Chinese hackers responsible for two ‘malicious’ cyber campaigns against UK

[Pelican Press 0]

******** hackers responsible for two ‘malicious’ cyber campaigns against ***

******** state affiliated hackers were responsible for two malicious cyber-******* campaigns targeting *** parliamentarians and democratic institutions, Oliver Dowden told the Commons.

The Deputy Prime Minister said that the National Cyber Security Centre (NCSC), part of GCHQ, had identified a ******** state-affiliated hacking group responsible for infiltrating the IT systems of the *** Electoral Commission between 2021 and 2023.

 A ******** state-affiliated group, known as APT31 also conducted reconnaissance activities against *** Parliamentarians in a separate campaign in 2021, Dowden revealed.

“This is the latest in a clear pattern of hostile activity originating in China, including the targeting of democratic institutions and parliamentarians in the ******* Kingdom and beyond, ” he said.

“Taken together the ******* Kingdom judges that these actions demonstrate a clear and persistent pattern of behaviour that signals hostile intent against China,” he added.

Sanctions

Dowden announced that the government was applying sanctions to two individuals and a front company linked to the ******** state affiliated hacking group, known as Advanced Persistent Threat Group 31 (APT31).

The Foreign, Commonwealth and Development Office summoned the ******** ambassador to the *** to answer questions about the hacking attacks.

Dowden’s comments came as the

This is the hidden content, please

• Sign In
• or
• Sign Up

, linked to APT31 with *********** to commit computer intrusions and *********** to commit wire ******.

According to the US indictment, the group targeted email accounts of lawmakers in the ********* Union and the ***, who were members of the Inter-Parliamentary Alliance on China (IPAC), a group set up to counter the threats posed by the ******** ********** Party to democratic principles.

The targets included every ********* Union member of IPAC, and 43 ******* Kingdom parliamentary accounts, most of whom were members of IPAC or had been outspoken on the People’s Republic of China.

China ‘held to account’

Dowden said that the *** would continue to engage with China but would not hesitate to take “swift and robust” actions wherever the ******** government threatens the ***’s interest.

“This government will continue to hold China and other state actors accountable for their actions. We will also take serious action to prevent this behavior from affecting our security,” he said.

Dowden told the Commons that ********-stake linked hackers were highly likely to have been behind a hacking operation which compromised the Electoral Commission between 2021 and 2022.

The Electoral Commission disclosed in August 2023 that it had been subject to a major cyber ******* in 2021, which remained undetected for 12 months.

A ******** state-affiliated hacking group was able to access voting registers including the names and addresses of everybody in the *** who registered to vote between 2014 and 2022, including those who opted to keep their details off the open register and the names of registered overseas voters.

Separately the APT31 group conducted what Dowden described as “reconnaissance activity” against *** parliamentarians, which, according to the US Department of Justice, impacted 43 lawmakers and officials.

“Our political processes and institutions have not been harmed by these attacks,” he said.

The APT 31 Group, part of a cyber-espionage programme run by the Ministry of State Security’s Hubei State Security Department, in Wuhan, targeted political dissidents, inside and outside China, and government officials, candidates, and campaign staff overseas including the ***.

MPs demand tougher line

During an earlier press conference on Monday 25 March, former ************* Party leader, Iain Duncan Smith, Tim Loughton MP, and Stewart McDonald MP, who are understood to have had their emails targeted by APT31, called for the government to take a tougher line on China.

Duncan Smith said that he had been a victim of impersonation for some time. Someone pretending to be him had used a fake email address, and emailed politicians around the world falsely stating that Duncan Smith had recounted his views.

“We know that many of us have hacking attempts, some fairly shallow attempts, but nonetheless hacking and some more serious,” he said.

Stewart McDonald SNP MP, whose emails had previously been accessed by a Russian hacking group, Star Blizzard in a phishing *******, said that the influence of China was wider than a foreign policy issue, and affected the ***’s energy, universities, political system and critical national infrastructure.

The three MPs criticised the *** for failing to impose any sanctions on ******** officials responsible for destroying freedoms in Hong Kong, and urged it to place China in the  ‘Enhanced Tier’ of the new

This is the hidden content, please

• Sign In
• or
• Sign Up

, which is designed to protect the *** political system against covert foreign influence.

Government decouples from China

Dowden said that the government had taken steps to limit the activities of China in the ***, including introducing an offence of foreign interference in a new National Security Act and giving government the powers to block overseas investments that could impact national security through the National Security and Investment Act.

He said that the government had “significantly reduced” China’s involvement in the *** civil nuclear sector, and  had put measures in place to “prevent hostile infiltration” of universities. It had also taken steps to reduce government exposure to the ******** companies, Hikvision and Tiktok by banning them from public buildings.

The NCSC is also working with political parties to increase the uptake of their active cyber defence services in the lead up to a general election, said Dowden. He said Parliamentarians could join an-opt in service that allows the NCSC to alert high risk individuals if they identify evidence of malicious activity.

The *** has sanctioned Wuhan Xiaoruizhi Science and Technology company limited, and Zhao Guangzong and Ni Gaobin, members of APT31, operating on behalf of the ******** Ministry of State Security (MSS), for cyber activities targeting officials, government entities, and parliamentarians in the *** and internationally.

Epoch defining challenge

Speaking during a visit to Barrow-in-Furness, Prime Minister Rishi Sunak said that China represented an “epoch-defining challenge”.

“We’ve been very clear that the situation now is that China is behaving in an increasingly assertive way abroad, authoritarian at home and it represents an epoch-defining challenge, and also the greatest state-based threat to our economic security,” he said.

The Foreign Secretary David Cameron said, “It is completely unacceptable that China state-affiliated organisations and individuals have targeted our democratic institutions and political processes. While these attempts to interfere with *** democracy have not been successful, we will remain vigilant and resilient to the threats we face.”

Home Secretary James Cleverly said that the ***’s imminent elections were secure from overseas influence.

“China’s attempts at espionage did not give them the results they wanted and our new National Security Act has made the *** an even ******* target. Our upcoming elections, at local and national level, are robust and secure,” he said.

The Electoral Commission’s Chair, John Pullinger, said that the cyber-******* did not impact the security of *** elections.

“In a year of significant electoral events, we remain vigilant to the risks facing our electoral process, and will continue to work with the ***’s governments and the wider electoral community to safeguard the safety of the system,” he said.

“The data accessed when this ******* took place does not impact how people register, vote, or participate in democratic processes. It has no impact on the management of the electoral registers or on the running of elections,” he added.

This is the hidden content, please

• Sign In
• or
• Sign Up

#******** #hackers #responsible #malicious #cyber #campaigns

This is the hidden content, please

• Sign In
• or
• Sign Up