US State Department warns China could hack infrastructure, including pipelines, rail systems

The Chinese government has rejected assertions that its spies are going after Western targets. PHOTO: REUTERS
Updated
May 26, 2023, 02:49 PM
Published
May 26, 2023, 03:32 AM

WASHINGTON - The US State Department warned on Thursday that China was capable of launching cyber attacks against critical infrastructure, including oil and gas pipelines and rail systems, after researchers discovered a Chinese hacking group had been spying on such networks.

A multi-nation alert issued on Wednesday revealed that the Chinese cyber espionage campaign had been aimed at military and government targets in the United States.

The Chinese government has rejected assertions that its spies are going after Western targets, calling the joint warning issued by the US and its allies a “collective disinformation campaign”.

“The US intelligence community assesses that China almost certainly is capable of launching cyber attacks that could disrupt critical infrastructure services within the United States, including against oil and gas pipelines and rail systems,” State Department spokesman Matthew Miller said in a press briefing.

“It’s vital for government and network defenders in the public to stay vigilant.”

The espionage group – dubbed “Volt Typhoon” by Microsoft – was the subject of an alert issued by cyber security and intelligence agencies in the US, Britain and their close allies.

US agencies have been pushing for improved cyber security practices in its majority-privately held critical infrastructure industry, after the 2021 hack of the key Colonial Pipeline disrupted nearly half of the US East Coast’s fuel supply.

Microsoft’s researchers said Volt Typhoon was developing capabilities “that could disrupt critical communications infrastructure between the United States and Asia region during future crises” – a nod to escalating tensions between China and the US over Taiwan and other issues.

The group has targeted critical infrastructure organisations in the US Pacific territory of Guam, said Microsoft, adding that the security firm Fortinet’s FortiGuard devices were being abused by Volt Typhoon to break into its targets.

Researcher Marc Burnard, whose organisation Secureworks has dealt with several intrusions tied to Volt Typhoon, said Secureworks had seen no evidence of destructive activity by Volt Typhoon, but that its hackers were focused on stealing information that would “shed light on US military activities”.

Chinese foreign ministry spokesman Mao Ning told reporters that the alerts, issued by the US, Britain, Canada, Australia and New Zealand, were intended to promote their intelligence alliance, known as the Five Eyes – and that it was Washington that was guilty of hacking.

“The United States is the empire of hacking,” Ms Mao said. REUTERS

More On This Topic
China-sponsored cyber actor targeting critical US infrastructure, say intelligence agencies
Beware of the Snake, Russia’s most sophisticated cyber espionage tool

Join ST's Telegram channel and get the latest breaking news delivered to you.

Available for
iPhones and iPads
Available in
Google Play

MCI (P) 066/10/2023. Published by SPH Media Limited, Co. Regn. No. 202120748H. Copyright © 2024 SPH Media Limited. All rights reserved.

Back to the top