James Slaby, who directs the security practice at HFS Research, says companies aren't necessarily more at risk in China.
The security risks may be marginally greater there if the telecommunications equipment has been compromised with backdoors. How attacks on the equipment are mounted, though, is geographically independent, said Slaby.
The bottom line is that companies offshoring to China are "only embracing nominally more risks" as long as they are pursing best practices to protect corporate data, said Slaby.
Deploying basic security practices, "are more important than thinking about where you are physically located," said Slaby.
Daniel Castro, an analyst at the Information Technology & Innovation Foundation, does not believe that "businesses will rethink their off-shoring decisions because of the Mandiant report, but they should all be taking a close look at their risk exposure and mitigation measures for these types of threats."
Patrick Thibodeau covers SaaS and enterprise applications, outsourcing, government IT policies, data centers and IT workforce issues for Computerworld. Follow Patrick on Twitter at @DCgov, or subscribe to Patrick's RSS feed . His e-mail address is email@example.com.
Read more about cyberwarfare in Computerworld's Cyberwarfare Topic Center.