Chinese Hacker Used “China Chopper” Tools to Hack Australian Defense Contractor

Sensitive data about Australia’s F-35 stealth fighter and P-8 surveillance aircraft programmes were stolen when a defence subcontractor was hacked using a tool widely used by Chinese cyber criminals, according to Australian Broadcasting Corporation.

The 50-person aerospace engineering firm was compromised in July last year but the national cyber security agency, the Australian Signals Directorate (ASD), only became aware of the breach in November, technology ABC Australia reported.

Some 30 gigabytes of “sensitive data” subjected to restricted access under the US government’s International Traffic in Arms Regulations rules were stolen, ASD’s Mitchell Clarke told at a security conference.

Clarke, who worked on the case and did not name the subcontractor, said information about the F-35, the US’ latest generation of fighter jets, as well as the P-8, an advanced submarine hunter and surveillance craft, were lifted.

Another document was a wireframe diagram of one of the Australian navy’s new ships, where a viewer could “zoom in down to the captain’s chair”.

A P-8 Poseidon off the coast of Adelaide, Australia. Photo: Royal Australian Air Force
A P-8 Poseidon off the coast of Adelaide, Australia. Photo: Royal Australian Air Force.

The hackers used a tool called “China Chopper” which according to security experts is widely used by Chinese actors, and had gained access via an internet-facing server, he said.

In other parts of the network, the subcontractor also used internet-facing services that still had their default passwords “admin” and “guest”.

Those brought in to assess the attack nicknamed the hacker Alf after a character on the popular Australian soap Home and Away, Clarke said. The three-month period where they were unaware of the breach they dubbed “Alf’s Mystery Happy Fun Time”.

Defence Industry Minister Christopher Pyne said, “the information they have breached is commercial”.

“It is not classified and it is not dangerous in terms of the military,” he said.

Pyne added that Australia was increasingly a target for cybercriminals as it was undertaking a massive A$80 billion submarine project which he described as the world’s largest.

The nation has also committed to buy 72 F-35A aircraft for A$17 billion.

He would not comment who might be behind the breach, only stating that the government was spending billions of dollars on cybersecurity.

Western governments have long accused hackers in China of plundering industrial, corporate and military secrets.

The revelations came just days after Assistant Minister for Cyber Security Dan Tehan said there were 47,000 cyber incidents in the last 12 months, a 15 per cent jump from the previous year.

A key worry was 734 attacks that hit private sector national interest and critical infrastructure providers during the period. Last year, the government’s Cyber Security Centre revealed that foreign spies installed malicious software on the Bureau of Meteorology’s system and stole an unknown number of documents.

© 2020, GDC. © GDC and www.globaldefensecorp.com. Unauthorized use and/or duplication of this material without express and written permission from this site’s author and/or owner is strictly prohibited. Excerpts and links may be used, provided that full and clear credit is given to www.globaldefensecorp.com with appropriate and specific direction to the original content.

Be the first to comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.