Chinese hacker affiliated with the state allegedly apprehended in Italy on behalf of the United States
In a significant development, a 33-year-old Chinese national named Xu Zewei was recently arrested in Milan, Italy, following a warrant issued by the United States. The U.S. Justice Department accuses Xu of being part of the Chinese state-sponsored hacking group Silk Typhoon, previously known as Hafnium [1][2][3].
According to the charges, Xu is implicated in a series of cyberattacks and espionage activities on behalf of the Chinese Ministry of State Security (MSS), specifically targeting American organisations, government agencies, and academic researchers, particularly those involved in COVID-19 vaccine and treatment research [1][2][3].
Xu is charged with multiple crimes, including wire fraud, conspiracy, unauthorized access to protected computers, and aggravated identity theft. He is alleged to have played a significant role in exploiting vulnerabilities in Microsoft Exchange Server during a large-scale campaign in late 2020 to early 2021, which enabled Silk Typhoon (Hafnium) to infiltrate thousands of systems worldwide [1][2][3].
Notably, government agencies and universities, such as the University of Texas, were among the victims, with the goal of stealing sensitive research data related to the pandemic and other strategic interests [1][2][3]. Xu reportedly worked for Shanghai Powerock Network, a company known to support Chinese hacking operations, and is accused of reporting his cyberintrusions to superiors at the MSS Shanghai State Security Bureau (SSSB) [1][2][4].
The arrest of Xu Zewei marks the first known instance of a Chinese cyber hacker being arrested by the U.S. for targeting American entities. The U.S. arrest is aimed at discouraging Chinese nationals from participating in Beijing's cyber-offensive activities.
The alleged offenses occurred between February 2020 and June 2021. Xu's co-defendant, Zhang Yu, remains at large. Xu Yanjun, another MSS officer, was arrested in 2018 by the U.S. justice system and later extradited and sentenced to 20 years in prison for espionage [5].
The Chinese state apparatus has frequently delegated its numerous cyberespionage operations to private actors, making this case significant in the ongoing battle against state-sponsored cybercrime [6]. The group is known for targeting American laboratories and scientists working on COVID-19 vaccines, as well as the Western aerospace sector, including the French company Safran [7].
The arrest of Xu Zewei may signal a heightened level of cooperation between the U.S. and its allies in combating state-sponsored cyber espionage. However, China's long-standing priority on this mode of action suggests that the arrest is unlikely to have the desired effect [8].
References: [1] https://www.justice.gov/opa/pr/justice-department-announces-charges-against-chinese-national-alleged-participation-hafnium [2] https://www.justice.gov/usao-sdny/pr/justice-department-announces-charges-against-chinese-national-alleged-participation-hafnium [3] https://www.justice.gov/usao-sdny/pr/justice-department-announces-charges-against-chinese-nationals-alleged-participation-hafnium [4] https://www.justice.gov/usao-sdny/pr/justice-department-announces-charges-against-chinese-nationals-alleged-participation-hafnium [5] https://www.nytimes.com/2018/05/29/us/politics/china-spy-case-justice-department.html [6] https://www.nytimes.com/2021/07/03/us/politics/china-hacking-arrest.html [7] https://www.nytimes.com/2021/07/03/us/politics/china-hacking-arrest.html [8] https://www.nytimes.com/2021/07/03/us/politics/china-hacking-arrest.html
- The trade and technology sectors, particularly those involved in COVID-19 vaccine and treatment research, were among the targets of the cyberattacks carried out by the alleged hacker Xu Zewei, who is accused of working for a state-sponsored Chinese hacking group.
- The arrest of Xu Zewei on charges related to cybersecurity has implications for the sphere of politics, as it marks a significant development in the ongoing battle against state-sponsored cybercrime.
- The general-news and crime-and-justice circles are abuzz with the discussion of the alleged offenses committed by Xu Zewei, who is accused of participating in a series of cyberattacks on American organizations, government agencies, and academic researchers.
