US officials have been scouring a trove of newly leaked documents from a Chinese tech firm for clues on how the government in Beijing allegedly uses the company in extensive hacking campaigns, multiple US cybersecurity officials familiar with the matter told CNN.
The Biden administration’s study of the leak is ongoing, but private experts told CNN it offers some of the clearest public evidence yet of how they believe China’s powerful security agencies outsource hacking operations to tech firms to target victims around the world.
The documents, posted anonymously online last weekend for anyone to access, include screenshots of chat logs, as well as records of employees and Chinese government clients of the tech firm I-Soon. The company’s hacking victims range from Tibetan exile-run political groups, hospitals in Taiwan and India to Hong Kong’s universities following the city’s mass pro-democracy protests in 2019, according to the leaked data. More than a dozen, mostly Asian, foreign governments are listed as targets.
I-Soon’s clients include China’s police, intelligence service and military, according to a spreadsheet listing 183 contracts signed between 2016 and 2022 by I-Soon’s subsidiary in the southwestern province of Sichuan.
“This is some of the best visibility we’ve had into Chinese hacking operations outside of a government SCIF,” said Adam Kozy, who used to track Chinese hackers for the FBI, using an acronym for classified facilities.
“I’m not aware of the specifics you mentioned. In principle, I want to emphasize that China firmly opposes the unwarranted denigration and smearing against China,” Liu Pengyu, spokesperson for the Chinese Embassy in Washington, DC, said in an emailed statement when asked for comment.
“The…
Read the full article here