A team of Chinese cyber hackers allegedly responsible for stealing hundreds of terabytes of blueprints, pricing documents and other information from organizations within the U.S. is back in business, according to the private security firm that first unveiled the military group’s activities.
Unit 61398, which operates out of a 12-story building in Shanghai, has restarted its clandestine online attacks against private firms and government organizations, three months after its identity was first exposed by Mandiant. The security company, which helps guard organizations from these attacks, has not specified the latest targets, reports The New York Times.
Mandiant first exposed the unit in mid-February detailing the group it called “APT 1,” which had broken into the networks of 141 companies, spanning 20 major industries. The White House believed a campaign of publicizing the unit’s activities might force it to cease its hacking efforts, but the Times cites American officials and security companies who say it has resumed the attacks at roughly 70 percent of its original capacity.
Unit 61398 employs roughly 1,000 people, according to the Mandiant report, and is alleged to have stolen technology blueprints, proprietary manufacturing processes, test results and business plans. The report also says the group’s activities are likely government sponsored.
The Chinese Foreign Ministry denounced these claims as “groundless,” and the Defense Ministry denied any connection with the unit.
–Source: US News and World Report