At least 30,000 US organizations, including local governments, have been hacked in the past few days by an “unusually aggressive” Chinese cyberespionage campaign, a computer security specialist said.
The campaign has exploited recently discovered flaws in Microsoft Exchange software, stealing e-mails and infecting computer servers with tools that allow attackers to take control remotely, Brian Krebs said in a post on his cybersecurity news Web site.
“This is an active threat,” White House spokeswoman Jennifer Psaki said when asked about the situation during a press briefing.
Photo: Reuters
“Everyone running these servers needs to act now to patch them. We are concerned that there are a large number of victims,” she added.
After Microsoft released patches for the vulnerabilities on Tuesday, attacks “dramatically stepped up” on servers not yet updated with security fixes, said Krebs, who cited unnamed sources familiar with the situation.
“At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyberespionage unit that’s focused on stealing e-mail from victim organizations,” Krebs wrote in the post.
He reported that insiders said hackers have “seized control” of thousands of computer systems around the world using password-protected software tools slipped into systems.
Microsoft said early this week that a state-sponsored hacking group operating out of China is exploiting previously unknown security flaws in its Exchange e-mail services to steal data from business users.
The company said that the hacking group, which it has named “Hafnium,” is a “highly skilled and sophisticated actor.”
Hafnium has in the past targeted US-based companies, including infectious disease researchers, law firms, universities, defense contractors, think tanks and non-governmental organizations.
In a blog post on Tuesday, Microsoft executive Tom Burt said the company had released updates to fix the security flaws, which apply to on-premises versions of the software rather than cloud-based versions, and urged customers to apply them.
“We know that many nation-state actors and criminal groups will move quickly to take advantage of any unpatched systems,” he added at the time.
Microsoft said the group was based in China, but operated through leased virtual private servers in the US, and that it had briefed the US government.
Beijing has previously hit back at US accusations of state-sponsored cybertheft. Last year, it accused Washington of a smear campaign, following allegations that Chinese hackers were attempting to steal COVID-19 research.
In January, US intelligence and law enforcement agencies said that Russia was probably behind the massive SolarWinds hack that shook the government and corporate security, contradicting then-US president Donald Trump, who had suggested that China could be to blame.
Microsoft said that the Hafnium attacks “were in no way connected to the separate SolarWinds-related attacks.”
Beijing’s continued provocations in the Taiwan Strait reveal its intention to unilaterally change the “status quo” in the area, the US Department of State said on Saturday, calling for a peaceful resolution to cross-strait issues. The Coast Guard Administration (CGA) reported that four China Coast Guard patrol vessels entered restricted and prohibited waters near Kinmen County on Friday and again on Saturday. A State Department spokesperson said that Washington was aware of the incidents, and urged all parties to exercise restraint and refrain from unilaterally changing the “status quo.” “Maintaining peace and stability across the Taiwan Strait is in line with our [the
EXTENDED RANGE: Hsiung Sheng missiles, 100 of which might be deployed by the end of the year, could reach Chinese command posts and airport runways, a source said A NT$16.9 billion (US$534.93 million) project to upgrade the military’s missile defense systems would be completed this year, allowing the deployment of at least 100 long-range Hsiung Sheng missiles and providing more deterrence against China, military sources said on Saturday. Hsiung Sheng missiles are an extended-range version of the Hsiung Feng IIE (HF-2E) surface-to-surface cruise missile, and are believed to have a range of up to 1,200km, which would allow them to hit targets well inside China. They went into mass production in 2022, the sources said. The project is part of a special budget for the Ministry of National Defense aimed at
READY TO WORK: Taiwan is eager to cooperate and is hopeful that like-minded states will continue to advocate for its inclusion in regional organizations, Lai said Maintaining the “status quo” in the Taiwan Strait, and peace and stability in the Indo-Pacific region must be a top priority, president-elect William Lai (賴清德) said yesterday after meeting with a delegation of US academics. Leaders of the G7, US President Joe Biden and other international heads of state have voiced concerns about the situation in the Strait, as stability in the region is necessary for a safe, peaceful and prosperous world, Lai said. The vice president, who is to be inaugurated in May, welcomed the delegation and thanked them for their support for Taiwan and issues concerning the Strait. The international community
COOPERATION: Two crewmembers from a Chinese fishing boat that sank off Kinmen were rescued, two were found dead and another two were still missing at press time The Coast Guard Administration (CGA) was yesterday working with Chinese rescuers to find two missing crewmembers from a Chinese fishing boat that sank southwest of Kinmen County yesterday, killing two crew. The joint operation managed to rescue two of the boat’s six crewmembers, but two were already dead when they were pulled from the water, the agency said in a statement. Rescuers are still searching for two others from the Min Long Yu 61222, a boat registered in China’s Fujian Province that capsized and sank 1.03 nautical miles (1.9km) southwest of Dongding Island (東碇), it added. CGA Director-General Chou Mei-wu (周美伍) told a