China Suspected of Cyberattacks Targeting US Organizations

475 Views

FILE - News Corp disclosed a hack on some of its businesses in a securities filing Feb. 4, 2022.

WASHINGTON —

Media giant News Corp is investigating a cyberattack that has accessed the email and documents of some of its employees and journalists.

On Friday, New York-based News Corp, whose entities include The Wall Street Journal and the New York Post, sent an internal email to staff, stating that it had been the target of “persistent nation-state attack activity.”

“On January 20th, News Corp discovered attack activity on a system used by several of our business units,” David Kline, News Corp chief technology officer, wrote in the email.

News Corp said that as soon as it discovered the attack, it notified law enforcement and launched an investigation with the help of Mandiant, a cybersecurity firm.

The cyberattack affected a “limited number of business email accounts and documents” from News Corp headquarters as well as its News Technology Services, Dow Jones, News UK and New York Post businesses.

FILE - Bundles of the New York Post are stacked for distribution in front of Penn Station, Nov. 27, 2013, in New York. — FILE – Bundles of the New York Post are stacked for distribution in front of Penn Station, Nov. 27, 2013, in New York.

“Our preliminary analysis indicates that foreign government involvement may be associated with this activity, and that some data was taken,” Kline wrote. “We will not tolerate attacks on our journalism, nor will we be deterred from our reporting.”

“Mandiant assesses that those behind this activity have a China nexus, and we believe they are likely involved in espionage activities to collect intelligence to benefit China’s interests,” Dave Wong, Mandiant vice president and incident responder, said in an email to VOA.

Wong’s suspicion echoed that of human rights groups, which have also faced an increase in cyberattacks thought to originate from a “foreign government” they also believe is China.

Liu Pengyu, spokesperson for the Chinese Embassy in the U.S., told VOA in an email Friday that rather than making allegations based on speculations, he hoped there could be “a professional, responsible and evidence-based approach” to identifying cyberattacks.

“China is a staunch defender of cybersecurity and has long been a main victim of cyberthefts and attacks,” Liu said. “China firmly opposes and combats cyberattacks and cybertheft in all forms.”

Rights groups targeted

Cyberattacks might be used to intimidate those who are critical of the Chinese government, according to Peter Irwin, senior program officer for advocacy and communications at Uyghur Human Rights Project (UHRP) in Washington.

FILE - People from China's Uyghur Muslim ethnic group protest outside the city's Turkish Olympic Committee building, calling for a boycott of the Winter Olympics in Beijing over China's treatment of the minority, in Istanbul, Turkey, Jan. 23, 2022.

“They might want journalists to think twice before they continue to do critical work uncovering issues in the country,” Irwin told VOA, adding that his organization had also seen a major spike in cyberattacks believed to be from China in recent weeks, targeting its website and staff email.

Uyghur rights groups such as UHRP have been calling for a boycott of the Beijing Winter Olympics on social media, using the hashtag #GenocideGames and citing allegations of human rights abuses of Uyghurs and other Turkic ethnic groups in Xinjiang, where China has been accused of arbitrarily detaining more than 1 million people in internment camps.

On Tuesday, The Wall Street Journal reported that pro-China accounts had flooded Twitter messages with the #GenocideGames hashtag. Hashtag flooding is the act of hijacking a hashtag on social media platforms to dilute or change its meaning.