In August 2011, the Associated Press was reported to be among 72 companies and government agencies targeted in a broad-based global cyberespionage campaign identified by McAfee, the cybersecurity company. McAfee, which dubbed the China-based campaign "ShadyRAT," did not identify the AP by name in its report.
AP spokesman Jack Stokes said the company was aware of the reports.
"We do not comment on network security," he told the Washington Post at the time.
Ronald Deibert, director of the Citizen Lab at the Munk Centre for International Studies at the University of Toronto, says current revelations about media organizations targeted by the Chinese fit into a much larger picture that his group just scratched the surface of in 2009, when they looked into an espionage campaign dubbed “GhOstNet.”
Dr. Deibert, who coauthored a report on GhOstNet, says Canadian researchers investigating Chinese espionage against the Dali Lama and the Tibetan community found that computer systems in AP offices in Hong Kong and London were compromised.
The "common thread" in the GhOstNet campaign was that all of the targets involved Chinese concerns – including the attack on the AP, Deibert says. The AP servers in Hong Kong and London were compromised, he believes, "so the attackers would have had access to stories and contacts in the stories before the stories were released."
In its story of the Chinese infiltration of its own systems, the Times reported that Bloomberg News, too, had been attacked last year following its investigation of Premier Xi’s family. But all those instances are pieces that fit into a far larger puzzle, many say.