotiations were in process.

And the attack would have remained a secret for everyone at National Journal where it not for the fact that the son of one of its editors read the cable and wrote “I see that the Chinese government is using your magazine as a tool for international espionage,” in an e-mail to his father.






Spotlight

The security threat of unsanctioned file sharing

Posted on 31 October 2014.  |  Organisational leadership is failing to respond to the escalating risk of ungoverned file sharing practices among their employees, and employees routinely breach IT policies.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Oct 31st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //