The Wall Street Journal reveals a broad hacking attack (which it says is still operating) that has gathered personal and corporate data at 2,411 companies worldwide. This revelation comes a month after Google revealed, in a posting on its official blog, that recent security and privacy events may cause Google to pull out of China altogether. A few weeks ago, it was reported that Google is joining up with the U.S. National Security Agency for cybersecurity defense, in part because of an attack against Google that the company said originated in China.

Hackers in Europe and China successfully broke into computers at nearly 2,500 companies and government agencies over the last 18 months in a coordinated global attack that exposed vast amounts of personal and corporate secrets to theft, according to a computer-security company that discovered the breach.

The damage from the latest cyberattack is still being assessed, and affected companies are still being notified. But data compiled by NetWitness, the closely held firm that discovered the breaches, showed that hackers gained access to a wide array of data at 2,411 companies, from credit-card transactions to intellectual property. [...]

Starting in late 2008, hackers operating a command center in Germany got into corporate networks by enticing employees to click on contaminated Web sites, email attachments or ads purporting to clean up viruses, NetWitness found.

In more than 100 cases, the hackers gained access to corporate servers that store large quantities of business data, such as company files, databases and email.

They also broke into computers at 10 U.S. government agencies. In one case, they obtained the user name and password of a soldier’s military email account, NetWitness found. A Pentagon spokesman said the military didn’t comment on specific threats or intrusions. [...]

The spyware used in this attack allows hackers to control computers remotely, said Amit Yoran, chief executive of NetWitness. NetWitness engineer Alex Cox said he uncovered the scheme Jan. 26 while installing technology for a large corporation to hunt for cyberattacks. [...]

Evidence suggests an Eastern European criminal group is behind the operation, likely using some computers in China because it’s easier to operate there without being caught, said NetWitness’s Mr. Yoran.

This entry was posted on Thursday, February 18th, 2010 and is filed under Identification, International, Security, Technology. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Possibly related posts:

• New York Times: Hacking for Fun and Profit in China’s Underworld
• Wall Street Journal: China Ratchets Up Web Privacy Fight
• Wall Street Journal: Wide Cyber Attack Is Linked to China