uair01
Antediluvian
- Joined
- Apr 12, 2005
- Messages
- 5,459
- Location
- The Netherlands
Cool story:
https://www.bloomberg.com/news/feat...ny-chip-to-infiltrate-america-s-top-companies
Nested on the servers’ motherboards, the testers found a tiny microchip, not much bigger than a grain of rice, that wasn’t part of the boards’ original design. Amazon reported the discovery to U.S. authorities, sending a shudder through the intelligence community. Elemental’s servers could be found in Department of Defense data centers, the CIA’s drone operations, and the onboard networks of Navy warships. And Elemental was just one of hundreds of Supermicro customers.
During the ensuing top-secret probe, which remains open more than three years later, investigators determined that the chips allowed the attackers to create a stealth doorway into any network that included the altered machines. Multiple people familiar with the matter say investigators found that the chips had been inserted at factories run by manufacturing subcontractors in China.
But many security specialists have doubts especially because the victims have denied being hacked:
https://www.computerworld.com.au/ar...eny-bloomberg-report-chinese-hardware-attack/
Apple said it had refuted "virtually every aspect" of the story in on-record responses to Bloomberg. "Apple has never found malicious chips, 'hardware manipulations' or vulnerabilities purposely planted in any server," the company said. Amazon Web Services (AWS) said it found no issues.
Both sides of the story:
https://supchina.com/2018/10/04/did...mazon-and-nearly-30-major-american-companies/
https://www.bloomberg.com/news/feat...ny-chip-to-infiltrate-america-s-top-companies
Nested on the servers’ motherboards, the testers found a tiny microchip, not much bigger than a grain of rice, that wasn’t part of the boards’ original design. Amazon reported the discovery to U.S. authorities, sending a shudder through the intelligence community. Elemental’s servers could be found in Department of Defense data centers, the CIA’s drone operations, and the onboard networks of Navy warships. And Elemental was just one of hundreds of Supermicro customers.
During the ensuing top-secret probe, which remains open more than three years later, investigators determined that the chips allowed the attackers to create a stealth doorway into any network that included the altered machines. Multiple people familiar with the matter say investigators found that the chips had been inserted at factories run by manufacturing subcontractors in China.
But many security specialists have doubts especially because the victims have denied being hacked:
https://www.computerworld.com.au/ar...eny-bloomberg-report-chinese-hardware-attack/
Apple said it had refuted "virtually every aspect" of the story in on-record responses to Bloomberg. "Apple has never found malicious chips, 'hardware manipulations' or vulnerabilities purposely planted in any server," the company said. Amazon Web Services (AWS) said it found no issues.
Both sides of the story:
https://supchina.com/2018/10/04/did...mazon-and-nearly-30-major-american-companies/