Suspected Chinese Hackers Breach US Firms in Major Cyber-Espionage Campaign
A suspected group of Chinese hackers has breached US software developers and top law firms in a large-scale cyber-espionage operation, according to Google-owned cybersecurity firm Mandiant. The campaign appears designed to gather sensitive intelligence that could give Beijing an edge in its ongoing trade dispute with Washington.
Targeting Cloud Firms and Sensitive Data
Mandiant reported that the hackers have recently been especially aggressive, targeting cloud-computing providers that many American companies rely on to safeguard critical data. Beyond stealing proprietary software from US tech firms, the attackers also exploited these tools to identify new vulnerabilities, allowing them to dig deeper into networks and remain undetected.
FBI Launches Investigation
The FBI has opened an investigation into the intrusions, with US officials still working to determine the full scale of the attacks, CNN reported. Cyber experts warn that the fallout could take months to fully assess as companies scramble to expel the hackers and measure the damage.
Charles Carmakal, Mandiant’s Chief Technology Officer, described the campaign as a “milestone hack” on par with Russia’s SolarWinds attack in 2020, which infiltrated US government agencies. “The suspected Chinese hackers are very active right now,” Carmakal said. “We believe many organizations remain compromised without knowing it.”
Widespread and Long-Term Espionage
According to Mandiant, some hackers had been embedded in US corporate networks for more than a year, quietly siphoning intelligence. FBI cyber units are already stretched thin, constantly responding to multiple Chinese hacking campaigns targeting government agencies and corporations.
“This is the most prevalent cyber adversary in the United States over the past several years,” Carmakal added.
Beijing Denies Allegations
The Chinese Embassy in Washington has not yet commented on Mandiant’s findings. Beijing routinely rejects allegations of state-backed hacking and has accused the US of conducting cyberattacks against China.
Why Law Firms Are Prime Targets
Law firms are particularly vulnerable because of their access to sensitive government and corporate information. Earlier this year, suspected Chinese hackers reportedly breached the email accounts of attorneys at Wiley Rein, a prominent Washington, DC-based firm advising clients on trade and national security cases.
US Struggles to Counter China’s Cyber Army
The FBI has admitted that China’s cyber operatives outnumber its agents by at least 50 to 1. Both Republican and Democratic administrations have tried to counter Beijing’s advantage through indictments, sanctions, and public exposure of hacking tactics. In rare cases, suspects linked to Chinese intelligence have been detained.
In July, Italian authorities arrested a Chinese national accused of being part of a team that stole confidential US coronavirus vaccine research. The FBI described him as one of the first hackers tied to Chinese intelligence services to be captured.
Escalating Tensions Amid Trade War
The cyber campaign comes at a time of heightened US-China tensions. Earlier this year, the Trump administration imposed record tariffs on Chinese imports, intensifying the trade war. Experts believe both nations are seeking to gain deeper insight into each other’s strategies, making cyber-espionage a crucial front in the conflict.