Chinese Spies Hacked Six U.S. State Government Networks, Report Finds
(Bloomberg) -- At least six U.S. state governments were hacked by a Chinese state-sponsored espionage campaign that partly took advantage of the widespread Log4j software vulnerability, researchers reported Tuesday.
Most Read from Bloomberg
Russia Devises Plan to Seize Firms Abandoned in Foreigner Exodus
Ukraine Update: Russia Targeting Airfields in Western Ukraine
Russia Bans Export of 200 Products After Suffering Sanctions Hit
The cybersecurity firm Mandiant Inc. said its investigation began last May, when it examined an unspecified state’s government computer network. Of the six state governments that were hacked, at least two of them were “re-compromised” as recently as last month, the firm said.
The company didn’t identify the victims by name. Jen Easterly, director of the U.S. Cybersecurity and Infrastructure Security Agency, said last year that the vulnerability in Log4j, a popular software tool, represented a “severe” risk. Cybersecurity personnel have warned that, by leveraging the flaw, hackers could take control of an affected system.
Mandiant said APT 41, a Chinese state-sponsored group, was behind the attack. In 2020, a federal grand jury in Washington indicted alleged hackers tied to the group, which U.S. officials have linked to China’s Ministry of State Security, accusing them of targeting more than 100 victims around the world.
“The Chinese government’s position on cybersecurity is consistent and clear,” said Liu Pengyu, a spokesman for the Chinese embassy in Washington. “We firmly oppose and combat cyberattacks of any kind. We oppose making groundless accusations against China on cybersecurity and other related issues.”
Most Read from Bloomberg Businessweek
Jeff Bezos Is Heading to Space and Partying on Earth While Amazon Faces a Host of Challenges
Putin’s Endgame Starts to Look Like Reducing Ukraine to Rubble
Putin Clings to Russia’s Market Economy as Sanctions Wind Back the Clock
ADHD Drugs Are Convenient To Get Online. Maybe Too Convenient
©2022 Bloomberg L.P.