China has faced numerous accusations of state-sponsored hacking over the years, particularly targeting companies from the West. These allegations often involve theft of intellectual property, trade secrets, and sensitive information, significantly impacting global business and international relations. Here are five prominent incidents highlighting these accusations.
1. Operation Cloud Hopper
One of the most extensive and impactful hacking campaigns attributed to China is Operation Cloud Hopper. This operation, which began around 2014, involved Chinese state-sponsored hacking group APT10 (Advanced Persistent Threat 10), also known as Stone Panda or MenuPass.
The group targeted managed service providers (MSPs) to gain access to the networks of their clients, which included numerous Western companies across various sectors such as banking, finance, telecommunications, and manufacturing.
The hackers infiltrated these networks to steal intellectual property, trade secrets, and sensitive business information, causing widespread concern and prompting multiple governments to issue public condemnations.
2. Equifax Data Breach
In 2017, credit reporting agency Equifax suffered a massive data breach, compromising the personal information of approximately 147 million Americans.
In 2020, the U.S. Department of Justice charged four members of the Chinese People’s Liberation Army (PLA) with carrying out the hack. The indictment alleged that the PLA hackers exploited a vulnerability in Equifax’s web application to access and steal sensitive data, including names, social security numbers, birth dates, and addresses.
This incident highlighted the potential for state-sponsored cyberattacks to have far-reaching consequences for individual privacy and national security.
3. Anthem Inc. Hack
In 2015, health insurance giant Anthem Inc. announced that hackers had accessed the personal information of nearly 80 million current and former customers.
The breach included names, social security numbers, medical IDs, addresses, and employment information. U.S. authorities later attributed the attack to Chinese state-sponsored hackers, alleging that the operation aimed to gather intelligence rather than financial gain. The breach raised alarms about the vulnerability of sensitive healthcare data to state-sponsored cyber espionage.
4. Marriott International Data Breach
In 2018, Marriott International revealed that hackers had accessed the reservation system for its Starwood properties, compromising the personal information of up to 500 million guests.
The stolen data included names, passport numbers, contact information, and travel details. U.S. investigators linked the breach to Chinese state-sponsored hackers, suggesting that the operation was part of a broader campaign to collect data on American citizens. The incident underscored the potential for state-sponsored hacking to target the hospitality industry for intelligence purposes.
5. SolarWinds Cyberattack
While primarily attributed to Russian hackers, the SolarWinds cyberattack also implicated Chinese state-sponsored hackers in separate but related activities. The attack, discovered in 2020, involved the insertion of malicious code into SolarWinds’ Orion software, which was used by thousands of organizations, including numerous U.S. government agencies and Fortune 500 companies.
In parallel, Chinese hackers reportedly exploited vulnerabilities in SolarWinds’ software to conduct their own espionage activities, highlighting the sophisticated and multifaceted nature of state-sponsored cyber operations.
These five incidents illustrate the significant and ongoing threat posed by state-sponsored hacking, particularly from China, to Western companies and institutions. The theft of intellectual property, trade secrets, and sensitive personal information not only undermines economic competitiveness but also raises serious national security concerns.
As cyber threats continue to evolve, it is imperative for governments and businesses to strengthen their cybersecurity defenses and collaborate on international efforts to combat state-sponsored cyber espionage.