Massive Data Breach Hits China’s National Supercomputing Center in Tianjin
A catastrophic security failure has allegedly struck one of China’s most critical technological hubs. A hacker group claims to have exfiltrated over 10 petabytes of sensitive data from the National Supercomputing Center in Tianjin, marking what could be the largest data theft ever recorded in the country.
- Target: National Supercomputing Center in Tianjin.
- Volume: Over 10 petabytes of compromised data.
- Attacker: A group calling itself “Flaming China.”
- Content: Classified defense documents, missile schematics, and aerospace engineering data.
- Demand: Payment requested in cryptocurrency (specifically Monero).
The Scale of the Exfiltration
The alleged breach is staggering in its volume. Cybersecurity experts report that more than 10 petabytes—roughly 10 million gigabytes—of information have been compromised. According to reports from Tech Startups, this represents one of the largest exfiltrations of sensitive information ever reported globally.
The National Supercomputing Center in Tianjin isn’t just a data warehouse; it’s a vital pillar of China’s scientific and military infrastructure. It provides the immense computational power required for high-performance simulations and engineering models used by over 6,000 institutions, including elite universities and state-owned enterprises.
What Data Was Stolen?
The group responsible, identifying themselves as “Flaming China,” began releasing samples of the stolen data on Telegram on February 6. These samples have led cybersecurity experts to believe the breach is credible. The stolen archive reportedly includes:
- Military & Defense: Highly classified defense documents, weapons testing data, and detailed missile schematics.
- Aerospace: Engineering materials and simulations related to the Aviation Industry Corporation of China and the Commercial Aircraft Corporation of China.
- Scientific Research: Bioinformatics and simulations for nuclear fusion.
- Institutional Data: Information tied to the National University of Defense Technology.
The Ransom and the Market
The attackers aren’t just leaking data; they’re auctioning it. According to CyberMaterial, the hacker is offering a comprehensive file index for 10 Monero, although the full dataset is being held for the highest bidder, with prices for full access reaching into the millions of dollars.
The choice of Monero—a privacy-focused cryptocurrency—makes it extremely difficult for authorities to track the financial transactions. While CNN reports that the story first circulated in niche hacker forums before gaining mainstream traction, the network has not yet been able to independently authenticate all the claims.
Why This Matters for Global Security
A breach of this magnitude at a state-run facility suggests a deep level of access into internal networks. Since the Tianjin center supports thousands of institutions, the ripple effect of this theft could threaten the security of over 1,600 critical Chinese institutions. The loss of missile designs and aerospace simulations provides a potential roadmap of China’s military capabilities to any entity capable of purchasing the data.
Frequently Asked Questions
Who is “Flaming China”?
Flaming China is the handle used by the anonymous actor or group claiming responsibility for the intrusion and the subsequent sale of the data.
What is the National Supercomputing Center in Tianjin?
It is a state-backed facility that handles advanced scientific workloads and was historically known for hosting the Tianhe-1, once the world’s fastest supercomputer.
Has the data been verified?
While cybersecurity experts have noted the initial credibility of sample files containing classified documents and simulations, mainstream outlets like CNN have stated they haven’t independently authenticated the full trove.
Looking Ahead
As the data continues to be auctioned on the dark web, the focus shifts to the potential fallout for China’s defense sector. The breach highlights the vulnerability of even the most powerful computing hubs to sophisticated cyberattacks and underscores the growing role of privacy coins in facilitating high-stakes digital espionage.