A hacker has allegedly breached a state run supercomputing system in China and is attempting to sell a vast collection of stolen data that could represent one of the largest reported data theft incidents in the country. The dataset is said to include more than 10 petabytes of sensitive information, with claims that it contains highly classified defense documents, missile schematics, and research materials spanning multiple advanced scientific domains. Cybersecurity experts familiar with the matter suggest the data may have originated from the National Supercomputing Center in Tianjin, a major infrastructure hub that supports thousands of clients including research institutions, aerospace organizations, and defense related entities.
The individual or group behind the alleged breach, operating under the name FlamingChina, reportedly shared a sample of the data through an anonymous Telegram channel earlier this year. According to the claims, the dataset includes research across fields such as aerospace engineering, bioinformatics, fusion simulation, and military technologies. The group also suggested that the information is linked to prominent Chinese organizations including Aviation Industry Corporation of China, Commercial Aircraft Corporation of China, and National University of Defense Technology. While authorities have not confirmed the breach, cybersecurity analysts who reviewed portions of the sample data indicated that the material appears consistent with what would typically be processed within a supercomputing environment.
Experts who examined the situation believe the attacker may have gained access through a compromised virtual private network domain, allowing entry into the system without immediate detection. Once inside, the hacker allegedly deployed a botnet to extract data gradually across multiple systems over a period of several months. This distributed method of data exfiltration may have reduced the likelihood of triggering security alerts, as smaller volumes of data were transferred simultaneously rather than a single large scale extraction. Analysts noted that while the technique was effective, it did not necessarily rely on highly advanced methods but instead exploited structural gaps within the system’s architecture.
The scale and potential value of the dataset have drawn attention from cybersecurity researchers and intelligence observers, as processing and analyzing such a large volume of information would likely require significant resources. Reports suggest that limited access to the dataset is being offered for thousands of dollars, while full access is priced significantly higher and requested through cryptocurrency transactions. The incident has also renewed focus on longstanding concerns around cybersecurity vulnerabilities within large scale infrastructure systems. Previous cases involving exposed databases and unsecured systems have highlighted ongoing challenges in safeguarding critical information assets. Chinese authorities have previously acknowledged the need to strengthen cybersecurity frameworks, emphasizing the importance of improving protection mechanisms for data, networks, and emerging technologies such as artificial intelligence.
Follow the SPIN IDG WhatsApp Channel for updates across the Smart Pakistan Insights Network covering all of Pakistan’s technology ecosystem.
