{"id":1559,"date":"2018-06-11T11:21:07","date_gmt":"2018-06-11T15:21:07","guid":{"rendered":"https:\/\/solutionsreview.com\/security-information-event-management\/?p=1559"},"modified":"2018-06-11T11:21:07","modified_gmt":"2018-06-11T15:21:07","slug":"navy-contractor-hacked","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/","title":{"rendered":"U.S. Navy Contractor Hacked by Chinese Government: What It Means for Enterprises"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1560\" src=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg\" alt=\"U.S. Navy nation-state hackers \" width=\"800\" height=\"350\" srcset=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg 800w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod-300x131.jpg 300w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod-768x336.jpg 768w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod-600x263.jpg 600w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod-180x79.jpg 180w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod-400x175.jpg 400w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Over the weekend, revelations arose that earlier this year\u2014January and February of 2018\u2014 hackers purportedly employed by the Chinese government allegedly stole 614 gigabytes of sensitive military information from a U.S. Navy contractor. The contractor has not been officially identified. The exact nature of the breach hasn\u2019t been publicly stated either, although <\/span><i><span style=\"font-weight: 400\">The Washington Post<\/span><\/i><span style=\"font-weight: 400\">\u2014who broke the story\u2014noted the information was stored on an unsecured network. \u00a0<\/span><\/p>\n<br \/>Widget not in any sidebars<br \/>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The stolen data may have included design plans for a supersonic anti-ship missile among other naval warfare information. The stolen information was technically not classified individually but as a whole could be considered \u201cclassified.\u201d Some of the information may have been connected to the Sea Dragon project, about which little is publicly known except it will introduce \u201cdisruptive offensive capabilities\u201d to existing naval technologies. \u00a0\u00a0\u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">The Naval Undersea Warfare Center, a Rhode Island-based submarine and underwater weapons research and development firm, hired out the hacked contractor. There is little information about the investigation into the hack publically available although the U.S. Navy is investigating with the assistance of the FBI. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">According to U.S. Navy spokesman Cmdr. Bill Speaks: \u201cThere are measures in place that require companies to notify the government when a \u2018cyber incident\u2019 has occurred that has actual or potential adverse effects on their networks that contain controlled unclassified information.\u201d \u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>What The U.S. Navy Hack Means for Enterprises <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">We\u2019ve written time and time again about the increasing threats from nation-state actors\u2014hackers either under the direct employ of or allegedly connected to national governments to achieve covert objectives. These objectives can be as diverse as siphoning illicit funds for sanctioned administrations, stealing intellectual property from academic institutions, or causing general disruption. The U.S. Navy Contractor hack illustrates how cybersecurity is now a matter of national security and how devastating a nation-state attack can be. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">However, this attack may convince enterprises that they can\u2019t be the victims of a nation-state hack. They may fool themselves into thinking that they aren\u2019t targets since, logically, governments will attack other governments. They are sorely mistaken.<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">From the evidence we\u2019ve seen in our research, nation-state hackers still follow the basic behavioral principles of more garden-variety digital threat attacker: unless they\u2019re looking to steal specific information, they\u2019ll target whatever enterprise or institution is easiest to compromise. Remember, the Chinese government didn\u2019t hack the U.S. Navy directly\u2014they instead infiltrated the unsecured network of a third party that contained the information they wanted. If your enterprise has data that a government might want or even if you have funds in a digital format, you could easily become a target of a nation-state. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Your enterprise, therefore, needs to take cybersecurity as one of its highest priority. You need to evaluate whether you have unsecured networks and close those security holes. You need to fortify your threat detection capabilities so that leaks are stopped as soon as they infiltrate your IT environment. You need to be aware of the security event data no matter where in your network it occurs, and have the capabilities to analyze that data. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">One of the most important aspects of a nation-state hack is that your enterprise is going up against resources and funds that may not be typically available for your own IT security team. Having a SIEM solution deployed on your IT environment can dissuade hackers with even the most advanced systems from targeting you. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">That seems like a worthy investment to us.\u00a0 \u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400\"><br \/>Widget not in any sidebars<br \/><\/span><\/p>\n<p><strong>Other Resources:\u00a0<\/strong><\/p>\n<p><a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/cloud-adoption-siem-new-security-challenges\/\" target=\"_blank\" rel=\"noopener\">Cloud Adoption and SIEM: New Security Challenges<\/a><\/p>\n<p><a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/comparing-the-top-siem-vendors-solutions-review\/\" target=\"_blank\" rel=\"noopener\">Comparing the Top SIEM Vendors \u2014 Solutions Review<\/a><\/p>\n<p><a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/good-siem-deployment-advice-courtesy-gartner\/\" target=\"_blank\" rel=\"noopener\">Good SIEM Deployment Advice, Courtesy of Gartner<\/a><\/p>\n<p><a href=\"https:\/\/solutionsreview.com\/security-information-event-management\/7-key-siem-capabilities-look-solution\/\" target=\"_blank\" rel=\"noopener\">7 Key SIEM Capabilities to Look For in Your Solution<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Over the weekend, revelations arose that earlier this year\u2014January and February of 2018\u2014 hackers purportedly employed by the Chinese government allegedly stole 614 gigabytes of sensitive military information from a U.S. Navy contractor. The contractor has not been officially identified. The exact nature of the breach hasn\u2019t been publicly stated either, although The Washington Post\u2014who [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":1560,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[551],"tags":[715,716,95,145,112,86,22,717],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>U.S. Navy Contractor Hacked by Chinese Gov.: Are Enterprises at Risk?<\/title>\n<meta name=\"description\" content=\"Hackers purportedly employed by the Chinese government allegedly stole sensitive military information from a U.S. Navy contractor. Are enterprises at risk?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"U.S. Navy Contractor Hacked by Chinese Gov.: Are Enterprises at Risk?\" \/>\n<meta property=\"og:description\" content=\"Hackers purportedly employed by the Chinese government allegedly stole sensitive military information from a U.S. Navy contractor. Are enterprises at risk?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/\" \/>\n<meta property=\"og:site_name\" content=\"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors\" \/>\n<meta property=\"article:published_time\" content=\"2018-06-11T15:21:07+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"350\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/\",\"name\":\"U.S. Navy Contractor Hacked by Chinese Gov.: Are Enterprises at Risk?\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg\",\"datePublished\":\"2018-06-11T15:21:07+00:00\",\"dateModified\":\"2018-06-11T15:21:07+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Hackers purportedly employed by the Chinese government allegedly stole sensitive military information from a U.S. Navy contractor. Are enterprises at risk?\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg\",\"width\":800,\"height\":350,\"caption\":\"U.S. Navy nation-state hackers\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"U.S. Navy Contractor Hacked by Chinese Government: What It Means for Enterprises\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\",\"name\":\"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors\",\"description\":\"Buyer&#039;s Guide and Best Practices\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"U.S. Navy Contractor Hacked by Chinese Gov.: Are Enterprises at Risk?","description":"Hackers purportedly employed by the Chinese government allegedly stole sensitive military information from a U.S. Navy contractor. Are enterprises at risk?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/","og_locale":"en_US","og_type":"article","og_title":"U.S. Navy Contractor Hacked by Chinese Gov.: Are Enterprises at Risk?","og_description":"Hackers purportedly employed by the Chinese government allegedly stole sensitive military information from a U.S. Navy contractor. Are enterprises at risk?","og_url":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/","og_site_name":"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors","article_published_time":"2018-06-11T15:21:07+00:00","og_image":[{"width":800,"height":350,"url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/","url":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/","name":"U.S. Navy Contractor Hacked by Chinese Gov.: Are Enterprises at Risk?","isPartOf":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg","datePublished":"2018-06-11T15:21:07+00:00","dateModified":"2018-06-11T15:21:07+00:00","author":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Hackers purportedly employed by the Chinese government allegedly stole sensitive military information from a U.S. Navy contractor. Are enterprises at risk?","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#primaryimage","url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2018\/06\/Navy-mod.jpg","width":800,"height":350,"caption":"U.S. Navy nation-state hackers"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/navy-contractor-hacked\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/security-information-event-management\/"},{"@type":"ListItem","position":2,"name":"U.S. Navy Contractor Hacked by Chinese Government: What It Means for Enterprises"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website","url":"https:\/\/solutionsreview.com\/security-information-event-management\/","name":"Best Information Security SIEM Tools, Software, Solutions &amp; Vendors","description":"Buyer&#039;s Guide and Best Practices","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/1559"}],"collection":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/comments?post=1559"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/1559\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media\/1560"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media?parent=1559"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/categories?post=1559"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/tags?post=1559"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}