+ All Categories
Home > Technology > Titan Rain

Titan Rain

Date post: 02-Nov-2014
Category:
Upload: richard-stiennon
View: 40 times
Download: 5 times
Share this document with a friend
Description:
In 2004 a security admin at Sandia Labs uncovered wide spread foreign agent spying within the US research labs and agencies. This is his story.
Popular Tags:
23
IT-Harvest Confidential Shawn Carpenter and the inside story of Titan Rain Richard Stiennon Chief Research Analyst IT-Harvest Blog: ThreatChaos.com twitter.com/stiennon
Transcript
Page 1: Titan Rain

IT-Harvest Confidential

Shawn Carpenter and the inside story of Titan Rain

Richard StiennonChief Research AnalystIT-Harvest

Blog: ThreatChaos.com twitter.com/stiennon

Page 2: Titan Rain

IT-Harvest Confidential

Blog: www.ThreatChaos.com twitter.com/cyberwar

Page 3: Titan Rain

Agenda

China and the RMA

Shawn Carpenter

Repercussions

Past is prologue

3

Page 4: Titan Rain

China Revolution in Military Affairs

4

Page 5: Titan Rain

Sun Szu on spies

“Only a brilliant ruler or a wise general who can use the highly intelligent for espionage is sure of great success.”

5

Page 6: Titan Rain

Allen Dulles on Sun Tzu

6

“It is no wonder that Sun Tzu'sBook is a favorite of Mao Tse-Tung and is required reading For Chinese Communist tacticians”

-A.W. Dulles, The Craft of Intelligence

Page 7: Titan Rain

A Chinese Communist Tactician

“Sun Tzu is a grand strategist

without parallel in history”

-Chai Yuqui, Nanjing Army Command Academy,

Speaking at 6th annual international conference on

Sun Tzu and the Art of War, 2004, Beijing

7

Page 8: Titan Rain

Chinese Thinking

Wang Qingsong, Modern Military-Use High Technology, 1993Zhu Youwen, Feng Yi,and Xu Dechi, Information War Under High Tech Conditions1994Li Qingshan, New Military Revolution and High Tech War, 1995Wang Pufeng, InformationWarfare and the Revolution in Military Affairs, Beijing: 1995;Zhu Xiaoli and Zhao Xiaozhuo, The United States and Russia in the New Military Revolution,1996;Li Qingshan, New Military Revolution and High Tech War, 1995Dai Shenglong and Shen Fuzhen, Information Warfare and Information Security Strategy, 1996

Shen Weiguang, On New War 1997

8

Page 9: Titan Rain

Decoding The Virtual Dragon

“Network confrontation technology

—intercepting, utilizing, corrupting, and

damaging the enemy’s information and

using false information, viruses, and

other means to sabotage normal

information system functions through

computer networks.”

-General Xu Xiaoyan, the former head of the

Communications Department of the

Chinese General Staff. 2004

9

Page 10: Titan Rain

Thomas Makes a Point

“If Xu’s suggestions were accepted, then one

might expect to see more active reconnaissance

and intelligence activities on the part

of the PLA(as seems to be occurring!)”

That exclamation point is Thomas’s. It refers to Shawn Carpenter and Titan Rain

10

Page 11: Titan Rain

Shawn Carpenter Cyber Warrior

11

Page 12: Titan Rain

Introducing Shawn Carpenter

12

Page 13: Titan Rain

Introducing Shawn Carpenter

13

Page 14: Titan Rain

Introducing Shawn Carpenter

14

Page 15: Titan Rain

One Good Thing About IPv4

A source IP address from an attack on Lockheed Martin is noticed.

“I had accessed a Chinese server that

was involved in the compromises. And during that

access I discovered a file on that server entitled

1.txt. That file contained an internal port scan or

an internal scan of Fort Dix military installation.”

-Shawn Carpenter Deposition

15

Page 16: Titan Rain

Backhacking

. "I backhacked into a computer system and found evidence that perhaps hundreds of defense contractors had been compromised," Carpenter testified. He determined that breaches occurred at Fort Dix, the Redstone Arsenal, the Defense Contract Management Agency and the World Bank, and that the hacking was coming from South Korea.

-Albuquerque Journal

16

Page 17: Titan Rain

Sandia's Response

"We don't care about any of this. We only care

about Sandia computers. Stop what you're doing.

Stop whatever you are doing."

Shawn's immediate supervisor

17

Page 18: Titan Rain

Shawn works with Military Counter Intelligence

18

The summer of 2004 Shawn works with CI to uncover sources of attack

Page 19: Titan Rain

Shawn becomes a confidential informant for FBI

19

Initial meeting with FBI October, 2004Trade craft: Meeting in the stacks of the University Be careful when working with geeks!

Page 20: Titan Rain

All's Well That Ends Well. NOT

20

Page 21: Titan Rain

Chinese Cyber Espionage Continues

21

Northrup Grumman United States-China Economic and Security Review Commission report. 11-1-09

Page 22: Titan Rain

Aftermath Past is Prologue

22

Page 23: Titan Rain

Ghost Net, Google, Oil and Gas

23

•Pentagon email compromise, 2007•Ghostnet report published by SecDev March 2009•Google Hacked December 2009•Oil and gas commercial attacks 2009-10•US Secretary of States goes on record•China denies


Recommended