facebook linkedin twitter

US, Allies Accuse China of Backing Cyber Attacks Worldwide

July 19, 2021 by Dan McCue
In this Jan. 28, 2020, file photo, a Microsoft computer is among items displayed at a Microsoft store in suburban Boston. The Biden administration on Monday, July 19, 2021, blamed China for a hack of Microsoft Exchange email server software that compromised tens of thousands of computers around the world earlier in the year. (AP Photo/Steven Senne)

The United States, NATO and several allies collectively called out China on Monday for a series of malicious cyber- and ransomware attacks, including a March attack that exploited a flaw in Microsoft’s Exchange Server.

Monday’s announcement, which followed a conference call with White House reporters Sunday night, marks the first time NATO, a military alliance formed to confront the threat posed by the former Soviet Union, has formally condemned China for its allegedly malicious cyber activities.

According to the U.S. and its allies, China’s Ministry of State Security is using contract hackers to conduct the attacks, many of which are being done for profit, including via ransomware.

The March attack using the Exchange flaw crippled tens of thousands of computers around the world.

“We’ve raised our concerns about both the Microsoft incident and the [China’s] broader malicious cyber activity with senior [Chinese] government officials, making clear that these actions threaten security, confidence, and stability in cyberspace,” a senior White House official said Sunday night. 

As part of Monday’s announcement, the Justice Department unveiled criminal charges against four Ministry of State Security hackers for a “multiyear campaign targeting foreign governments and entities in key sectors, including maritime, aviation, defense, education, and health care in a least a dozen countries.”

Microsoft had previously said it believed a hacking group known as HAFNIUM, a Chinese-state sponsored hacking group, was exploiting the vulnerabilities in the program. 

U.S. officials had said they were working to attribute the hack, which was first detected in March. Hackers used zero-day exploits to attack versions of Microsoft’s Exchange Server application and hack into victims’ email accounts.

The White House official attributed the delay between the March event and today’s announcement to the desire to definitively nail down who the bad actors were and to coordinate a response — “a collective defense partnership,” with global partners.

“[China’s] pattern of irresponsible behavior in cyberspace is inconsistent with its stated objective of being seen as a responsible leader in the world,” the official said. 

“Countries around the world are making it clear that concerns regarding the PRC’s malicious cyber activity is bringing them together to call out this activity, promote network defense and cybersecurity, and act to disrupt threats to our economies and national security,” the official added.

Despite its concern over China’s alleged cyber activities, the White House official said the U.S. is holding off taking specific actions to punish the Chinese government, but  leaving the door open to taking action in the future.

“The U.S. and our allies and partners are not ruling out further actions to hold [China] accountable,” the official said. “We are putting forward a common cyber approach with our allies and laying down clear expectations on how responsible nations behave in cyberspace.”

In The News

Health

Voting

Cybercrime

July 29, 2021
by Tom Ramstack
Government Tries to Play Catch-Up Against Fast-Moving Cyberattacks

WASHINGTON -- Congress took a stab Thursday at improving the nation’s cybersecurity as the federal government mobilizes more resources against... Read More

WASHINGTON -- Congress took a stab Thursday at improving the nation’s cybersecurity as the federal government mobilizes more resources against ransomware and hackers. Both President Joe Biden and members of a House Homeland Security subcommittee described threats to U.S. computer systems as a potentially devastating economic... Read More

July 26, 2021
by Reece Nations
Pegasus Spyware Used to Target Activists, Journalists, Report Finds

An investigation by the Paris-based journalism nonprofit Forbidden Stories and the human rights group Amnesty International revealed thousands of people... Read More

An investigation by the Paris-based journalism nonprofit Forbidden Stories and the human rights group Amnesty International revealed thousands of people were targeted by spyware developed by the Israel-based NSO Group Technologies. Hundreds of human rights activists, government officials, business executives and journalists worldwide had their cellphones... Read More

July 20, 2021
by Tom Ramstack
Government Takes Helm on Cybersecurity As Ransomware and Spying Threats Grow

WASHINGTON -- As the international blame game over ransomware heats up this week, the U.S. government is scrambling for solutions... Read More

WASHINGTON -- As the international blame game over ransomware heats up this week, the U.S. government is scrambling for solutions with increasingly combative strategies. Legislation that won tentative approval in Congress on Monday anticipates a bigger role for the U.S. government in overseeing cybersecurity of critical... Read More

China Rejects Hacking Charges, Accuses US of Cyberspying

BEIJING (AP) — China on Tuesday rejected an accusation by Washington and its Western allies that Beijing is to blame... Read More

BEIJING (AP) — China on Tuesday rejected an accusation by Washington and its Western allies that Beijing is to blame for a hack of the Microsoft Exchange email system and complained Chinese entities are victims of damaging U.S. cyberattacks. A foreign ministry spokesman demanded Washington drop... Read More

July 19, 2021
by Kate Michael
Threats of Cyberattack Loom as Space Assets Not ‘Critical Infrastructure’

WASHINGTON — Despite our reliance on space technology for things like communication, transportation, food, and health care — not to... Read More

WASHINGTON — Despite our reliance on space technology for things like communication, transportation, food, and health care — not to mention national security — our national space assets aren’t officially designated as critical infrastructure. Humanity is already dependent on space, but neglecting to protect space technology... Read More

July 19, 2021
by Dan McCue
US, Allies Accuse China of Backing Cyber Attacks Worldwide

The United States, NATO and several allies collectively called out China on Monday for a series of malicious cyber- and... Read More

The United States, NATO and several allies collectively called out China on Monday for a series of malicious cyber- and ransomware attacks, including a March attack that exploited a flaw in Microsoft's Exchange Server. Monday’s announcement, which followed a conference call with White House reporters Sunday... Read More

News From The Well
scroll top