The US Justice Department and FBI have charged seven Chinese nationals with carrying out a decade-long cyber-attack campaign targeting American officials, businesses, and politicians. The operation involved sending over 10,000 malicious emails to thousands of victims across multiple continents. The hackers allegedly compromised work accounts, personal emails, online storage, and telephone call records, as well as targeting home routers and other electronic devices. The FBI Director Christopher Wray stated that China’s government is backing this prolific global hacking operation, and that the FBI will continue to pursue those who threaten US security and prosperity.
The charges against the Chinese hackers come amid global concerns over China’s cyber espionage activities. The UK government has accused China of engaging in malicious cyber campaigns targeting its Electoral Commission and politicians. The Chinese embassy in London has strongly denied these accusations, calling them fabricated and malicious. In response to the allegations made in the US, the Chinese embassy in Washington DC has not yet responded. The indictment against the alleged hackers provides details on how they targeted US government officials, foreign dissidents, and US companies across various industries.
The hackers are said to have sent emails to their targets that appeared to be from prominent news outlets or journalists, containing hidden tracking links. Opening these emails would send the recipient’s information, including location and IP addresses, to a server allegedly controlled by the defendants. This information was then used to enable more direct and sophisticated targeted hacking, such as compromising the recipients’ home routers and electronic devices. The justice department cited an example where the hackers successfully compromised Hong Kong pro-democracy activists and their associates located in Hong Kong, the US, and other foreign locations.
In addition to targeting government officials at the White House and State Departments, the hackers also targeted defence contractors, information technology firms, telecommunications companies, manufacturers, and finance and research industries. One of the companies targeted was identified as a leading provider of 5G network equipment. These cyber-attacks highlight the ongoing efforts by China to undermine US cybersecurity and target Americans and their innovation. The US government’s actions against the hackers are a clear message that cyber espionage will not be tolerated, and those who threaten national security and prosperity will be tirelessly pursued.
The involvement of China’s government in backing the alleged hacking operation raises concerns about state-sponsored cyber espionage activities. The US and other countries are increasingly focused on addressing the threats posed by malicious cyber campaigns conducted by foreign actors. The charges against the Chinese hackers are part of a broader effort to combat cyber threats and safeguard critical infrastructure, intellectual property, and personal information. As the cyber landscape continues to evolve, cooperation between governments, law enforcement agencies, and private sector organizations will be crucial in defending against cyber-attacks and ensuring the security of digital networks and systems.