The US government has launched an operation to fight a pervasive Chinese hacking operation that successfully compromised thousands of Internet-connected devices, two Western security officials and one person familiar with the matter said.
The US Department of Justice and the FBI sought and received legal authorization to remotely disable aspects of the Chinese hacking campaign, the sources said.
The administration of US President Joe Biden has increasingly focused on hacking, not only for fear nation states might try to disrupt the US election in November, but because ransomware wreaked havoc at US corporations last year.
Photo: AFP
The hacking group at the center of the activity, Volt Typhoon, has especially alarmed intelligence officials, who say it is part of a larger effort to compromise Western critical infrastructure, including naval ports, Internet service providers and utilities.
While the Volt Typhoon campaign initially came to light in May last year, the hackers expanded the scope of their operations late last year and changed some of their techniques, three people familiar with the matter said.
The widespread nature of the hacks led to a series of meetings between the White House and the technology industry, including several telecoms and cloud computing companies, where the US government asked for assistance in tracking the activity.
Such breaches could enable China to remotely disrupt important facilities in the Indo-Pacific region that in some form support or service US military operations, national security experts said.
Sources said US officials are concerned that the hackers were working to hurt US readiness in case of a Chinese invasion of Taiwan.
The justice department and the FBI declined to comment. The Chinese embassy in Washington did not immediately respond to a request for comment.
When Western nations first warned about Volt Typhoon in May last year, Chinese Ministry of Foreign Affairs spokeswoman Mao Ning (毛寧) said the hacking allegations were a “collective disinformation campaign” from the Five Eyes nations, a reference to the intelligence sharing grouping made up of the US, Canada, New Zealand, Australia and the UK.
Volt Typhoon has functioned by taking control of swaths of vulnerable digital devices around the world — such as routers, modems and even Internet-connected security cameras — to hide later, downstream attacks into more sensitive targets, security researchers said.
This constellation of remotely controlled systems, known as a botnet, are of primary concern to security officials because they limit the visibility of cyberdefenders that monitor for foreign footprints in their computer networks.
“How it works is the Chinese are taking control of a camera or modem that is positioned geographically right next to a port or ISP [Internet service provider] and then using that destination to route their intrusions into the real target,” a former official familiar with the matter said.
“To the IT team at the downstream target it just looks like a normal, native user that’s sitting nearby,” the official said.
It is usually a serene two-and-a-half-hour ride on Japan’s famously efficient bullet train, but on Saturday, the journey quickly descended into a zombie apocalypse, with passengers screaming in terror. Organizers of the adrenaline-filled trip, less than two weeks before Halloween, touted it as the world’s first haunted house experience on a running Shinkansen. On board one chartered car of the Shinkansen, about 40 thrill-seekers were ready to brave an encounter with the living dead between Tokyo and the western metropolis of Osaka. The eerie experience was inspired by the hit 2016 South Korean action-horror movie Train to Busan, in which a father and
IRANIAN THREATS: Revolutionary Guards chief Hossein Salami said that it would be a ‘mistake’ for Israel to attack Iran and if it did ‘we will strike you again painfully’ Israel yesterday bombed a Syrian coastal city, while the US conducted multiple strikes on targets in Yemen nearly a month into Israel’s war with Hezbollah in Lebanon. Syria, the Houthi rebels in Yemen, Hezbollah and Hamas in Gaza all belong to the so-called “axis of resistance” led by Iran, which on Oct. 1 conducted a missile strike on Israel. Israel has vowed to retaliate for the strike. Iran’s Revolutionary Guards chief Hossein Salami yesterday said in a speech that Tehran would hit Israel “painfully” if it attacks Iranian targets. “If you make a mistake and attack our targets, whether in the region or in
NEW RECRUITS: A video released by Ukrainian officials allegedly shows dozens of North Koreans lining up to collect military fatigues from Russian servicemen Russian aerial strikes wounded more than a dozen and knocked out electricity for tens of thousands of Ukrainians overnight in attacks on residential areas as temperatures dropped toward freezing, Kyiv said yesterday. Ukraine also said it had targeted a crucial Russian explosives factory, about 750km from the border, in an overnight drone attack, while Moscow said it had shot down 110 drones, the largest attempted aerial barrage by Kyiv in more than two weeks. At least 17 people were wounded in an attack on Kryvyi Rig, Ukraine, including a first responder, the Ukrainian State Emergency Service said. “At night, the enemy attacked Kryvyi
The space rock that slammed into Earth 66 million years ago at the end of the Cretaceous Period caused a global calamity that doomed the dinosaurs and many other life forms, but that was far from the largest meteorite to strike our planet. One up to 200 times bigger landed 3.26 billion years ago, triggering worldwide destruction at an even greater scale, but as new research shows, that disaster actually might have been beneficial for the early evolution of life by serving as “a giant fertilizer bomb” for the bacteria and other single-celled organisms called archaea that held dominion at the