US Acts Against Chinese Hacking Operation
The U.S. government has undertaken a major operation against an extensive Chinese hacking campaign that successfully infiltrated thousands of internet-connected devices. According to sources, the Justice Department and the Federal Bureau of Investigation received legal authorization to remotely disable certain aspects of this Chinese hacking effort. The operation is primarily focused on countering the activities of the hacking group known as Volt Typhoon. This group has raised alarms among intelligence officials due to its involvement in a broader initiative to compromise critical Western infrastructure, including naval ports, internet service providers, and utilities.
The Biden administration, concerned about potential disruptions to the U.S. election and the impact of ransomware attacks on Corporate America, has increasingly directed attention towards cybersecurity threats. Volt Typhoon, a central figure in recent hacking activities, has drawn special attention from intelligence agencies for its potential to compromise Western critical infrastructure. This includes facilities such as naval ports and internet service providers. The hacking group has expanded its operations and modified techniques, heightening concerns about the nature and scale of its attacks.
While Volt Typhoon initially gained attention in May 2023, it extended the scope of its operations later that year, incorporating new tactics. The U.S. government responded to the widespread nature of these attacks with meetings involving the White House and private technology industry representatives. Authorities sought assistance from telecommunications and cloud computing companies to track and counteract Volt Typhoon’s activities.
National security experts express worries that such cyber breaches could empower China to remotely disrupt facilities in the Indo-Pacific region supporting or servicing U.S. military operations. There is particular concern that the hacking activities might be aimed at undermining U.S. readiness in the event of a Chinese invasion of Taiwan. China considers Taiwan its own territory and has escalated military activities near the island.
Also Read:Passenger Hits Pilot on Delhi-Goa IndiGo Flight: Minister Scindia Promises Strong Response
Volt Typhoon operates by taking control of vulnerable digital devices worldwide, including routers, modems, and internet-connected security cameras. This vast network of compromised devices forms a botnet, a primary concern for security officials. Botnets limit the visibility of cybersecurity defenders monitoring foreign footprints in computer networks. The hacking group strategically uses these compromised devices to conceal and facilitate more targeted attacks on sensitive systems.
The Chinese embassy in Washington has not provided an immediate response to requests for comments on the matter. When Volt Typhoon was first highlighted by Western nations in May, the Chinese foreign ministry dismissed the allegations as a “collective disinformation campaign” orchestrated by the Five Eyes countries, referring to the intelligence sharing group consisting of the United States, Canada, New Zealand, Australia, and the UK.