The US government has launched an operation to fight a pervasive Chinese hacking operation that successfully compromised thousands of Internet-connected devices, two Western security officials and one person familiar with the matter said.
The US Department of Justice and the FBI sought and received legal authorization to remotely disable aspects of the Chinese hacking campaign, the sources said.
The administration of US President Joe Biden has increasingly focused on hacking, not only for fear nation states might try to disrupt the US election in November, but because ransomware wreaked havoc at US corporations last year.
Photo: AFP
The hacking group at the center of the activity, Volt Typhoon, has especially alarmed intelligence officials, who say it is part of a larger effort to compromise Western critical infrastructure, including naval ports, Internet service providers and utilities.
While the Volt Typhoon campaign initially came to light in May last year, the hackers expanded the scope of their operations late last year and changed some of their techniques, three people familiar with the matter said.
The widespread nature of the hacks led to a series of meetings between the White House and the technology industry, including several telecoms and cloud computing companies, where the US government asked for assistance in tracking the activity.
Such breaches could enable China to remotely disrupt important facilities in the Indo-Pacific region that in some form support or service US military operations, national security experts said.
Sources said US officials are concerned that the hackers were working to hurt US readiness in case of a Chinese invasion of Taiwan.
The justice department and the FBI declined to comment. The Chinese embassy in Washington did not immediately respond to a request for comment.
When Western nations first warned about Volt Typhoon in May last year, Chinese Ministry of Foreign Affairs spokeswoman Mao Ning (毛寧) said the hacking allegations were a “collective disinformation campaign” from the Five Eyes nations, a reference to the intelligence sharing grouping made up of the US, Canada, New Zealand, Australia and the UK.
Volt Typhoon has functioned by taking control of swaths of vulnerable digital devices around the world — such as routers, modems and even Internet-connected security cameras — to hide later, downstream attacks into more sensitive targets, security researchers said.
This constellation of remotely controlled systems, known as a botnet, are of primary concern to security officials because they limit the visibility of cyberdefenders that monitor for foreign footprints in their computer networks.
“How it works is the Chinese are taking control of a camera or modem that is positioned geographically right next to a port or ISP [Internet service provider] and then using that destination to route their intrusions into the real target,” a former official familiar with the matter said.
“To the IT team at the downstream target it just looks like a normal, native user that’s sitting nearby,” the official said.
Seven people sustained mostly minor injuries in an airplane fire in South Korea, authorities said yesterday, with local media suggesting the blaze might have been caused by a portable battery stored in the overhead bin. The Air Busan plane, an Airbus A321, was set to fly to Hong Kong from Gimhae International Airport in southeastern Busan, but caught fire in the rear section on Tuesday night, the South Korean Ministry of Land, Infrastructure and Transport said. A total of 169 passengers and seven flight attendants and staff were evacuated down inflatable slides, it said. Authorities initially reported three injuries, but revised the number
‘BALD-FACED LIE’: The woman is accused of administering non-prescribed drugs to the one-year-old and filmed the toddler’s distress to solicit donations online A social media influencer accused of filming the torture of her baby to gain money allegedly manufactured symptoms causing the toddler to have brain surgery, a magistrate has heard. The 34-year-old Queensland woman is charged with torturing an infant and posting videos of the little girl online to build a social media following and solicit donations. A decision on her bail application in a Brisbane court was yesterday postponed after the magistrate opted to take more time before making a decision in an effort “not to be overwhelmed” by the nature of allegations “so offensive to right-thinking people.” The Sunshine Coast woman —
BORDER SERVICES: With the US-funded International Rescue Committee telling clinics to shut by tomorrow, Burmese refugees face sudden discharge from Thai hospitals Healthcare centers serving tens of thousands of refugees on the Thai-Myanmar border have been ordered shut after US President Donald Trump froze most foreign aid last week, forcing Thai officials to transport the sickest patients to other facilities. The International Rescue Committee (IRC), which funds the clinics with US support, told the facilities to shut by tomorrow, a local official and two camp committee members said. The IRC did not respond to a request for comment. Trump last week paused development assistance from the US Agency for International Development for 90 days to assess compatibility with his “America First” policy. The freeze has thrown
TESTING BAN: Satellite photos show a facility in the Chinese city of Mianyang that could aid nuclear weapons design and power generation, a US researcher said China appears to be building a large laser-ignited fusion research center in the southwestern city of Mianyang, experts at two analytical organizations said, a development that could aid nuclear weapons design and work exploring power generation. Satellite photos show four outlying “arms” that would house laser bays, and a central experiment bay that would hold a target chamber containing hydrogen isotopes the powerful lasers would fuse together, producing energy, said Decker Eveleth, a researcher at US-based independent research organization CNA Corp. It is a similar layout to the US$3.5 billion US National Ignition Facility (NIF) in northern California, which in 2022 generated
RSS