China grabbed NSA hacking tools from NSA attack on China Symantec

Chinese spies got a hold of NSA hacking tools, and repurposed them in 2016 to attack American allies and private companies in Europe and Asia, reports the NYT. How'd they get those cyberweapons? Symantec researchers believe the Chinese did not steal the code but captured it from an N.S.A. attack on their own computers like a gunslinger who grabs an enemys rifle and starts blasting away.

Here's the Symantec researchers' report, released on Monday and the focus of the NYT article:

Buckeye: Espionage Outfit Used Equation Group Tools Prior to Shadow Brokers Leak [Symantec]

The episode is the latest evidence that the United States has lost control of key parts of its cybersecurity arsenal, write Nicole Perlroth, David Sanger and Scott Shane:

Based on the timing of the attacks and clues in the computer code, researchers with the firm Symantec believe the Chinese did not steal the code but captured it from an N.S.A. attack on their own computers like a gunslinger who grabs an enemys rifle and starts blasting away.

The Chinese action shows how proliferating cyberconflict is creating a digital wild West with few rules or certainties, and how difficult it is for the United States to keep track of the malware it uses to break into foreign networks and attack adversaries infrastructure.

The losses have touched off a debate within the intelligence community over whether the United States should continue to develop some of the worlds most high-tech, stealthy cyberweapons if it is unable to keep them under lock and key.