Compromise of Managed Service Providers and technology companies

Date of report

December 2018

Affiliations

China's Tianjin State Security Bureau

The threat actor compromised eight technology service providers, including Hewlett Packard Enterprise and IBM (their cloud services in particular were targeted), to steal commercial secrets from over forty-five client technology companies. The victims include Swedish telecom giant Ericsson, U.S. Navy shipbuilder Huntington Ingalls Industries, and travel reservation system Sabre.

Suspected victims

Networks and clients of Hewlett Packard Enterprise, IBM, Fujitsu, Tata Consultancy Services, NTT Data, Dimension Data, Computer Sciences Corporation, and DXC Technology

Suspected state sponsor

China

Type of incident

Espionage

Target category

Private sector

Victim government reaction

Policy response

Criminal charges

Suspected state sponsor response

Denial

Two Chinese Hackers Associated With the Ministry of State Security Charged with Global Computer Intrusion Campaigns Targeting Intellectual Property and Confidential Business Information

Cyber Operations Tracker

CFR.org

Topics

Regions

Explainers

Research & Analysis

Communities

Events