China Hacked Microsoft Email Server Software, Says US

"); jQuery("#212 h3").html("

Related News Programmes

"); });

2021-07-19 HKT 19:37

Share this story

facebook

  • The Biden administration has organised a multi-nation public shaming campaign against China, blaming it for the hack of Microsoft Exchange email server software. File photo: AP

    The Biden administration has organised a multi-nation public shaming campaign against China, blaming it for the hack of Microsoft Exchange email server software. File photo: AP

The Biden administration on Monday blamed China for a hack of Microsoft Exchange email server software that compromised tens of thousands of computers around the world earlier this year.

The administration and allied nations also disclosed a broad range of other cyber threats from Beijing, including ransomware attacks from government-affiliated hackers that have targeted companies with demands for millions of dollars.

China's Ministry of State Security has been using criminal contract hackers, who have engaged in cyber extortion schemes and theft for their own profit, according to a senior administration official. That official briefed reporters about the investigation on the condition of anonymity.

The announcements highlighted the ongoing cyber threat posed by Chinese government hackers even as the administration has been consumed with trying to curb ransomware attacks from Russia-based syndicates that have targeted critical infrastructure, including a massive fuel pipeline.

Even though the finger-pointing was not accompanied by any sanctions of Beijing, a senior administration official who disclosed the actions to reporters said that the US has confronted senior Chinese officials and that the White House regards the multi-nation public shaming as sending an importance message.

That hackers affiliated with the Ministry of State Security carried out a ransomware attack was surprising and concerning to the US government, the senior administration official said. But the attack, in which an unidentified American company received a high-dollar ransom demand, also gave US officials new insight into what the official said was “the kind of aggressive behaviour that we're seeing coming out of China.”

The European Union also blamed China for what it said were malicious cyber activities with “significant effects” that targeted government institutions and political organisations in the EU and its 27 member states, as well as key European industries.

In a statement, the EU's foreign policy chief Josep Borrell said the hacking was “conducted from the territory of China for the purpose of intellectual property theft and espionage.”

The majority of the most damaging and high-profile recent ransomware attacks have involved Russian criminal gangs. Though the US has sometimes seen connections between Russian intelligence agencies and individual hackers, the use of criminal contract hackers by the Chinese government “to conduct unsanctioned cyber operations globally is distinct,” the official said.

The Microsoft Exchange hack was first identified in January and was rapidly attributed to Chinese cyber spies by private sector groups. An administration official said the government's attribution to hackers affiliated with China's Ministry of State Security took until now in part because of the discovery of the ransomware and for-profit hacking operations and because the administration wanted to pair the announcement with guidance for businesses about tactics that the Chinese have been using.

An advisory Monday from the FBI, the National Security Agency and the Cybersecurity and Infrastructure Security Agency laid out specific techniques and ways that government agencies and businesses can protect themselves.

The White House also wanted to line up an international coalition of allies to call out China, according to the official, who said it was the first time NATO had condemned Beijing's hacking operations.

A Chinese Foreign Ministry spokesperson, asked about the Microsoft Exchange hack, has previously said that China “firmly opposes and combats cyber attacks and cyber theft in all forms” and cautioned that attribution of cyberattacks should be based on evidence and not “groundless accusations.” (AP)

RECENT NEWS

Tycoon Sits China's University Exams For 27th Time

Among the millions of fresh-faced high schoolers sitting the nation's dreaded "gaokao" college entrance exam on Wednesda... Read more

China's First Home-grown Large Cruise Liner Undocks

The first large cruise liner developed by China completed its undocking in Shanghai on Tuesday, marking its complete tra... Read more

Chinese, US Diplomats Hold 'frank' Talks In Beijing

Meetings between senior mainland and US officials in China this week struck an upbeat chord, with both sides agreeing to... Read more

China's Cruise Industry Set To Make Waves Again

China's cruise industry, suspended for more than three years due to the pandemic, is expected to resume operations in th... Read more

Toll From Deadly Landslide Rises To 19

All 19 people caught in a landslide in Sichuan province on Sunday have been confirmed dead, state media reported, announ... Read more

'Nato-like Alliance Disastrous For Asia-Pacific'

Defence Minister Li Shangfu on Sunday told the Shangri-La Dialogue security summit in Singapore that any moves to establ... Read more