US charges five Chinese, two Malaysians with hacking

Published September 17, 2020
Three of the Chinese suspects operated out of Chengdu 404, a Sichuan-based company that purported to offer network security services for other businesses. —Reuters/File
Three of the Chinese suspects operated out of Chengdu 404, a Sichuan-based company that purported to offer network security services for other businesses. —Reuters/File

WASHINGTON: The US Justice Department on Wednesday announced charges against five Chinese nationals and two Malaysians who ran global hacking operations for at least six years to steal identities and video game technology, plant ransomware, and spy on Hong Kong activists.

Three of the Chinese suspects operated out of Chengdu 404, a Sichuan-based company that purported to offer network security services for other businesses.

They hacked the computers of hundreds of companies and organisers around the world to collect identities, hijack systems for ransom, and remotely use thousands of computers to mine for cryptocurrency like bitcoin.

Two other Chinese nationals who formerly worked for Chengdu 404, and the two Malaysians, were indicted for hacking into major gaming companies to steal their secrets and “gaming artifacts,” likely tradable in-game chits and credits, and resell them.

Together the seven were long recognized by cybersecurity experts as the “APT41” hacking organisation, identified by their shared tools and techniques.

While some had thought that the group could be run by the Chinese government, the indictments did not identify a strong official connection.

But according to court filings, Jiang Lizhi, one of the Chengdu 404 hackers, boasted to a colleague in 2012 that he was protected by China’s Ministry of State Security, and indicated they were protected if they did not hack domestically.

“Some of these criminal actors believed their association with the PRC provided them free license to hack and steal across the globe,” federal prosecutor Michael Sherwin said in a statement.

The charges did not indicate any direct political motivations behind the hackers’ activities, though they did gain access to government computer systems in India and Vietnam.

Published in Dawn, September 17th, 2020

Opinion

Editorial

Failed martial law
Updated 05 Dec, 2024

Failed martial law

Appetite for non-democratic systems of governance appears to be shrinking rapidly. Perhaps more countries are now realising the futility of rule by force.
Holding the key
05 Dec, 2024

Holding the key

IN the view of one learned judge of the Supreme Court’s recently formed constitutional bench, parliament holds the...
New low
05 Dec, 2024

New low

WHERE does one go from here? In the latest blow to women’s rights in Afghanistan, the Taliban regime has barred...
Online oppression
Updated 04 Dec, 2024

Online oppression

Plan to bring changes to Peca is simply another attempt to suffocate dissent. It shows how the state continues to prioritise control over real cybersecurity concerns.
The right call
04 Dec, 2024

The right call

AMIDST the ongoing tussle between the federal government and the main opposition party, several critical issues...
Acting cautiously
04 Dec, 2024

Acting cautiously

IT appears too big a temptation to ignore. The wider expectations for a steeper reduction in the borrowing costs...