British foreign secretary says Beijing will be held to account if it does not stop ‘systematic cyber sabotage’
In early March, Microsoft released a patch to Exchange after discovering hackers were stealing email communications. Photograph: Omar Marques/SOPA Images/Rex/Shutterstock
Dan Sabbagh Mon 19 Jul 2021 https://www.theguardian.com/world/2...use-chinese-state-backed-group-microsoft-hack
Britain and its allies have formally accused Chinese state-based hacking groups of being behind the exploitation of an estimated 250,000 Microsoft Exchange servers worldwide earlier this year.
The UK foreign secretary said the cyber-attack amounted to “a reckless but familiar pattern of behaviour”, in an announcement released on Monday.
Dominic Raab called on Beijing to “end this systematic cyber sabotage” and said it “can expect to be held to account if it does not”, as the UK steps up complaints about Chinese hacking.
In early March, Microsoft released a patch to Exchange after discovering that hackers were stealing email communications from internet-facing systems running its business software.
At the time Microsoft said the hacking was conducted by a Chinese group called Hafnium but did not say whether it believed the Chinese state was behind it.
Monday’s announcement marks a formal attribution of responsibility by the west. Britain’s National Cyber Security Centre, an arm of GCHQ, said it was “highly likely that Hafnium is associated with the Chinese state”.
It is believed the group is supported, sustained and directed by China’s powerful ministry of state security and is part of a wider pattern of the ministry’s directed activity that also includes other specialist hacker groups.
Further announcements by other countries are expected shortly. Companies were advised to implement Microsoft patches if they had not already done so; 8% of firms had not done so by the end of March, according to Microsoft.
In early March, Microsoft released a patch to Exchange after discovering hackers were stealing email communications. Photograph: Omar Marques/SOPA Images/Rex/Shutterstock
Dan Sabbagh Mon 19 Jul 2021 https://www.theguardian.com/world/2...use-chinese-state-backed-group-microsoft-hack
Britain and its allies have formally accused Chinese state-based hacking groups of being behind the exploitation of an estimated 250,000 Microsoft Exchange servers worldwide earlier this year.
The UK foreign secretary said the cyber-attack amounted to “a reckless but familiar pattern of behaviour”, in an announcement released on Monday.
Dominic Raab called on Beijing to “end this systematic cyber sabotage” and said it “can expect to be held to account if it does not”, as the UK steps up complaints about Chinese hacking.
In early March, Microsoft released a patch to Exchange after discovering that hackers were stealing email communications from internet-facing systems running its business software.
At the time Microsoft said the hacking was conducted by a Chinese group called Hafnium but did not say whether it believed the Chinese state was behind it.
Monday’s announcement marks a formal attribution of responsibility by the west. Britain’s National Cyber Security Centre, an arm of GCHQ, said it was “highly likely that Hafnium is associated with the Chinese state”.
It is believed the group is supported, sustained and directed by China’s powerful ministry of state security and is part of a wider pattern of the ministry’s directed activity that also includes other specialist hacker groups.
Further announcements by other countries are expected shortly. Companies were advised to implement Microsoft patches if they had not already done so; 8% of firms had not done so by the end of March, according to Microsoft.
