‘FlamingChina’ supercomputer claim

A hacker can say “I stole 10 petabytes” on a forum in one sentence, but moving 10 petabytes is like draining a small lake through a garden hose without anyone noticing. That is why the “FlamingChina” claim is getting attention and skepticism at the same time. (x.com) (tech.yahoo.com) The allegation centers on China’s National Supercomputing Center in Tianjin, a state-backed facility founded in 2009 that runs the Tianhe systems and provides computing for research, industry, government, and other national projects. Its own site says the platform serves users across all 33 provincial-level regions and has supported nearly 10,000 research, enterprise, and government institutions. (nscc-tj.cn) (english.www.gov.cn) The public story appears to start in early February 2026, when a seller using names including “FlamingChina” and “airborneshark1” advertised an alleged Tianjin supercomputer breach on underground forums. NetAskari appears to have been among the first researchers to surface the posts publicly, and later reporting traced much of the wider attention back to those screenshots and sample files. (tech.yahoo.com) (militarnyi.com) The claimed haul is enormous: more than 10 petabytes, or about 10 million gigabytes. Reports describing the samples say they include aerospace files, bioinformatics work, fusion modeling, internal folders, login details, and some documents marked “secret” in Chinese. (securitymagazine.com) (cyberpress.org) That does not mean the full breach is proven. Multiple reports say outside researchers examined only samples, not the full dataset, and could not independently verify that 10 petabytes were actually exfiltrated from the center. (tech.yahoo.com) (cyberpress.org) The hardest part of the claim is the physics, not the drama. At a steady 10 gigabits per second, which is already a very fast dedicated line, moving 10 petabytes would take about 93 days of nonstop transfer; at 100 gigabits per second, it would still take about 9 days. (nscc-tj.cn) (x.com) That is why some observers think the samples could point to access without proving exfiltration at the advertised scale. In plain English, getting into a warehouse and photographing a few shelves is not the same as hauling out every box in the building. (tech.yahoo.com) (x.com) There is also a market incentive to exaggerate. The seller reportedly asked for cryptocurrency payments just to provide a closer look at the material, which is a common pattern in breach markets where scarcity and spectacle help raise the price. (tech.yahoo.com) (x.com) The location matters because Tianjin is not just another server room. China used Tianjin in April 2024 to launch a national supercomputing network meant to link computing resources across the country, so any credible compromise there would raise questions far beyond one facility. (english.www.gov.cn) (chinadaily.com.cn) As of April 11, 2026, there does not appear to be any public confirmation from the National Supercomputing Center in Tianjin or a Chinese government cybersecurity agency that the breach happened as described. Right now the solid facts are narrower than the viral posts: a seller made a huge claim, some samples circulated, and security teams are waiting for corroboration that separates real intrusion from inflated sales copy. (factually.co) (tech.yahoo.com)