A massive cyber intrusion at a key computing hub could expose sensitive research and defence-linked data, raising fresh concerns over infrastructure security.
Representative image showing a hacker at a workstation with data screens, symbolising a reported breach
A hacker group has claimed it broke into one of China’s top state-run supercomputing facilities and stole what could be one of the largest data troves ever reported, including sensitive defence-linked material.
According to cybersecurity analysts and reports, the breach involves more than 10 petabytes of data allegedly taken from the National Supercomputing Center (NSCC) in Tianjin. The facility supports over 6,000 users, including research bodies and organisations linked to defence work.
Advertisement
The group behind the breach, identifying itself as “FlamingChina”, shared a sample of the data on Telegram in February. It claimed the files include material related to aerospace engineering, military research, bioinformatics and fusion simulations.
Advertisement
Experts who reviewed parts of the sample said it appeared to contain documents marked “secret” in Chinese, along with technical files and visual designs of weapons systems such as missiles and bombs.
The hackers also alleged that the data is linked to major Chinese institutions, including the Commercial Aircraft Corporation of China, the Aviation Industry Corporation of China, and the National University of Defense Technology.
Security researchers said the attackers were inside the system for months, extracting data over time without being detected. They are now reportedly offering limited previews of the data for thousands of dollars, while full access is priced significantly higher and being sold via cryptocurrency. These claims have not been independently verified.
Cybersecurity analysts believe the breach may have started through a compromised VPN domain. Once access was gained, the attackers are said to have used automated tools to pull data gradually from different parts of the system over several months.
One expert suggested the breach may not have required highly advanced techniques but could have exploited structural gaps in the system’s design, allowing data to be siphoned off across multiple servers.
The scale of the breach is significant. To put it in perspective, one petabyte equals 1,000 terabytes, while a standard high-end laptop typically stores about one terabyte of data.
The Tianjin centre, set up in 2009, was China’s first national supercomputing hub and forms part of a wider network across cities such as Shenzhen, Guangzhou, and Chengdu.
If confirmed, the breach could raise serious concerns about the security of critical infrastructure in China, particularly as the country invests heavily in artificial intelligence and advanced computing.
Cybersecurity has remained a challenge in recent years. Back in 2021, a huge database carrying personal details of nearly a billion Chinese citizens was reportedly left open for a long time before anyone noticed.
China has since admitted these gaps exist. In its 2025 National Security White Paper, it said stronger safeguards are needed across networks, data systems and AI infrastructure.
Advertisement
