Hackers claim to have stolen 10 petabytes of data from China’s Tianjin supercomputer center

A hacker is claiming to have stolen more than 10 petabytes of sensitive data from what multiple reports identify as China’s National Supercomputing Center in Tianjin. The claim has drawn global attention because the center reportedly supports more than 6,000 clients across science, industry, and defense-related sectors, which would make any confirmed breach unusually consequential.

The key point is that the full breach remains unverified. Current reporting says experts who reviewed sample files found some material broadly consistent with a major Chinese supercomputing environment, but neither Chinese authorities nor the center itself appear to have publicly confirmed the incident as of April 9, 2026.

BEST SPRING 2026 DEALS

Editor's Choice

Private Internet Access

Access content across the globe at the highest speed rate.

70% of our readers choose Private Internet Access

70% of our readers choose ExpressVPN

ExpressVPN

Browse the web from multiple devices with industry-standard security protocols.

Nord VPN

Faster dedicated servers for specific actions (currently at summer discounts)

That uncertainty should shape how this story gets framed. The more accurate headline is not that a 10-petabyte breach has been confirmed, but that hackers claim to have carried one out and that at least some analysts consider the leaked sample plausible enough to merit serious scrutiny.

What is being claimed

Reports circulating on April 8 and April 9 say the alleged stolen data includes defense documents, missile-related material, and research tied to aerospace and other advanced scientific fields. Several outlets, citing CNN’s reporting, say the suspected target is the National Supercomputing Center in Tianjin, one of China’s best-known state-backed high-performance computing hubs.

The reported scale is extraordinary. Ten petabytes equals roughly 10 million gigabytes, which would place the incident among the largest publicly claimed cyber thefts tied to a state-linked scientific facility if the number holds up. That said, no independent public audit has verified that the attackers actually exfiltrated the full archive they claim to possess.

Some reports say the actor linked the intrusion to a compromised VPN domain and claimed the theft unfolded over about six months with help from a botnet. Those details still come from the attacker side of the story, so they should be treated as allegations, not established fact.

Why the Tianjin center matters

The Tianjin facility matters because it is not just another data center. Reporting describes it as a centralized national computing hub that serves thousands of clients, including organizations tied to advanced research and defense work. That makes it a high-value concentration point for data from multiple sectors.

If a center like this were breached, the impact could spread well beyond one agency or contractor. A compromise at a shared supercomputing environment could expose scientific simulations, engineering models, military-adjacent research, and data from many separate institutions at once. That is an inference based on the reported client profile and the type of workloads such centers handle.

That is also why this story has moved quickly despite the lack of official confirmation. Even a partially authentic leak from a hub of this kind could have national security, industrial espionage, and geopolitical consequences.

What has and has not been verified

What appears verified so far is narrower than many headlines suggest. Multiple news reports agree that a hacker made the claim, published sample material, and tied the data to Tianjin’s supercomputing center. Multiple reports also say outside experts found parts of the sample consistent with the sort of data such a center could hold.

What has not been verified publicly is the full size of the haul, the exact target, the full authenticity of the entire archive, and the complete attack path. There also does not appear to be any public official confirmation from Chinese authorities or the center itself at this point.

That gap matters because dark web breach claims often mix real data, recycled data, inflated numbers, and selective samples to boost credibility or attract buyers. In other words, the sample may be meaningful even if parts of the broader sales pitch turn out to be exaggerated. That is an inference grounded in how breach marketplaces typically work, and current reporting has not yet closed that gap here.

Tianjin supercomputer breach claim at a glance

Why this story still matters even without confirmation

Even if the full 10-petabyte figure proves overstated, the case still matters because the sample release alone may reveal sensitive information. Analysts and reporters are paying attention not only to the headline number but also to the nature of the alleged documents.

The story also highlights how strategic infrastructure can become an attractive cyber target. Supercomputing hubs sit at the intersection of research, advanced simulation, aerospace, and national security, so a single compromise can carry outsized consequences.

For now, the most accurate framing is cautious but serious: a hacker has made an enormous breach claim tied to one of China’s most important computing centers, the samples have raised credible questions, and the absence of official confirmation leaves major parts of the story unresolved.

FAQ