Al Mayadeen English

  • Ar
  • Es
  • x
Al Mayadeen English

Slogan

  • News
    • Politics
    • Economy
    • Sports
    • Arts&Culture
    • Health
    • Miscellaneous
    • Technology
    • Environment
  • Articles
    • Opinion
    • Analysis
    • Blog
    • Features
  • Videos
    • NewsFeed
    • Video Features
    • Explainers
    • TV
    • Digital Series
  • Infographs
  • In Pictures
  • • LIVE
News
  • Politics
  • Economy
  • Sports
  • Arts&Culture
  • Health
  • Miscellaneous
  • Technology
  • Environment
Articles
  • Opinion
  • Analysis
  • Blog
  • Features
Videos
  • NewsFeed
  • Video Features
  • Explainers
  • TV
  • Digital Series
Infographs
In Pictures
  • Africa
  • Asia
  • Asia-Pacific
  • Europe
  • Latin America
  • MENA
  • Palestine
  • US & Canada
BREAKING
Local Syrian sources: An Israeli airstrike targeted a tank and artillery battalion in the city of Izraa in the Daraa countryside
Al Mayadeen's correspondent in eastern Lebanon: 12 martyrs and 5 wounded in Israeli raids targeting the outskirts of Wadi Fa'ra in the northern Bekaa Valley
Local Syrian sources: More than 10 Israeli raids targeted Sweida, with information about more than five casualties from the Internal Security Forces
Local Syrian sources: Initial reports indicate that approximately 15 people were killed or wounded at the al-Radwan family's guest house in Sweida following a direct exchange of gunfire
Israeli media, citing Israeli political sources, reported that the Shas movement is expected to withdraw from the government within less than 24 hours
Qatari Foreign Ministry: Negotiations to reach a ceasefire in the Gaza Strip are still in the first stage. We are continuing our efforts around the clock
Channel 14, citing a senior Israeli political source, reported: The attacks in Syria and Tel Aviv's offensive policy are coordinated with the Americans
Lebanese Ministry of Health's Emergency Operations Center: Six injured as a result of Israeli airstrikes on the Bekaa Valley in eastern Lebanon
Israeli media: The Israeli Air Force has launched a wave of large-scale attacks on southern Syria
UNRWA: One in 10 children in Gaza suffers from malnutrition

NSA behind major cyberattack on Chinese university

  • By Al Mayadeen English
  • Source: Agencies
  • 5 Sep 2022 12:46
  • 4 Shares
5 Min Read

According to a new investigation, the NSA has administered tens of thousands of malicious attacks against targets in China recently.

  • x
  • Northwest Polytechnical University in Shaanxi (nwpu.edu.cn)
    Northwest Polytechnical University in Shaanxi (nwpu.edu.cn)

The Northwestern Polytechnical University in Shaanxi, China, announced that foreign hackers were caught sending phishing emails with Trojan horse programs (malware that misleads users) to teachers and students at the university, in an attempt to steal their data and personal information. 

The day after, a police statement released by the Beilin Public Security Bureau in Xi’an stated that the attack's intent was to lure teachers and students into clicking links of phishing emails, tricking them with themes involving scientific evaluation, thesis defense, and information on foreign travel, in order to obtain their email login credentials.

China’s National Computer Virus Emergency Response Center, and internet security company 360,  formed a joint technical team to conduct a comprehensive technical analysis of the case and investigate the attack.

After collecting multiple trojan samples from internet terminals of Northwestern Polytechnical University, with the support of European and South Asian partners, the team initially diagnosed that the cyberattack was conducted by the Tailored Access Operations (TAO) (Code S32) under the Data Reconnaissance Bureau (Code S3) of the Information Department (Code S) of the US’ NSA (National Security Agency). 

TAO, founded in 1998, is the largest and most significant part of the intelligence division of the NSA and its main responsibility is to secretly access the insider information of its competitors through the internet, invade target countries' classified information infrastructure to steal account codes, break computer security systems, monitor network traffic, invade privacy and steal sensitive data such as access to phone calls, emails, network communications, and messages. 

The cyber-warfare intelligence-gathering unit is composed of more than 1,000 active military personnel, network hackers, intelligence analysts, academics, hardware and software designers, and electronics engineers. The entire organizational structure contains one "center" and four "divisions."

The Global Times learned that the attack was code-named "shotXXXX" by the NSA. The head of TAO, Rob Joyce, is directly involved in the command and action alongside the remote operations center (responsible for operational weapons platforms and tools for controlling target systems) and an infrastructure task division (mainly responsible for developing and building network infrastructure and security monitoring platform for attacks). 

Related News

Lavrov seeks clarity on Trump's ceasefire or secondary tariffs threat

Russia downs 55 Ukrainian drones in overnight cross-border assault

The four other divisions also contributing to the execution included the advanced/access network technology division, the data network technology division, the telecommunications network technology division (technical support), and the requirements and location division (for strategy and intelligence assessment).  

According to the investigation, TAO has administered tens of thousands of malicious attacks against targets in China recently, controlling large numbers of network devices such as web servers, internet terminals, network switches, telephone switches, routers, and firewalls to steal a high value of more than 140 GB of data.

It was discovered that TAO had acquired the management authority of a large number of communication network equipment in China, but what facilitated the invasions was the cooperation of several large and well-known internet enterprises in the US before the attack began. Former CIA contractor Edward Snowden, infamously known for uncovering US intelligence secrets in 2013, disclosed data on cyber activities in China and Hong Kong when American magazine Foreign Policy simultaneously confirmed TAO’s existence within the agency that has been successfully violating Chinese computer and telecommunications systems for almost 15 years.

TAO used 41 types of digital weapons 54 jumpers and proxy servers to steal the core technology data from the university including key network equipment configuration, network management data, and core operational data which the technical team discovered in more than 1,100 attack affiliations inside the university and more than 90 operating instruction sequences. The servers were distributed in 17 countries such as Japan, South Korea, Sweden, Poland and Ukraine. 

According to the source at the university, 13 people from the US were directly involved in the attack, and more than 60 contracts and 170 electronic documents that the NSA signed with US telecom operators were found through a cover company to build an environment for cyberattacks. 

The NSA has been notoriously executing secret hacking activities against China’s governments, universities, medical institutions, scientific research institutions, infrastructure and maintenance units related to the national economy and people’s livelihood. China's National People's Congress passed a law, the Personal Information Protection, which protects online user privacy in cyberspace. As the second draft of the law was lodged last April, upon passing, it will be implemented starting November 1. 

On June 29, China's National Computer Virus Emergency Response Center and internet security company 360 also disclosed a new vulnerability attack weapon platform utilized by the NSA, which experts believe is the main equipment of TAO, that bullseyes the world with a focus on China and Russia - raising wide suspicions that the country might be preparing for a bigger cyberwar. 

Earlier this year, US President Joe Biden was presented with a variety of cyberattack possibilities to deploy against Russia, according to sources familiar with the situation, but no final decision has been taken. 

  • Russia
  • US
  • Cybersecurity
  • China
  • Ukraine
  • TAO
  • NSA

Most Read

Hezbollah SG reveals war details on Al Mayadeen for the first time

Hezbollah SG reveals war details on Al Mayadeen for the first time

  • Politics
  • 8 Jul 2025
Yemen Navy sinks ETERNITY C ship, shares footage of operation

Yemen Navy sinks ETERNITY C ship, shares footage of operation

  • Politics
  • 9 Jul 2025
This satellite image from Planet Labs PBC shows damage after an Iranian attack at the al Udeid Airbase outside of Doha, Qatar, June 25, 2025 (Planet Labs PBC via AP)

Satellite images show Iran attack damaged US comms dome in Qatari base

  • Politics
  • 11 Jul 2025
An Israeli soldier abandons an excavator during an ambush by al-Qassam Brigades. Arabic text reads "The moment the soldier fled", July, 10, 2025 (Al Qassam Military Media)

Israeli media rue al-Qassam footage, alarmed by fighters among troops

  • Politics
  • 11 Jul 2025

Coverage

All
The Ummah's Martyrs

Read Next

All
Syrian government forces deploy at the Mazraa village on the outskirts of city of Sweida, where clashes erupted between Bedouin clans and Druze factions, southern Syria, Monday, July 14, 2025 (AP)
Politics

Gulf-backed negotiations underway in Syria's Sweida to end clashes

UN: 798 Palestinians killed while trying to reach aid in Gaza
Palestine

UN: 798 Palestinians killed while trying to reach aid in Gaza

A damaged car is seen at a field that was hit in an Israeli airstrike in Nabi Sheet village, in Lebanon's eastern Bekaa Valley, Wednesday, August 21, 2024 (AP)
Politics

Hezbollah condemns Israeli Bekaa massacre, urges action from Lebanon

Palestinians walk next to the closed humanitarian aid distribution center of UNRWA, the UN agency helping Palestinian refugees in Jabaliya, Gaza Strip, on Tuesday, April 29, 2025 (AP)
Politics

Israeli regime cuts electricity, water supplies to UNRWA Gaza offices

Al Mayadeen English

Al Mayadeen is an Arab Independent Media Satellite Channel.

All Rights Reserved

  • x
  • Privacy Policy
  • About Us
  • Contact Us
  • Authors
Android
iOS