• Burmese
Saturday, June 21, 2025
No Result
View All Result
NEWSLETTER
The Irrawaddy
25 °c
Yangon
  • Home
  • News
    • Burma
    • Politics
    • World
    • Asia
    • Myanmar’s Crisis & the World
    • Ethnic Issues
    • War Against the Junta
    • Junta Cronies
    • Conflicts In Numbers
    • Junta Watch
    • Fact Check
    • Investigation
    • Myanmar-China Watch
    • Obituaries
  • Politics
  • Business
  • Opinion
    • Commentary
    • Guest Column
    • Analysis
    • Editorial
    • Stories That Shaped Us
    • Letters
  • Junta Watch
  • Ethnic Issues
  • War Against the Junta
  • In Person
    • Interview
    • Profile
  • Books
  • Donation
  • Home
  • News
    • Burma
    • Politics
    • World
    • Asia
    • Myanmar’s Crisis & the World
    • Ethnic Issues
    • War Against the Junta
    • Junta Cronies
    • Conflicts In Numbers
    • Junta Watch
    • Fact Check
    • Investigation
    • Myanmar-China Watch
    • Obituaries
  • Politics
  • Business
  • Opinion
    • Commentary
    • Guest Column
    • Analysis
    • Editorial
    • Stories That Shaped Us
    • Letters
  • Junta Watch
  • Ethnic Issues
  • War Against the Junta
  • In Person
    • Interview
    • Profile
  • Books
  • Donation
No Result
View All Result
The Irrawaddy
No Result
View All Result
Home News Asia

Hunt for Deep Panda Intensifies in Trenches of US-China Cyberwar

Jeremy Wagstaff by Jeremy Wagstaff
June 22, 2015
in Uncategorized
Reading Time: 3 mins read
0 0
A A
Hunt for Deep Panda Intensifies in Trenches of US-China Cyberwar

A man types on a computer keyboard in Warsaw in this February 28

2.6k
VIEWS
Share on FacebookShare on Twitter

SINGAPORE— Security researchers have many names for the hacking group that is one of the suspects for the cyberattack on the US government’s Office of Personnel Management: PinkPanther, KungFu Kittens, Group 72 and, most famously, Deep Panda.

But to Jared Myers and colleagues at cybersecurity company RSA, it is called Shell Crew, and Myers’ team is one of the few who has watched it mid-assault—and eventually repulsed it.

Myers’ account of a months-long battle with the group illustrates the challenges governments and companies face in defending against hackers that researchers believe are linked to the Chinese government—a charge Beijing denies.

RelatedPosts

Myanmar Junta Changes Election Law Ahead of Polls

Myanmar Junta Changes Election Law Ahead of Polls

June 20, 2025
222
Residents of Myanmar Ruby Hub Speak Out as TNLA Mining Takes Toll

Residents of Myanmar Ruby Hub Speak Out as TNLA Mining Takes Toll

June 20, 2025
188
Karenni Resistance Leaders Vow to Crack Down on Price Gouging as Fuel Crisis Deepens

Karenni Resistance Leaders Vow to Crack Down on Price Gouging as Fuel Crisis Deepens

June 20, 2025
144

“The Shell Crew is an extremely efficient and talented group,” Myers said in an interview.

Shell Crew, or Deep Panda, are one of several hacking groups that Western cybersecurity companies have accused of hacking into the United States’ and other countries’ networks and stealing government, defense and industrial documents.

The attack on the OPM computers, revealed this month, compromised the data of 4 million current and former federal employees, raising US suspicions that Chinese hackers were building huge databases that could be used to recruit spies.

China has denied any connection with such attacks and little is known about the identities of those involved in them.

But cybersecurity experts are starting to learn more about their methods.

Researchers have connected the OPM breach to an earlier attack on US healthcare insurer Anthem Inc, which has been blamed on Deep Panda.

RSA’s Myers says his team has no evidence that Shell Crew were behind the OPM attack, but believes Shell Crew and Deep Panda are the same group.

And they are no newcomers to cyber-espionage.

CrowdStrike, the cybersecurity company which gave Deep Panda its name due to its perceived Chinese links, traces its activities to 2011, when it launched attacks on defense, energy and chemical industries in the United States and Japan.

But few have caught them in the act.

Shell Crew in Action

In February 2014 a US firm that designs and makes technology products called in RSA, a division of technology company EMC, to fix an unrelated problem. RSA realized there was a much bigger one at hand: Hackers were inside the company’s network, stealing sensitive data.

“In fact,” Myers recalls telling the company, “you have a problem right now.”

Myers’ team could see hackers had been there for more than six months. But the attack went back further than that.

For months Shell Crew had probed the company’s defenses, using software code that makes use of known weaknesses in computer systems to try to unlock a door on its servers.

Once Shell Crew found a way in, however, they moved quickly, aware this was the point when they were most likely to be spotted.

Spearphishing

On July 10, 2013, they set up a fake user account at an engineering portal. A malware package was uploaded to a site, and then, 40 minutes later, the fake account sent emails to company employees, designed to fool one into clicking on a link which in turn would download the malware and open the door.

“It was very well timed, very well laid out,” recalls Myers.

Once an employee fell for the email, the Shell Crew were in, and within hours were wandering the company’s network. Two days later the company, aware employees had fallen for the emails—known as spearphish—reset their passwords. But it was too late: The Shell Crew had already shipped in software to create backdoors and other ways in and out of the system.

For the next 50 days the group moved freely, mapping the network and sending their findings back to base. This, Myers said, was because the hackers would be working in tandem with someone else, someone who knew what to steal.

“They take out these huge lists of what is there and hand it over to another unit, someone who knows about this, what is important,” he said.

Then in early September 2013, they returned, with specific targets. For weeks they mined the company’s computers, copying gigabytes of data. They were still at it when the RSA team discovered them nearly five months later.

Myers’ team painstakingly retraced Shell Crew’s movements, trying to catalogue where they had been in the networks and what they had stolen. They couldn’t move against them until they were sure they could kick them out for good.

It took two months before they closed the door, locking the Shell Crew out.

But within days they were trying to get back in, launching hundreds of assaults through backdoors, malware and webshells.

Myers says they are still trying to gain access today, though all attempts have been unsuccessful.

“If they’re still trying to get back in, that lets you know you’re successful in keeping them out,” he said.

Your Thoughts …
Jeremy Wagstaff

Jeremy Wagstaff

Reuters

Similar Picks:

Exodus: Tens of Thousands Flee as Myanmar Junta Troops Face Last Stand in Kokang
Burma

Exodus: Tens of Thousands Flee as Myanmar Junta Troops Face Last Stand in Kokang

by Hein Htoo Zan
November 28, 2023
98.3k

Myanmar National Democratic Alliance Army troops are opening roads and pathways through forests for people to flee Kokang’s capital as...

Read moreDetails
Burning Alive in Myanmar: Two Resistance Fighters Executed in Public
Burma

Burning Alive in Myanmar: Two Resistance Fighters Executed in Public

by The Irrawaddy
February 7, 2024
89.4k

People’s Defense Force says junta troops told every household in the village to send one member to witness the double...

Read moreDetails
Another Entire Junta Battalion Raises the White Flag in Myanmar’s Northern Shan State
War Against the Junta

Another Entire Junta Battalion Raises the White Flag in Myanmar’s Northern Shan State

by The Irrawaddy
November 29, 2023
87k

Brotherhood Alliance member says it now has complete control of Kokang’s northernmost section after the junta’s Light Infantry Battalion 125...

Read moreDetails
Depleted Myanmar Military Urges Deserters to Return to Barracks
Burma

Depleted Myanmar Military Urges Deserters to Return to Barracks

by The Irrawaddy
December 4, 2023
59k

The junta said deserters would not be punished for minor crimes, highlighting the military’s shortage of troops as resistance offensives...

Read moreDetails
As Myanmar’s Military Stumbles, a Top General’s Dissapearance Fuels Intrigue
Burma

As Myanmar’s Military Stumbles, a Top General’s Dissapearance Fuels Intrigue

by The Irrawaddy
April 19, 2024
46.9k

The junta’s No. 2 has not been seen in public since April 3, sparking rumors that he was either gravely...

Read moreDetails
Enter the Dragon, Exit the Junta: Myanmar’s Brotherhood Alliance makes Chinese New Year Vow
Burma

Enter the Dragon, Exit the Junta: Myanmar’s Brotherhood Alliance makes Chinese New Year Vow

by The Irrawaddy
February 12, 2024
44.7k

Ethnic armed grouping says it will continue Operation 1027 offensive until goal of ousting the junta is achieved. 

Read moreDetails
Load More
Next Post
Rising Unemployment Piles Up Problems for Indonesian President

Rising Unemployment Piles Up Problems for Indonesian President

Moonshine Kills at Least 94 in India City Slum

Moonshine Kills at Least 94 in India City Slum

No Result
View All Result

Recommended

Myanmar Tourism Sector Mocks Junta’s Russia Tourist Drive

Myanmar Tourism Sector Mocks Junta’s Russia Tourist Drive

1 week ago
1.8k
Untested Commander Takes Charge as Myanmar Military Faces Toughest Challenge in Decades

Untested Commander Takes Charge as Myanmar Military Faces Toughest Challenge in Decades

1 week ago
1.8k

Most Read

  • Myanmar’s Aging Leaders Continue to Suffer in Junta Jails

    Myanmar’s Aging Leaders Continue to Suffer in Junta Jails

    shares
    Share 0 Tweet 0
  • Trade and Traffic from Thai Border Region Dwindle as Checkpoints Multiply

    shares
    Share 0 Tweet 0
  • Mon Groups Vow to Boost Attacks on Myanmar junta

    shares
    Share 0 Tweet 0
  • The Lady Myanmar’s Generals Can’t Defeat

    shares
    Share 0 Tweet 0
  • Thai PM Faces Growing Calls to Quit in Cambodia Phone Row

    shares
    Share 0 Tweet 0

Newsletter

Get The Irrawaddy’s latest news, analyses and opinion pieces on Myanmar in your inbox.

Subscribe here for daily updates.

Contents

  • News
  • Politics
  • War Against the Junta
  • Myanmar’s Crisis & the World
  • Conflicts In Numbers
  • Junta Crony
  • Ethnic Issues
  • Asia
  • World
  • Business
  • Economy
  • Election 2020
  • Elections in History
  • Cartoons
  • Features
  • Opinion
  • Editorial
  • Commentary
  • Guest Column
  • Analysis
  • Letters
  • In Person
  • Interview
  • Profile
  • Dateline
  • Specials
  • Myanmar Diary
  • Women & Gender
  • Places in History
  • On This Day
  • From the Archive
  • Myanmar & COVID-19
  • Intelligence
  • Myanmar-China Watch
  • Lifestyle
  • Travel
  • Food
  • Fashion & Design
  • Videos
  • Photos
  • Photo Essay
  • Donation

About The Irrawaddy

Founded in 1993 by a group of Myanmar journalists living in exile in Thailand, The Irrawaddy is a leading source of reliable news, information, and analysis on Burma/Myanmar and the Southeast Asian region. From its inception, The Irrawaddy has been an independent news media group, unaffiliated with any political party, organization or government. We believe that media must be free and independent and we strive to preserve press freedom.

  • Copyright
  • Code of Ethics
  • Privacy Policy
  • Team
  • About Us
  • Careers
  • Contact
  • Burmese

© 2023 Irrawaddy Publishing Group. All Rights Reserved

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Home
  • News
    • Burma
    • Politics
    • World
    • Asia
    • Myanmar’s Crisis & the World
    • Ethnic Issues
    • War Against the Junta
    • Junta Cronies
    • Conflicts In Numbers
    • Junta Watch
    • Fact Check
    • Investigation
    • Myanmar-China Watch
    • Obituaries
  • Politics
  • Opinion
    • Commentary
    • Guest Column
    • Analysis
    • Editorial
    • Stories That Shaped Us
    • Letters
  • Ethnic Issues
  • War Against the Junta
  • In Person
    • Interview
    • Profile
  • Business
    • Economy
    • Business Roundup
  • Books
  • Donation

© 2023 Irrawaddy Publishing Group. All Rights Reserved

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.