Unveiling the Cyber Threat: US and UK Authorities Expose Alleged Chinese Cyber-espionage Scheme
Impacting Millions: The Broad Reach of China’s Alleged Cyberattacks
APT31: Unmasking China’s Alleged Cyber Operatives
Washington/London, March 25, 2024 – In a joint effort, U.S. and British officials have levelled charges against China, alleging its involvement in a widespread cyberespionage campaign that purportedly impacted millions of individuals globally. The accused hacking group, known as “APT31,” has been linked to China’s Ministry of State Security, according to authorities on both sides of the Atlantic.
A Global Spectrum of Targets: From Lawmakers to Dissidents
The targets of this cyber operation encompass a broad spectrum, including but not limited to lawmakers, academics, journalists, White House staffers, U.S. senators, British parliamentarians, and government officials worldwide critical of Beijing. Additionally, defence contractors, dissidents, and security companies were among those reportedly affected.
Indictment Unsealed: Seven Alleged Chinese Hackers Implicated in Cyber Breach
Deputy Attorney General, Lisa Monaco on the Aims of Hacking Campaign
An indictment unsealed by U.S. prosecutors has implicated seven alleged Chinese hackers in the operation. According to the indictment, the cyberattacks led to the compromise of work accounts, personal emails, online storage, and telephone call records belonging to millions of Americans. Deputy Attorney General Lisa Monaco characterised the primary objectives of the hacking endeavour as “repressing critics of the Chinese regime, compromising government institutions, and stealing trade secrets.”
China’s Response: Embassy Refrains from Immediate Commentary on Allegations
China’s Embassy in Washington refrained from immediate commentary on the allegations, while its counterpart in London dismissed earlier charges levelled by the UK as “completely fabricated and malicious slanders.” The identities of the seven alleged hackers charged by the U.S. Department of Justice remain undisclosed at present.
UK Dismisses Charges: Embassy Denounces Previous Accusations as Fabricated Slanders
Sanctions Imposed: US and UK Target Firm Allegedly Linked to China’s Ministry of State Security
Targeted Entities: Wuhan Xiaoruizhi Science and Technology Under US Treasury’s Sanctions
In Washington, the Treasury Department sanctioned Wuhan Xiaoruizhi Science and Technology Company Ltd., branding it a front company for the Chinese Ministry of State Security, facilitating multiple malicious cyberoperations. Two Chinese nationals, Zhao Guangzong and Ni Gaobin, linked to the Wuhan company, were named for cyberoperations targeting critical U.S. infrastructure sectors, including defence, aerospace, and energy.
Sanctions Unveiled: US and UK Respond to Alleged Cyberthreats
Simultaneously, the U.S. Justice Department charged Zhao, Ni, and five other hackers with conspiracy to commit computer intrusions and wire fraud, alleging their involvement in a 14-year-long cyber operation targeting critics, businesses, and political officials.
“Today’s announcements underscore the need to remain vigilant to cybersecurity threats and the potential for cyber-enabled foreign malign influence efforts, especially as we approach the 2024 election cycle,” commented Assistant Attorney General Matthew G. Olsen.
Facing the Threat: UK Officials Respond to Alleged Cyber Espionage
British authorities refrained from disclosing the company or individuals but indicated that the sanctioned individuals were associated with the operations of the Chinese cyber group APT31, also known as Zirconium or Hurricane Panda. APT31 has previously faced accusations of targeting U.S. presidential campaigns and the information systems of Finland’s parliament, among others.
British cybersecurity officials revealed that Chinese government-affiliated hackers conducted reconnaissance activity against British parliamentarians critical of Beijing in 2021, with no successful compromises of parliamentary accounts reported.
Three lawmakers, including former Conservative Party leader Iain Duncan Smith, disclosed being subjected to harassment, impersonation, and attempted hacking from China, citing instances of hackers impersonating them using fake email addresses to contact their associates. These politicians are members of the Inter-Parliamentary Alliance on China, a group focused on countering Beijing’s influence and addressing alleged rights abuses.
Britain’s Deputy Prime Minister Oliver Dowden announced the government’s intention to summon China’s ambassador to account for its actions.
British Prime Minister Rishi Sunak reiterated concerns about China’s assertive behaviour abroad, labelling it “the greatest state-based threat to our economic security.” However, specific measures to counteract such threats were not detailed.
Editor: Andreea Gudin
The diplomatic daily newspaper Nine O’Clock does not assume responsibility for the information received and published on the public website. The responsibility for the content lies solely with the issuer of the press release.
The diplomatic daily newspaper Nine O’Clock cannot be held accountable for false information transmitted by the recipients of the press releases/announcements.
The diplomatic daily newspaper Nine O’Clock reserves the right not to publish press releases that contain inappropriate expressions or accusations and violations of the rights of other individuals, guaranteed by the Constitution of Romania.
The content of the website www.nineoclock.ro is intended for public information. Copying, reproduction, recompilation, modification, as well as any form of content exploitation from this website are prohibited. The use of the Comments section signifies your agreement to abide by the terms and conditions regarding the publication of comments on www.nineoclock.ro.
