At least 30,000 US organizations, including local governments, have been hacked in the past few days by an “unusually aggressive” Chinese cyberespionage campaign, a computer security specialist said.
The campaign has exploited recently discovered flaws in Microsoft Exchange software, stealing e-mails and infecting computer servers with tools that allow attackers to take control remotely, Brian Krebs said in a post on his cybersecurity news Web site.
“This is an active threat,” White House spokeswoman Jennifer Psaki said when asked about the situation during a press briefing.
Photo: Reuters
“Everyone running these servers needs to act now to patch them. We are concerned that there are a large number of victims,” she added.
After Microsoft released patches for the vulnerabilities on Tuesday, attacks “dramatically stepped up” on servers not yet updated with security fixes, said Krebs, who cited unnamed sources familiar with the situation.
“At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyberespionage unit that’s focused on stealing e-mail from victim organizations,” Krebs wrote in the post.
He reported that insiders said hackers have “seized control” of thousands of computer systems around the world using password-protected software tools slipped into systems.
Microsoft said early this week that a state-sponsored hacking group operating out of China is exploiting previously unknown security flaws in its Exchange e-mail services to steal data from business users.
The company said that the hacking group, which it has named “Hafnium,” is a “highly skilled and sophisticated actor.”
Hafnium has in the past targeted US-based companies, including infectious disease researchers, law firms, universities, defense contractors, think tanks and non-governmental organizations.
In a blog post on Tuesday, Microsoft executive Tom Burt said the company had released updates to fix the security flaws, which apply to on-premises versions of the software rather than cloud-based versions, and urged customers to apply them.
“We know that many nation-state actors and criminal groups will move quickly to take advantage of any unpatched systems,” he added at the time.
Microsoft said the group was based in China, but operated through leased virtual private servers in the US, and that it had briefed the US government.
Beijing has previously hit back at US accusations of state-sponsored cybertheft. Last year, it accused Washington of a smear campaign, following allegations that Chinese hackers were attempting to steal COVID-19 research.
In January, US intelligence and law enforcement agencies said that Russia was probably behind the massive SolarWinds hack that shook the government and corporate security, contradicting then-US president Donald Trump, who had suggested that China could be to blame.
Microsoft said that the Hafnium attacks “were in no way connected to the separate SolarWinds-related attacks.”
Two US House of Representatives committees yesterday condemned China’s attempt to orchestrate a crash involving Vice President Hsiao Bi-khim’s (蕭美琴) car when she visited the Czech Republic last year as vice president-elect. Czech local media in March last year reported that a Chinese diplomat had run a red light while following Hsiao’s car from the airport, and Czech intelligence last week told local media that Chinese diplomats and agents had also planned to stage a demonstrative car collision. Hsiao on Saturday shared a Reuters news report on the incident through her account on social media platform X and wrote: “I
‘BUILDING PARTNERSHIPS’: The US military’s aim is to continue to make any potential Chinese invasion more difficult than it already is, US General Ronald Clark said The likelihood of China invading Taiwan without contest is “very, very small” because the Taiwan Strait is under constant surveillance by multiple countries, a US general has said. General Ronald Clark, commanding officer of US Army Pacific (USARPAC), the US Army’s largest service component command, made the remarks during a dialogue hosted on Friday by Washington-based think tank the Center for Strategic and International Studies. Asked by the event host what the Chinese military has learned from its US counterpart over the years, Clark said that the first lesson is that the skill and will of US service members are “unmatched.” The second
STANDING TOGETHER: Amid China’s increasingly aggressive activities, nations must join forces in detecting and dealing with incursions, a Taiwanese official said Two senior Philippine officials and one former official yesterday attended the Taiwan International Ocean Forum in Taipei, the first high-level visit since the Philippines in April lifted a ban on such travel to Taiwan. The Ocean Affairs Council hosted the two-day event at the National Taiwan University Hospital International Convention Center. Philippine Navy spokesman Rear Admiral Roy Vincent Trinidad, Coast Guard spokesman Grand Commodore Jay Tarriela and former Philippine Presidential Communications Office assistant secretary Michel del Rosario participated in the forum. More than 100 officials, experts and entrepreneurs from 15 nations participated in the forum, which included discussions on countering China’s hybrid warfare
MORE DEMOCRACY: The only solution to Taiwan’s current democratic issues involves more democracy, including Constitutional Court rulings and citizens exercising their civil rights , Lai said The People’s Republic of China (PRC) is not the “motherland” of the Republic of China (ROC) and has never owned Taiwan, President William Lai (賴清德) said yesterday. The speech was the third in a series of 10 that Lai is scheduled to deliver across Taiwan. Taiwan is facing external threats from China, Lai said at a Lions Clubs International banquet in Hsinchu. For example, on June 21 the army detected 12 Chinese aircraft, eight of which entered Taiwanese waters, as well as six Chinese warships that remained in the waters around Taiwan, he said. Beyond military and political intimidation, Taiwan