{"id":151931,"date":"2013-02-25T23:30:28","date_gmt":"2013-02-26T07:30:28","guid":{"rendered":"http:\/\/chinadigitaltimes.net\/?p=151931"},"modified":"2013-02-25T23:30:28","modified_gmt":"2013-02-26T07:30:28","slug":"hackers-embed-virus-in-mandiant-report","status":"publish","type":"post","link":"https:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/","title":{"rendered":"Hackers Embed Virus in Mandiant Report"},"content":{"rendered":"<p>ZDNet&#8217;s Eileen Yu reported on Monday that <a href=\"http:\/\/www.zdnet.com\/cn\/hackers-turn-china-security-report-into-trojans-7000011748\/\"><strong>hackers have distributed virus-infected versions of a report released last week by security firm Mandiant<\/strong><\/a> which <a href=\"http:\/\/chinadigitaltimes.net\/2013\/02\/report-claims-hacker-group-linked-to-peoples-liberation-army\/\">linked the Chinese army to cyberattacks<\/a> on U.S. corporations:<\/p>\n<blockquote><p>When downloaded, the tainted versions would allow hackers to remotely control infected computers after users attempted to read the report which was released last week by U.S. IT security vendor, Mandiant.<\/p>\n<p>A <a href=\"http:\/\/www.symantec.com\/connect\/blogs\/malicious-mandiant-report-circulation\">blog post by Symantec<\/a> said hackers used the report as &#8220;bait&#8221;, embedding a malware called, Trojan.Pidief, into fake reports which displayed a blank PDF document when opened. Unbeknownst to users, the tainted report would trigger the exploit code for Adobe Acrobat and Reader Remote Code Execution Vulnerability.<\/p>\n<p>Symantec highlighted an e-mail in Japanese purported to be from someone in the media industry which contained a PDF attachment of the fake Mandiant report.<\/p><\/blockquote>\n<p>Cybersecurity has become a wedge in Sino-U.S. relations in recent years, and lately <a href=\"http:\/\/chinadigitaltimes.net\/2013\/02\/a-chinese-hacker-unmasked\/\">the two sides have traded accusations of hacking<\/a>. The New York Times&#8217; David Sanger reported earlier this week that <strong><a href=\"http:\/\/www.nytimes.com\/2013\/02\/25\/world\/asia\/us-confronts-cyber-cold-war-with-china.html?smid=tw-share&amp;_r=2&amp;\">the Obama administration is more willing than ever to call out the Chinese directly over the hacking issue<\/a><\/strong>:<\/p>\n<blockquote><p>Defining \u201cenemies\u201d in this case is not always an easy task. China is not an outright foe of the United States, the way the Soviet Union once was; rather, China is both an economic competitor and a crucial supplier and customer. The two countries traded $425 billion in goods last year, and China remains, despite many diplomatic tensions, a critical financier of American debt. As Hillary Rodham Clinton put it to Australia\u2019s prime minister in 2009 on her way to visit China for the first time as secretary of state, \u201cHow do you deal toughly with your banker?\u201d<\/p>\n<p>In the case of the evidence that the People\u2019s Liberation Army is probably the force behind \u201cComment Crew,\u201d the biggest of roughly 20 hacking groups that American intelligence agencies follow, the answer is that the United States is being highly circumspect. Administration officials were perfectly happy to have Mandiant, a private security firm, issue the report tracing the cyberattacks to the door of China\u2019s cybercommand; American officials said privately that they had no problems with Mandiant\u2019s conclusions, but they did not want to say so on the record.<\/p>\n<p>&#8230;<\/p>\n<p>In the next few months, American officials say, there will be many private warnings delivered by Washington to Chinese leaders, including Xi Jinping, who will soon assume China\u2019s presidency. Both Tom Donilon, the national security adviser, and Mrs. Clinton\u2019s successor, John Kerry, have trips to China in the offing. Those private conversations are expected to make a case that the sheer size and sophistication of the attacks over the past few years threaten to erode support for China among the country\u2019s biggest allies in Washington, the American business community.<\/p>\n<p>\u201cAmerica\u2019s biggest global firms have been ballast in the relationship\u201d with China, said Kurt M. Campbell, who recently resigned as assistant secretary of state for East Asia to start a consulting firm, the Asia Group, to manage the prickly commercial relationships. \u201cAnd now they are the ones telling the Chinese that these pernicious attacks are undermining what has been built up over decades.\u201d<\/p><\/blockquote>\n<p>Meanwhile, Ezra Klein of the Washington Post reports that <a href=\"http:\/\/www.washingtonpost.com\/blogs\/wonkblog\/wp\/2013\/02\/25\/what-chinas-hackers-get-wrong-about-washington\/\"><strong>Chinese hackers may be wrong to focus on the U.S. capital as much as they do<\/strong><\/a>:<\/p>\n<blockquote><p>The Chinese look at Washington, and they think there must be some document somewhere, some flowchart saved on a computer in the basement of some think tank, that lays it all out. Because in China, there would be. In China, someone would be in charge. There would be a plan somewhere. It would probably last for many years. It would be at least partially followed. But that\u2019s not how it works in Washington.<\/p>\n<p>What the Chinese hackers are looking for is the great myth of Washington, what I call the myth of scheming. You see it all over. If you\u2019ve been watching the series \u201cHouse of Cards\u201d on Netflix, it\u2019s all about the myth of scheming. Things happen because the Rep. Frank Underwood has planned for them to happen. And when they don\u2019t happen, it\u2019s because someone has counterplanned against him.<\/p>\n<p>&#8230;<\/p>\n<p>I almost feel bad for the Chinese hackers. Imagine the junior analysts tasked with picking through the terabytes of e-mails from every low-rent think tank in Washington, trying to figure out what matters and what doesn\u2019t, trying to make everything fit a pattern. Imagine all the spurious connections they\u2019re drawing, all the fundraising bluster they\u2019re taking as fact, all the black humor they\u2019re reading as straight description, all the mundane organizational chatter they\u2019re reading.<\/p>\n<p>They\u2019re missing our real strength, the real reason Washington fails day-to-day but has worked over years: It\u2019s because we don\u2019t stick too rigidly to plans or rely on some grand design. That way, when it all falls apart, as it always does and always will, we\u2019re okay.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>ZDNet&#8217;s Eileen Yu reported on Monday that hackers have distributed virus-infected versions of a report released last week by security firm Mandiant which linked the Chinese army to cyberattacks on U.S. corporations: When downloaded, the tainted versions would allow hackers to remotely control infected computers after users attempted to read the report which was released [&hellip;]<\/p>\n","protected":false},"author":983,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":"","_links_to":"","_links_to_target":""},"categories":[116,7,14744,14745,14746,100,6],"tags":[4839,15037,14683,596,597,15977,6952,15978],"class_list":["post-151931","post","type-post","status-publish","format-standard","hentry","category-world","category-information-revolution","category-level-2-article","category-level-3-article","category-level-4-article","category-politics","category-sci-tech","tag-barack-obama","tag-cyberespionage","tag-cybersecurity","tag-hackers","tag-hacking","tag-mandiant","tag-peoples-liberation-army","tag-washington","et-doesnt-have-format-content","et_post_format-et-post-format-standard"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v23.9 (Yoast SEO v23.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Hackers Embed Virus in Mandiant Report<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hackers Embed Virus in Mandiant Report\" \/>\n<meta property=\"og:description\" content=\"ZDNet&#8217;s Eileen Yu reported on Monday that hackers have distributed virus-infected versions of a report released last week by security firm Mandiant which linked the Chinese army to cyberattacks on U.S. corporations: When downloaded, the tainted versions would allow hackers to remotely control infected computers after users attempted to read the report which was released [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\" \/>\n<meta property=\"og:site_name\" content=\"China Digital Times (CDT)\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/ChinaDigitalTimes\" \/>\n<meta property=\"article:published_time\" content=\"2013-02-26T07:30:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/chinadigitaltimes.net\/wp-content\/uploads\/2021\/08\/CDT-logo.png\" \/>\n\t<meta property=\"og:image:width\" content=\"186\" \/>\n\t<meta property=\"og:image:height\" content=\"177\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Scott Greene\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@cdt\" \/>\n<meta name=\"twitter:site\" content=\"@cdt\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Scott Greene\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/#article\",\"isPartOf\":{\"@id\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\"},\"author\":{\"name\":\"Scott Greene\",\"@id\":\"https:\/\/chinadigitaltimes.net\/#\/schema\/person\/3393334e12ee6be1f84abbe56c37b108\"},\"headline\":\"Hackers Embed Virus in Mandiant Report\",\"datePublished\":\"2013-02-26T07:30:28+00:00\",\"dateModified\":\"2013-02-26T07:30:28+00:00\",\"mainEntityOfPage\":{\"@id\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\"},\"wordCount\":841,\"publisher\":{\"@id\":\"https:\/\/chinadigitaltimes.net\/#organization\"},\"keywords\":[\"Barack Obama\",\"cyberespionage\",\"cybersecurity\",\"hackers\",\"hacking\",\"Mandiant\",\"People's Liberation Army\",\"Washington\"],\"articleSection\":[\"China &amp; the World\",\"Information Revolution\",\"Level 2 Article\",\"Level 3 Article\",\"Level 4 Article\",\"Politics\",\"Sci-Tech\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\",\"url\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\",\"name\":\"Hackers Embed Virus in Mandiant Report\",\"isPartOf\":{\"@id\":\"https:\/\/chinadigitaltimes.net\/#website\"},\"datePublished\":\"2013-02-26T07:30:28+00:00\",\"dateModified\":\"2013-02-26T07:30:28+00:00\",\"breadcrumb\":{\"@id\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/chinadigitaltimes.net\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hackers Embed Virus in Mandiant Report\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/chinadigitaltimes.net\/#website\",\"url\":\"https:\/\/chinadigitaltimes.net\/\",\"name\":\"China Digital Times (CDT)\",\"description\":\"Covering China from Cyberspace\",\"publisher\":{\"@id\":\"https:\/\/chinadigitaltimes.net\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/chinadigitaltimes.net\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/chinadigitaltimes.net\/#organization\",\"name\":\"China Digital Times\",\"url\":\"https:\/\/chinadigitaltimes.net\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/chinadigitaltimes.net\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/chinadigitaltimes.net\/wp-content\/uploads\/2021\/08\/CDT-logo.jpg\",\"contentUrl\":\"https:\/\/chinadigitaltimes.net\/wp-content\/uploads\/2021\/08\/CDT-logo.jpg\",\"width\":186,\"height\":177,\"caption\":\"China Digital Times\"},\"image\":{\"@id\":\"https:\/\/chinadigitaltimes.net\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/ChinaDigitalTimes\",\"https:\/\/x.com\/cdt\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/chinadigitaltimes.net\/#\/schema\/person\/3393334e12ee6be1f84abbe56c37b108\",\"name\":\"Scott Greene\",\"description\":\"Scott Greene grew up in Singapore and graduated from Middlebury College with a degree in East Asian Studies. His chief interests are Asian politics, business, media, information control, and international affairs.\",\"url\":\"https:\/\/chinadigitaltimes.net\/author\/scott-greene\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Hackers Embed Virus in Mandiant Report","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/","og_locale":"en_US","og_type":"article","og_title":"Hackers Embed Virus in Mandiant Report","og_description":"ZDNet&#8217;s Eileen Yu reported on Monday that hackers have distributed virus-infected versions of a report released last week by security firm Mandiant which linked the Chinese army to cyberattacks on U.S. corporations: When downloaded, the tainted versions would allow hackers to remotely control infected computers after users attempted to read the report which was released [&hellip;]","og_url":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/","og_site_name":"China Digital Times (CDT)","article_publisher":"https:\/\/www.facebook.com\/ChinaDigitalTimes","article_published_time":"2013-02-26T07:30:28+00:00","og_image":[{"width":186,"height":177,"url":"https:\/\/chinadigitaltimes.net\/wp-content\/uploads\/2021\/08\/CDT-logo.png","type":"image\/png"}],"author":"Scott Greene","twitter_card":"summary_large_image","twitter_creator":"@cdt","twitter_site":"@cdt","twitter_misc":{"Written by":"Scott Greene","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/#article","isPartOf":{"@id":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/"},"author":{"name":"Scott Greene","@id":"https:\/\/chinadigitaltimes.net\/#\/schema\/person\/3393334e12ee6be1f84abbe56c37b108"},"headline":"Hackers Embed Virus in Mandiant Report","datePublished":"2013-02-26T07:30:28+00:00","dateModified":"2013-02-26T07:30:28+00:00","mainEntityOfPage":{"@id":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/"},"wordCount":841,"publisher":{"@id":"https:\/\/chinadigitaltimes.net\/#organization"},"keywords":["Barack Obama","cyberespionage","cybersecurity","hackers","hacking","Mandiant","People's Liberation Army","Washington"],"articleSection":["China &amp; the World","Information Revolution","Level 2 Article","Level 3 Article","Level 4 Article","Politics","Sci-Tech"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/","url":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/","name":"Hackers Embed Virus in Mandiant Report","isPartOf":{"@id":"https:\/\/chinadigitaltimes.net\/#website"},"datePublished":"2013-02-26T07:30:28+00:00","dateModified":"2013-02-26T07:30:28+00:00","breadcrumb":{"@id":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/chinadigitaltimes.net\/2013\/02\/hackers-embed-virus-in-mandiant-report\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/chinadigitaltimes.net\/"},{"@type":"ListItem","position":2,"name":"Hackers Embed Virus in Mandiant Report"}]},{"@type":"WebSite","@id":"https:\/\/chinadigitaltimes.net\/#website","url":"https:\/\/chinadigitaltimes.net\/","name":"China Digital Times (CDT)","description":"Covering China from Cyberspace","publisher":{"@id":"https:\/\/chinadigitaltimes.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/chinadigitaltimes.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/chinadigitaltimes.net\/#organization","name":"China Digital Times","url":"https:\/\/chinadigitaltimes.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/chinadigitaltimes.net\/#\/schema\/logo\/image\/","url":"https:\/\/chinadigitaltimes.net\/wp-content\/uploads\/2021\/08\/CDT-logo.jpg","contentUrl":"https:\/\/chinadigitaltimes.net\/wp-content\/uploads\/2021\/08\/CDT-logo.jpg","width":186,"height":177,"caption":"China Digital Times"},"image":{"@id":"https:\/\/chinadigitaltimes.net\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/ChinaDigitalTimes","https:\/\/x.com\/cdt"]},{"@type":"Person","@id":"https:\/\/chinadigitaltimes.net\/#\/schema\/person\/3393334e12ee6be1f84abbe56c37b108","name":"Scott Greene","description":"Scott Greene grew up in Singapore and graduated from Middlebury College with a degree in East Asian Studies. His chief interests are Asian politics, business, media, information control, and international affairs.","url":"https:\/\/chinadigitaltimes.net\/author\/scott-greene\/"}]}},"_links":{"self":[{"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/posts\/151931","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/users\/983"}],"replies":[{"embeddable":true,"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/comments?post=151931"}],"version-history":[{"count":0,"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/posts\/151931\/revisions"}],"wp:attachment":[{"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/media?parent=151931"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/categories?post=151931"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/chinadigitaltimes.net\/wp-json\/wp\/v2\/tags?post=151931"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}