Industrial espionage

Teapot with Actresses, Vezzi porcelain factory, Venice, c. 1725. The Vezzi brothers were involved in a series of incidents of industrial espionage. It was these actions that led to the secret of manufacturing Meissen porcelain becoming widely known.

Industrial espionage, economic espionage, corporate spying or corporate espionage is a form of espionage conducted for commercial purposes instead of purely national security.[1] Economic espionage is conducted or orchestrated by governments and is international in scope, while industrial or corporate espionage is more often national and occurs between companies or corporations.[2]

Competitive intelligence and economic or industrial espionage

"Competitive intelligence" levels out two scenarios of description as the legal and ethical activity of systematically gathering, analyzing and managing information on industrial competitors becomes beneficial.[3] It may include activities such as examining newspaper articles, corporate publications, websites, patent filings, specialised databases, information at trade shows and the like to determine information on a corporation.[4] The compilation of these crucial elements is sometimes termed CIS or CRS, a Competitive Intelligence Solution or Competitive Response Solution. With its roots in market research, "competitive intelligence" has been described as the "application of principles and practices from military and national intelligence to the domain of global business";[5] it is the business equivalent of open-source intelligence.

The difference between competitive intelligence and economic or industrial espionage is not clear; one needs to understand the legal basics to recognize how to draw the line between the two.[6][7] Others maintain it is sometimes quite difficult to tell the difference between legal and illegal methods, especially if considering the ethical side of information gathering, making the definition even more elusive.

Forms of economic and industrial espionage

Economic or industrial espionage takes place in two main forms. In short, the purpose of espionage is to gather knowledge about (an) organization(s). It may include the acquisition of intellectual property, such as information on industrial manufacture, ideas, techniques and processes, recipes and formulas. Or it could include sequestration of proprietary or operational information, such as that on customer datasets, pricing, sales, marketing, research and development, policies, prospective bids, planning or marketing strategies or the changing compositions and locations of production.[8] It may describe activities such as theft of trade secrets, bribery, blackmail and technological surveillance. As well as orchestrating espionage on commercial organizations, governments can also be targets — for example, to determine the terms of a tender for a government contract so that another tenderer can underbid.

Target industries

During testing, automakers commonly disguise upcoming car models with camouflage paint patterns designed to obfuscate the vehicle's lines. Padded covers, or deceptive decals are also often used.

Economic and industrial espionage is most commonly associated with technology-heavy industries, including computer software and hardware, biotechnology, aerospace, telecommunications, transportation and engine technology, automobiles, machine tools, energy, materials and coatings and so on. Silicon Valley is known to be one of the world's most targeted areas for espionage, though any industry with information of use to competitors may be a target.[9]

Information theft and sabotage

Information can make the difference between success and failure; if a trade secret is stolen, the competitive playing field is leveled or even tipped in favor of a competitor. Although a lot of information-gathering is accomplished legally through competitive intelligence, at times corporations feel the best way to get information is to take it.[10] Economic or industrial espionage is a threat to any business whose livelihood depends on information.

In recent years, economic or industrial espionage has taken on an expanded definition. For instance, attempts to sabotage a corporation may be considered industrial espionage; in this sense, the term takes on the wider connotations of its parent word. That espionage and sabotage (corporate or otherwise) have become more clearly associated with each other is also demonstrated by a number of profiling studies, some government, some corporate. The United States government currently has a polygraph examination entitled the "Test of Espionage and Sabotage" (TES), contributing to the increasingly popular, though not consensus, notion, by those studying espionage and sabotage countermeasures, of the interrelationship between the two.[11] In practice, particularly by "trusted insiders," they are generally considered functionally identical for the purpose of informing countermeasures.

Agents and the process of collection

Economic or industrial espionage commonly occurs in one of two ways. Firstly, a dissatisfied employee appropriates information to advance their own interests or to damage the company or, secondly, a competitor or foreign government seeks information to advance its own technological or financial interest.[12] "Moles" or trusted insiders are generally considered the best sources for economic or industrial espionage.[13] Historically known as a "patsy," an insider can be induced, willingly or under duress to provide information. A patsy may be initially asked to hand over inconsequential information and once compromised by committing a crime, bribed into handing over material which is more sensitive.[14] Individuals may leave one company to take up employment with another and take sensitive information with them.[15] Such apparent behavior has been the focus of numerous industrial espionage cases that have resulted in legal battles.[15] Some countries hire individuals to do spying rather than make use of their own intelligence agencies.[16] Academics, business delegates and students are often thought to be utilized by governments in gathering information.[17] Some countries, such as Japan, have been reported to expect students be debriefed on returning home.[17] A spy may follow a guided tour of a factory then get "lost".[14] A spy could be an engineer, a maintenance man, a cleaner, an insurance salesman or an inspector - basically anyone who has legitimate access to the premises.[14]

A spy may break into the premises to steal data. They may search through waste paper and refuse, known as "dumpster diving".[18] Information may be compromised via unsolicited requests for information, marketing surveys or use of technical support, research or software facilities. Outsourced industrial producers may ask for information outside of the agreed-upon contract.[19]

Computers have facilitated the process of collecting information, due to the ease of access to large amounts of information, through physical contact or via the internet.

Use of computers and the Internet

Personal computers

Computers have become key in exercising industrial espionage due to the enormous amount of information they contain and its ease of being copied and transmitted. The use of computers for espionage increased rapidly in the 1990s. Information has been commonly stolen by being copied from unattended computers in offices, those gaining unsupervised access doing so through subsidiary jobs, such as cleaners or repairmen. Laptops were, and still are, a prime target, with those traveling abroad on business being warned not to leave them for any period of time. Perpetrators of espionage have been known to find many ways of conning unsuspecting individuals into parting, often only temporarily, from their possessions, enabling others to access and steal information.[20] A "bag-op" refers to the use of hotel staff to access data, such as through laptops, in hotel rooms. Information may be stolen in transit, in taxis, at airport baggage counters, baggage carousels, on trains and so on.[18]

The Internet

The rise of the internet and computer networks has expanded the range and detail of information available and the ease of access for the purpose of industrial espionage.[21] Worldwide, around 50,000 companies a day are thought to come under cyberattack with the rate estimated as doubling each year.[22] This type of operation is generally identified as state backed or sponsored, because the "access to personal, financial or analytic resources" identified exceed that which could be accessed by cybercriminals or individual hackers. Sensitive military or defense engineering or other industrial information may not have immediate monetary value to criminals, compared with, say, bank details. Analysis of cyberattacks suggests deep knowledge of networks, with targeted attacks, obtained by numerous individuals operating in a sustained organized way.[23]

Opportunities for sabotage

The rising use of the internet has also extended opportunities for industrial espionage with the aim of sabotage. In the early 2000s, it was noticed that energy companies were increasingly coming under attack from hackers. Energy power systems, doing jobs like monitoring power grids or water flow, once isolated from the other computer networks, were now being connected to the internet, leaving them more vulnerable, having historically few built-in security features.[24] The use of these methods of industrial espionage have increasingly become a concern for governments, due to potential attacks by terrorist groups or hostile foreign governments.

Malware

One of the means of perpetrators conducting industrial espionage is by exploiting vulnerabilities in computer software. Malware and spyware as "a tool for industrial espionage", in "transmitting digital copies of trade secrets, customer plans, future plans and contacts". Newer forms of malware include devices which surreptitiously switch on mobile phones camera and recording devices. In attempts to tackle such attacks on their intellectual property, companies are increasingly keeping important information off network, leaving an "air gap", with some companies building "Faraday cages" to shield from electromagnetic or cellphone transmissions.[25]

Distributed denial of service (DDoS) attack

The distributed denial of service (DDoS) attack uses compromised computer systems to orchestrate a flood of requests on the target system, causing it to shut down and deny service to other users.[26] It could potentially be used for economic or industrial espionage with the purpose of sabotage. This method was allegedly utilized by Russian secret services, over a period of two weeks on a cyberattack on Estonia in May 2007, in response to the removal of a Soviet era war memorial.[27]

History

Origins of industrial espionage

The work of Father Francois Xavier d'Entrecolles to reveal to Europe the manufacturing methods of Chinese porcelain in 1712, is sometimes considered an early case of industrial espionage[28]

Economic and industrial espionage has a long history. The work of Father Francois Xavier d'Entrecolles in Jingdezhen, China to reveal to Europe the manufacturing methods of Chinese porcelain in 1712 is sometimes considered an early case of industrial espionage.[28]

Historical accounts have been written of industrial espionage between Britain and France.[29] Attributed to Britain's emergence as an "industrial creditor," the second decade of the 18th century saw the emergence of a large-scale state-sponsored effort to surreptitiously take British industrial technology to France.[29] Witnesses confirmed both the inveigling of tradespersons abroad and the placing of apprentices in England.[30] Protests by those such as iron workers in Sheffield and steel workers in Newcastle, about skilled industrial workers being enticed abroad, led to the first English legislation aimed at preventing this method of economic and industrial espionage.[31][30]

The 20th Century

East-West commercial development opportunities after World War I saw a rise in Soviet interest in American and European manufacturing know-how, exploited by Amtorg Corporation.[32] Later, with Western restrictions on the export of items thought likely to increase military capabilities to the USSR, Soviet industrial espionage was a well known adjunct to other spying activities up until the 1980s.[33] BYTE reported in April 1984, for example, that although the Soviets sought to develop their own microelectronics, their technology appeared to be several years behind the West's. Soviet CPUs required multiple chips and appeared to be close or exact copies of American products such as the Intel 3000 and DEC LSI-11/2.[34]

"Operation Brunnhilde"

Some of these activities were directed via the East German Stasi (Ministry for State Security). One such operation, known as "Operation Brunnhilde" operated from the mid-1950s until early 1966 and made use of spies from many Communist Bloc countries. Through at least 20 forays, many western European industrial secrets were compromised.[35] One member of the "Brunnhilde" ring was a Swiss chemical engineer, Dr. Jean Paul Soupert (also known as "Air Bubble"), living in Brussels. He was described by Peter Wright in Spycatcher as having been "doubled" by the Belgian Sûreté de l'État.[35][36] He revealed information about industrial espionage conducted by the ring, including the fact that Russian agents had obtained details of Concorde's advanced electronics system.[37] He testified against two Kodak employees, living and working in Britain, during a trial in which they were accused of passing information on industrial processes to him, though they were eventually acquitted.[35]

Soviet spetsinformatsiya system

A secret report from the Military-Industrial Commission of the USSR (VPK), from 1979–80, detailed how spetsinformatsiya (Russian: специнформация i.e. "special records") could be utilised in twelve different military industrial areas. Writing in the Bulletin of the Atomic Scientists, Philip Hanson detailed a spetsinformatsiya system in which 12 industrial branch ministries formulated requests for information to aid technological development in their military programs. Acquisition plans were described as operating on 2 year and 5 year cycles with about 3000 tasks under way each year. Efforts were aimed at civilian as well as military industrial targets, such as in the petrochemical industries. Some information was garnered so as to compare levels of competitor to Soviet technological advancement. Much unclassified information was also gathered, blurring the boundary with "competitive intelligence".[33]

The Soviet military was recognised as making much better use of acquired information, compared to civilian industry, where their record in replicating and developing industrial technology was poor.[33]

The legacy of Cold War espionage

Following the demise of the Soviet Union and the end of the Cold War, commentators, including the US Congressional Intelligence Committee, noted a redirection amongst the espionage community from military to industrial targets, with Western and former communist countries making use of "underemployed" spies and expanding programs directed at stealing such information.[38][39]

The legacy of Cold War spying included not just the redirection of personnel but the use of spying apparatus such as computer databases, scanners for eavesdropping, spy satellites, bugs and wires.[40]

Notable cases

France and the United States

Between 1987 and 1989, IBM and Texas Instruments were thought to have been targeted by French spies with the intention of helping France's Groupe Bull.[41] In 1993, US aerospace companies were also thought to have been targeted by French interests.[42] During the early 1990s, France was described as one of the most aggressive pursuers of espionage to garner foreign industrial and technological secrets.[41] France accused the U.S. of attempting to sabotage its high tech industrial base.[41] The government of France has been alleged to have conducted ongoing industrial espionage against American aerodynamics and satellite companies.[43]

Volkswagen

In 1993, car manufacturer Opel, the German division of General Motors, accused Volkswagen of industrial espionage after Opel's chief of production, Jose Ignacio Lopez, and seven other executives moved to Volkswagen.[15] Volkswagen subsequently threatened to sue for defamation, resulting in a four-year legal battle.[15] The case, which was finally settled in 1997, resulted in one of the largest settlements in the history of industrial espionage, with Volkswagen agreeing to pay General Motors $100 million and to buy at least $1 billion of car parts from the company over 7 years, although it did not explicitly apologize for Lopez's behavior.[44]

Hilton and Starwood

In April 2009 the US based hospitality company Starwood accused its rival Hilton of a "massive" case of industrial espionage. After being purchased by private equity group Blackstone, Hilton employed 10 managers and executives from Starwood. Under intense pressure to improve profits, Starwood accused Hilton of stealing corporate information relating to its luxury brand concepts, used in setting up its own Denizen hotels. Specifically, former head of its luxury brands group, Ron Klein, was accused of downloading "truckloads of documents" from a laptop to his personal email account.[45]

GhostNet

GhostNet was a "vast surveillance system" reported by Canadian researchers based at the University of Toronto in March 2009. Using targeted emails it compromised thousands of computers in governmental organisations, enabling attackers to scan for information and transfer this back to a "digital storage facility in China".[46]

Google and Operation Aurora

On 13 January 2010, Google Inc. announced that operators, from within China, had hacked into their Google China operation, stealing intellectual property and, in particular, accessing the email accounts of human rights activists.[47][48] The attack was thought to have been part of a more widespread cyber attack on companies within China which has become known as Operation Aurora.[48] Intruders were thought to have launched a zero-day attack, exploiting a weakness in the Microsoft Internet Explorer browser, the malware used being a modification of the trojan "Hydraq".[25] Concerned about the possibility of hackers taking advantage of this previously unknown weakness in Internet Explorer, the governments of Germany and, subsequently France, issued warnings not to use the browser.[49]

There was speculation that "insiders" had been involved in the attack, with some Google China employees being denied access to the company's internal networks after the company's announcement.[50][51] In February 2010, computer experts from the U.S. National Security Agency claimed that the attacks on Google probably originated from two Chinese universities associated with expertise in computer science, Shanghai Jiao Tong University and the Shandong Lanxiang Vocational School, the latter having close links to the Chinese military.[46]

Google claimed at least 20 other companies had also been targeted in the cyber attack, said by the London Times, to have been part of an "ambitious and sophisticated attempt to steal secrets from unwitting corporate victims" including "defence contractors, finance and technology companies".[48][47][49] Rather than being the work of individuals or organised criminals, the level of sophistication of the attack was thought to have been "more typical of a nation state".[47] Some commentators speculated as to whether the attack was part of what is thought to be a concerted Chinese industrial espionage operation aimed at getting "high-tech information to jump-start China's economy".[52] Critics pointed to what was alleged to be a lax attitude to the intellectual property of foreign businesses in China, letting them operate but then seeking to copy or reverse engineer their technology for the benefit of Chinese "national champions".[53] In Google's case, they may have (also) been concerned about the possible misappropriation of source code or other technology for the benefit of Chinese rival Baidu. In March 2010 Google subsequently decided to cease offering censored results in China, leading to the closing of its Chinese operation.

CyberSitter and Green Dam

The US based firm CyberSitter announced in January 2010 that it was suing the Chinese government, and other US companies, for stealing its anti pornography software, with the accusation that it had been incorporated into China's Green Dam program, used by the state to censor children's internet access. CyberSitter accused Green Dam creators as having copied around 3000 lines of code. They were described as having done 'a sloppy job of copying,' with some lines of the copied code continuing to direct people to the CyberSitter website. The attorney acting for CyberSitter maintained "I don't think I have ever seen such clear-cut stealing".[54]

USA v. Lan Lee, et al.

The United States charged two former NetLogic Inc. engineers, Lan Lee and Yuefei Ge, of committing economic espionage against TSMC and NetLogic, Inc. A jury acquitted the defendants of the charges with regard to TSMC and deadlocked on the charges with regard to NetLogic. In May 2010, a federal judge dismissed all the espionage charges against the two defendants. The judge ruled that the U.S. Government presented no evidence of espionage.[55]

Dongxiao Yue and Chordiant Software, Inc.

In May 2010, the federal jury convicted Chordiant Software, Inc., a U.S. corporation, of stealing Dongxiao Yue's JRPC technologies and used them in a product called Chordiant Marketing Director. Yue previously filed lawsuits against Symantec Corporation for a similar theft.[56]

Concerns of national governments

Brazil

Revelations from the Snowden documents have provided information to the effect that the United States, notably vis-à-vis the NSA, has been conducting aggressive economic espionage against Brazil.[57] Canadian intelligence has apparently supported U.S. economic espionage efforts.[58]

United States

According to Edward Snowden, The National Security Agency spies on foreign companies.[59] A recent report to the US government, by aerospace and defense company Northrop Grumman, describes Chinese economic espionage as comprising "the single greatest threat to U.S. technology".[23] Joe Stewart, of SecureWorks, blogging on the 2009 cyber attack on Google, referred to a "persistent campaign of 'espionage-by-malware' emanating from the People’s Republic of China (PRC)" with both corporate and state secrets being "Shanghaied" over the past 5 or 6 years.[60] The Northrop Grumann report states that the collection of US defense engineering data through cyberattack is regarded as having "saved the recipient of the information years of R&D and significant amounts of funding".[23] Concerns about the extent of cyberattacks on the US emanating from China has led to the situation being described as the dawn of a "new cold cyberwar".[61] In response to these and other reports, Amitai Etzioni of the Institute for Communitarian Policy Studies has suggested that China and the United States should agree to a policy of mutually assured restraint with respect to cyberspace. This would involve allowing both states to take the measures they deem necessary for their self-defense while simultaneously agreeing to refrain from taking offensive steps; it would also entail vetting these commitments.[62] In June 2015 Wikileaks published documents over National Security Agency spied French companies.[63]

United Kingdom

In December 2007, it was revealed that Jonathan Evans, head of the United Kingdom's MI5, had sent out confidential letters to 300 chief executives and security chiefs at the country's banks, accountants and legal firms warning of attacks from Chinese 'state organisations'.[64] A summary was also posted on the secure website of the Centre for the Protection of the National Infrastructure, accessed by some of the nation's 'critical infrastructure' companies, including 'telecoms firms, banks and water and electricity companies'.[65] One security expert warned about the use of 'custom trojans,' software specifically designed to hack into a particular firm and feed back data.[65] Whilst China was identified as the country most active in the use of internet spying, up to 120 other countries were said to be using similar techniques.[65] The Chinese government responded to UK accusations of economic espionage by saying that the report of such activities was 'slanderous' and that the government opposed hacking which is prohibited by law.[66]

Germany

German counter-intelligence experts have maintained the German economy is losing around €53 billion or the equivalent of 30,000 jobs to economic espionage yearly.[67]

See also

References

  1. "Unusual suspects: Cyber-spying grows bigger and more boring". The Economist. 25 May 2013. Retrieved 25 May 2013.
  2. Nasheri 2005, p. 10.
  3. Nasheri 2005, p. 73.
  4. Nasheri 2005, p. 74.
  5. Walker 1996.
  6. "The Economic Espionage Act: The Rules Have Not Changed, Competitive Intelligence Review, July/August 1998" (PDF). Retrieved 2012-02-12.
  7. "Competitive Intelligence, Law, and Ethics: The EEA Revisited Again (and Hopefully for the Last Time), Competitive Intelligence Magazine, July/September 2011" (PDF). Retrieved 2012-02-12.
  8. Nasheri 2005, pp. 8, 10, 73.
  9. Nasheri 2005, p. 9.
  10. Scalet 2003, p. 3.
  11. Department of Defense 2002.
  12. Nasheri 2005, p. 7.
  13. Nasheri 2005, pp. 80-81.
  14. 1 2 3 Palmer 1974, p. 12.
  15. 1 2 3 4 Reuters 1996.
  16. Nasheri 2005, p. 80.
  17. 1 2 Nasheri 2005, p. 88.
  18. 1 2 Nasheri 2005, p. 82.
  19. Nasheri 2005, p. 84.
  20. Boggon 1996.
  21. DeWeese et al. 2009.
  22. Glover 2010.
  23. 1 2 3 DeWeese et al 2009.
  24. Piller 2002.
  25. 1 2 Lohr 2010.
  26. Nasheri 2005, p. 112.
  27. Anderson 2007.
  28. 1 2 Rowe & Brook 2009, p. 84.
  29. 1 2 Harris 1998, p. 7.
  30. 1 2 Harris 1998, p. 9.
  31. Harris 1998, p. 8.
  32. Zelchenko, Henry L. (Feb 1952). "Stealing America's Know-How: The Story of Amtorg". American Mercury 74 (338): 75–84. Retrieved 9 November 2012.
  33. 1 2 3 Hanson 1987.
  34. Heuertz, Ruth (April 1984). "Soviet Microprocessors and Microcomputers". BYTE. p. 348. Retrieved 23 October 2013.
  35. 1 2 3 Palmer 1974, p. 13.
  36. Wright 1987, p. 183.
  37. Wright 1987, p. 184.
  38. Nodoushani & Nodoushani 2002.
  39. Nasheri 2005, p. 53.
  40. Nasheri 2005, pp. 53-54.
  41. 1 2 3 New York Times: Paris 1991.
  42. Jehl 1993.
  43. John A. Nolan. "A Case Study in French Espionage: Renaissance Software" (PDF). US Department of Energy: Hanford.
  44. Meredith 1997.
  45. Clark 2009.
  46. 1 2 Markoff & Barboza 2010.
  47. 1 2 3 Harvey 2010.
  48. 1 2 3 Branigan 2010.
  49. 1 2 Ahmed 2010.
  50. Beaumont 2010.
  51. Reuters Shanghai 2010.
  52. Lawson 2010.
  53. Rogin 2010.
  54. Newman 2010.
  55. Levine 2010.
  56. Dongxiau Yue, et al., v. Chordiant Software, Inc. 2010.
  57. "NSA spying on Petrobras, if proven, is industrial espionage: Rousseff". Reuters. 9 September 2013.
  58. "Brazil-Canada espionage: Which countries are we spying on?". cbc.ca. 9 October 2013.
  59. "Edward Snowden says NSA engages in industrial espionage". cbc.ca. 26 January 2014.
  60. Stewart 2010.
  61. Navarro & Autry 2010.
  62. Etzioni, Amitai, "MAR: A Model for US-China Relations," The Diplomat, 20 September 2013, .
  63. SPIEGEL ONLINE, Hamburg, Germany (29 June 2015). "Wikileaks-Enthüllung: NSA soll auch französische Wirtschaft bespitzelt haben". SPIEGEL ONLINE.
  64. "Beware Chinese cyber spys, MI5 tells firms". Daily Mail (London). 1 December 2007. Retrieved 1 December 2007.
  65. 1 2 3 Blakely 1 December 2007.
  66. Blakely 5 December 2007.
  67. Connolly, Kate. "Germany accuses China of industrial espionage". Guardian News and Media Limited. Retrieved 22 July 2009.

Bibliography

External links

  1. Stewart, Joe. "Operation Aurora: Clues in the Code". Secureworks.com. Secureworks. Retrieved 9 March 2016.
This article is issued from Wikipedia - version of the Monday, May 02, 2016. The text is available under the Creative Commons Attribution/Share Alike but additional terms may apply for the media files.