WASHINGTON (AP) — Hackers linked to the Chinese government launched a sweeping, state-backed operation that targeted U.S. officials, journalists, corporations, pro-democracy activists and the U.K.’s election watchdog, American and British authorities said Monday in announcing a set of criminal charges and sanctions.

The purpose of the campaign, which authorities claim originated in 2010, was to intimidate opponents of the Chinese government, steal confidential information from American companies, and monitor the activities of influential political leaders. Officials from Western countries exposed the efforts of a hacking group called APT31, highlighting concerns about a nation known for its highly advanced spying abilities during an important election year.

Seven hackers living in China have been charged by the U.S. Justice Department. In a separate announcement, the British government placed sanctions on a company and two defendants who were allegedly involved in a security breach that may have allowed the Chinese to obtain information on millions of British voters held by the Electoral Commission.

In a statement, Attorney General Merrick Garland stated that the Justice Department will not accept any attempts by the Chinese government to intimidate people serving in public roles, silence those who are protected by American laws and steal from American businesses. Garland also highlighted that this case is a clear example of the lengths the Chinese government will go to in order to target and intimidate its critics.

According to prosecutors, the hackers involved in the cyber-attack campaign sent out over 10,000 emails to various individuals around the globe. These emails appeared to be from well-known journalists, but in reality, they contained harmful code. When the recipients opened the emails, the code installed tracking software which gave the hackers access to the victims’ location, IP addresses, and even the type of device used for email.

The hackers used the tracking information to also attack household routers and other technological devices. The targets reportedly included important American government officials, politicians, and staff members working on election campaigns for both major political parties in the United States. The indictment provides this information.

The intended recipients of the targeting were individuals associated with the White House and various government agencies such as the Treasury and Commerce departments, as well as senators from different parties. This also included the spouse of a high-ranking member of the Justice Department, political advisors, and global political figures who spoke out against the Chinese government. Among these individuals were also members of a pro-democracy organization.

In May 2020, the Justice Department reported that the hackers had initiated a campaign to access the email accounts of key personnel from a presidential campaign, well before the scheduled election.

Proofpoint, a cybersecurity company, identified in a blog post that the hackers primarily targeted journalists based in Washington, specifically White House correspondents, with phishing schemes leading up to the Jan. 6, 2021 assault on the Capitol building.

Britain imposed sanctions after publicly stating in August that its servers were breached by “hostile actors” between 2021 and 2022.

The watchdog stated that the information at hand consisted of the names and addresses of individuals registered to vote. However, they also noted that a significant portion of this data was already accessible to the public.

On Monday, the Foreign Office stated that the hacking of the election registers did not have any impact on the electoral processes or on the rights and access to the democratic process of any individual. It also did not affect electoral registration.

In 2021, British cybersecurity experts reported that APT31 hackers performed preliminary surveillance against British politicians who expressed disapproval of Beijing. They stated that no parliamentary accounts were successfully breached.

Three politicians, among them former leader of the Conservative Party Iain Duncan Smith, informed the press on Monday that they have been continuously targeted by China through harassment, impersonation, and attempted hacking. Smith revealed that he himself has been impersonated by hackers who used fraudulent email addresses to communicate with his contacts.

Previously, APT31 was alleged to have targeted presidential campaigns in the United States as well as the information systems of Finland’s parliament and other entities.

The British Deputy Prime Minister, Oliver Dowden, stated that his government plans to convene with the Chinese ambassador to hold them responsible for their actions.

According to China’s Ministry of Foreign Affairs, nations should rely on evidence when making claims, rather than making unsubstantiated accusations.

According to Lin Jian, a spokesperson for the ministry, discussions about cybersecurity should not be influenced by politics. The ministry urges everyone to refrain from sharing misinformation and instead approach the issue with a sense of responsibility, in order to preserve peace and security in the digital world.

The Chinese embassy also stated that the U.S. has made baseless accusations and drawn unjustified conclusions about China without any substantial proof.

The embassy released a statement condemning the extreme irresponsibility and distortion of facts, stating that China strongly disagrees with it.

The British Prime Minister, Rishi Sunak, emphasized that China is displaying more aggressive behavior in its dealings with other countries and poses the biggest threat to our economic stability.

He stated that it is necessary for us to take precautions to ensure our safety, which is exactly what we are currently doing. However, he did not provide any specifics.

In the past, American authorities have filed numerous criminal charges against hackers associated with the Chinese government. They have also voiced worries about Chinese government interference and the possibility of Beijing interfering in the United States’ presidential elections.

In an intelligence report from 2021, it was determined that China did not interfere in the 2020 election for either candidate. The country had planned to use influence tactics to sway the outcome but ultimately did not follow through. U.S. officials state that China’s main priority was maintaining a stable relationship with the U.S. and did not view either potential election result as worth the potential backlash if caught meddling.

The Department of Justice stated that the charges revealed on Monday do not change their initial findings, clarifying that there is no claim that the cyber attack was intended to advance a Chinese government campaign to influence the United States.

Despite this, Matthew Olsen, the top national security official at the Department of Justice, stated that it is crucial to stay vigilant against cybersecurity threats and the possibility of foreign malicious interference through cyber means, particularly as the 2024 election draws near.

_____

From London, Hui provided a report. This report was also contributed to by Associated Press writers Frank Bajak in Boston, Didi Tang in Washington, and Dave Collins in Hartford, Connecticut.

Source: wral.com