A look at Mandiant, allegations on China hacking
WASHINGTON (AP) — A private technology security firm described in extraordinary detail efforts it blamed on a Chinese military unit to hack into 141 businesses, mostly inside the U.S., and steal commercial secrets. China denies the claim.
A look at the company, Mandiant, and why its report is significant:
—What is Mandiant?
Headquartered in Alexandria, Va., Mandiant was started in 2004 by Kevin Mandia, a retired Air Force officer who carved out a lucrative niche investigating computer crimes. Mandiant says it can detect and trace even quiet intrusions, such as the theft of employee passwords or trade secrets that a company otherwise might not be aware is happening.
Mandiant was most recently noted for its work in helping The New York Times trace an attack on its employees' computers to China, following a Times investigation into China's Premier Wen Jiabao. The newspaper publicly acknowledged Mandiant's role in the case.
—Are there other companies like Mandiant? Why not just call the FBI?
There are other companies that specialize in cybercrime response and forensics, including CrowdStrike, Kroll Advisory Solutions, and Stroz Friedberg in New York. Others specialize in establishing and testing a company's computer defenses and monitoring traffic to detect hackers or suspicious behavior.
Companies can be reluctant to call the FBI. Businesses don't want to hand over their most sensitive information — including computers and proprietary data — to the government and would rather maintain control of the investigation. Many companies are less concerned about tracing the origin of an attack than resuming business to make money. They also don't want their vulnerabilities discussed in a courtroom or leaked to news organizations or shareholders, which can happen if the government were involved. Companies like Mandiant have a big financial incentive — and signed confidentiality promises — to keep names of clients secret.
—What did Mandiant's report say? Why is it important?
Mandiant alleges that it has traced a massive hacking campaign on U.S. businesses to a drab, white 12-story office building outside Shanghai run by "Unit 61398" of the People's Liberation Army. The report contains some of the most extensive and detailed accusations on China's cybersnooping publicly available, including a timeline and details of malware used.
Business Photo Galleriesview all
- 15646Oklahoma tornadoes: The 'Big Dog,' the little boy and the hug that triumphs over tragedy
- 9491Finding Addyson – One family's struggle in the Moore tornado
- 8139Oklahoma tornadoes: Woman meets the military officer who shared the clothes off his back
- 7458Oklahoma tornadoes: Plaza Towers Elementary School teacher shoved students into bathroom as wall collapsed
- 7219Oklahoma tornadoes: Cost, custom keep basements scarce
- 6377Story behind the photo: Family members describe desperate search for one another after EF5 twister
- 6374Miranda Lambert, Reba McEntire, Vince Gill to join Blake Shelton at "Healing in the Heartland" Oklahoma tornado benefit