Chinese Cybersecurity Agency Exposes Alleged US Attacks Cyber Espionage
The National Computer Network Emergency Response Technical Team/Coordination Centre of China (CNCERT), a prominent cybersecurity organization, has accused the United States of orchestrating cyberattacks to steal business secrets from a Chinese research unit and a technology company. This revelation comes as the US government investigates the Chinese router manufacturer TP-Link for potential national security threats. CNCERT, a non-governmental entity that monitors cyber threats, released a statement on Wednesday detailing the incidents, which was extensively covered by Chinese state media.
According to CNCERT, since August, an advanced materials design research center in China has been the target of cyberattacks allegedly perpetrated by US intelligence agencies. The attackers reportedly exploited a vulnerability in the center’s electronic document security system, infiltrating its servers and deploying a Trojan horse virus. This virus compromised over 270 hosts through a software upgrade mechanism, enabling unauthorized access and the theft of proprietary commercial secrets.
Another significant attack, identified in May 2023, involved a breach in Microsoft Exchange software. The hackers targeted the email server of a prominent high-tech company specializing in smart energy and digital information. By planting back-door programs, the attackers accessed email data and seized control of over 30 devices to exfiltrate sensitive business information. CNCERT’s statement underscores the severity of these intrusions, portraying them as deliberate efforts to undermine Chinese technological advancement.
China Reports Broader Cybersecurity Threats Cyber Espionage
In its weekly report, CNCERT highlighted its collaboration with various stakeholders, including cloud service providers, domain name registrars, app stores, and international organizations, to address 146 network security incidents. Among these, 92 were cross-border cases, showcasing the global nature of cyber threats. The report also uncovered 2,950 data security breaches and warned of vulnerabilities in widely used software programs such as Adobe Illustrator, Android, IBM Cognos Controller, and Apache NimBLE.
This ongoing exchange of accusations between China and the United States reflects escalating cyber tensions. The US has consistently targeted China-linked technology firms, citing concerns over potential threats to its networks and data. Recent reports indicated that TP-Link, a Chinese router manufacturer, is under scrutiny by US authorities for alleged links to cyberattacks originating from China. This investigation aligns with broader efforts to clamp down on technology perceived as jeopardizing national security.
China Pushes Back Against US Accusations
China has firmly denied the allegations, accusing the United States of engaging in its own cyber espionage activities. Earlier this month, a Chinese embassy spokesperson in Washington urged the US to cease its cyberattacks on other nations and refrain from using cybersecurity concerns to malign China. Beijing’s stance was bolstered last year by a report claiming that the CIA had deployed advanced cyberweapons to attack multiple countries, including China. The report alleged that Chinese investigators had retrieved numerous Trojan programs, functional plug-ins, and attack platform samples directly linked to the CIA, exposing an extensive network of US-controlled hackers.
Amid these allegations, a White House official revealed that at least eight US telecom firms and numerous countries had suffered from a Chinese hacking campaign. This claim adds to the mounting tensions between the two nations, further straining their already fraught relationship. As both sides exchange blame over cybersecurity breaches, the incidents highlight the critical need for robust international measures to address and mitigate cyber threats on a global scale.
