A hacking group known as FlamingChina has claimed to have obtained more than 10 petabytes of sensitive data from a state-owned supercomputing center at China. The material includes classified defense documents, missile schematics and research into strategic areas. Especialistas in cybersecurity assess that the breach occurred at Centro Nacional of Supercomputação (NSCC) at Tianjin, which serves thousands of customers in scientific and defense institutions.
The center at Tianjin serves as a centralized hub for high-performance processing across the country. Ele supports more than 6 thousand customers, ranging from advanced scientific simulations to projects linked to the defense industry. The group’s claim emerged on an anonymous channel at Telegram on February 6, when samples of the data were published.
- Documents marked secret in Chinese
- Aerospace Engineering Archives
- Fusion simulations and bioinformatics
- Materials related to missiles and defense equipment
Access exploited via VPN vulnerability
The hacker responsible for the action claimed to have compromised a VPN domain to enter the system. From there, a botnet was used to extract the data gradually over approximately six months. Essa approach distributed the transfers across multiple systems, which reduced the chances of immediate detection.
Experts indicate that the method did not depend on highly sophisticated techniques. Instead, it exploited flaws in the environment’s security architecture. Slow extraction made it possible to move massive volumes without triggering alerts typical of large, short-term transfers.
Published samples include research linked to state entities
The dataset reportedly spans research in aerospace engineering, military development, bioinformatics and fusion simulations. The group mentioned connections to organizations such as Corporação, Indústria, Aviação, China, Corporação, Aeronaves Comerciais, China, and Universidade Nacional. Tecnologia from Defesa.
Analysts who have reviewed the available samples say the content appears consistent with the type of information stored in a large-scale supercomputing center. The files include technical representations of defense equipment such as missiles and bombs, as well as documents with confidentiality markings.
Volume of data attracts interest from intelligence agencies
Due to the size of the set, exceeding 10 petabytes, experts consider that the material would be more valuable to state intelligence agencies with advanced processing capabilities. Governos with technical resources may already have similar data in some cases, but public exposure raises questions about the protection of critical infrastructure.
The NSCC at Tianjin plays a strategic role in supporting complex calculations used in national projects. The breach, if confirmed, exposes the scale of sensitive information concentrated at a single processing point.
Extraction method prioritized stealth over time
Instead of a single and voluminous transfer, the attacker opted for distributed and spaced movements. Essa strategy made it difficult for network traffic anomaly detection tools to monitor. Pesquisadores cybersecurity experts note that the incident highlights structural problems in protecting large systems.
Chinese authorities have previously recognized the need to strengthen the security of vital infrastructure, massive databases and systems related to artificial intelligence. Casos past unprotected databases reinforce the discussion about persistent vulnerabilities.
Experts assess implications for national cybersecurity
The breach occurred in an environment designed to support intensive computing demands in sensitive areas. The center processes simulations ranging from climate modeling to applications in weapons physics and aeronautics. The exposure of such volumes could compromise competitive advantages in defense technology.
Researchers reinforce that slow detection reflects common challenges in supercomputing environments, where the main focus is on performance and processing capacity. The gradual distribution of data across multiple channels contributed to keeping the operation below the radar for months.
Technical details of the samples reinforce the credibility of the claim
The sample files released include animations, simulations and visual representations of missile systems. Documentos technicians with specific markings in Chinese appear among the material available. Especialistas who examined the content highlight the compatibility with typical data from advanced research in defense-related institutions.
The FlamingChina group promoted the full set on anonymous forums and channels, offering limited previews and full access for high fees. The strategy suggests the intention to commercialize the material to interested parties with resources for in-depth analysis.
Tianjin Center concentrates strategic resources of China
NSCC Tianjin operates as one of the country’s leading supercomputing nodes and meets demands from multiple sectors. Sua infrastructure supports customers performing intensive calculations in areas such as aviation, military simulations and cutting-edge scientific research. The concentration of such capabilities in one location increases the strategic value of the asset.
The breach exposes risks associated with the centralization of sensitive data in systems connected to the internet. Especialistas in cybersecurity recommend ongoing reviews of remote access protocols, such as VPNs, and internal traffic monitoring to mitigate similar exposures in the future.
The incident occurred in a context of increasing global attention to protecting critical digital infrastructures. Extended extraction demonstrates that even high-performance environments can have exploitable holes through persistence and unobtrusive data movement methods.
