Tech

Canada joins U.S. in blaming China for Microsoft hack earlier this year – National

Canada is joining the United States and other allies in blaming China for a massive cyber attack that compromised tens of thousands of computers around the world earlier this year.

The attack saw hackers exploit weaknesses in Microsoft Exchange email servers, with an estimated 400,000 servers compromised by March.

In a statement, Foreign Affairs Minister Marc Garneau, Public Safety Minister Bill Blair and Defence Minister Harjit Sajjan say authorities are confident that China’s Ministry of State Security was responsible for compromising the servers.

They go on to allege the attack was aimed at stealing intellectual property and personal information, and that one particular group that previously targeted Canada was among several Chinese entities involved.

China has previously denied any involvement.

Read more:
Canadian systems compromised by malware in the Microsoft Exchange breach: officials

Story continues below advertisement

Canada’s statement comes after the Biden administration on Monday blamed China for a hack.

The administration and allied nations also disclosed a broad range of other cyberthreats from Beijing, including ransomware attacks from government-affiliated hackers that have targeted companies with demands for millions of dollars. China’s Ministry of State Security has been using criminal contract hackers, who have engaged in cyber extortion schemes and theft for their own profit, according to a senior administration official. That official briefed reporters about the investigation on the condition of anonymity.

Meanwhile, the Justice Department on Monday announced charges against four Chinese nationals who prosecutors said were working with the Ministry of State Security in a hacking campaign that targeted dozens of computer systems, including companies, universities and government entities.

The announcements highlighted the ongoing cyberthreat posed by Chinese government hackers even as the administration has been consumed with trying to curb ransomware attacks from Russia-based syndicates that have targeted critical infrastructure, including a massive fuel pipeline. Even though the finger-pointing was not accompanied by any sanctions of Beijing, a senior administration official who disclosed the actions to reporters said that the U.S. has confronted senior Chinese officials and that the White House regards the multination public shaming as sending an importance message.

That hackers affiliated with the Ministry of State Security carried out a ransomware attack was surprising and concerning to the U.S. government, the senior administration official said. But the attack, in which an unidentified American company received a high-dollar ransom demand, also gave U.S. officials new insight into what the official said was “the kind of aggressive behavior that we’re seeing coming out of China.”

Story continues below advertisement










Top cybersecurity agency warns of major Microsoft hack


Top cybersecurity agency warns of major Microsoft hack – Mar 17, 2021

 

The European Union and Britain also pointed the finger at China. The EU said malicious cyber activities with “significant effects” that targeted government institutions, political organizations and key industries in the bloc’s 27 member states could be linked to Chinese hacking groups. The U.K.’s National Cyber Security Centre said the groups targeted maritime industries and naval defense contractors in the U.S. and Europe and the Finnish parliament.

The Microsoft Exchange cyberattack “by Chinese state-backed groups was a reckless but familiar pattern of behaviour,” U.K. Foreign Secretary Dominic Raab said.

The majority of the most damaging and high-profile recent ransomware attacks have involved Russian criminal gangs. Though the U.S. has sometimes seen connections between Russian intelligence agencies and individual hackers, the use of criminal contract hackers by the Chinese government “to conduct unsanctioned cyber operations globally is distinct,” the official said.

Story continues below advertisement

Read more:
White House recounts ‘active threat,’ calls for action despite Microsoft patch

 

The Microsoft Exchange hack was first identified in January and was rapidly attributed to Chinese cyber spies by private sector groups. An administration official said the government’s attribution to hackers affiliated with China’s Ministry of State Security took until now in part because of the discovery of the ransomware and for-profit hacking operations and because the administration wanted to pair the announcement with guidance for businesses about tactics that the Chinese have been using.

An advisory Monday from the FBI, the National Security Agency and the Cybersecurity and Infrastructure Security Agency laid out specific techniques and ways that government agencies and businesses can protect themselves.

The White House also wanted to line up an international coalition of allies to call out China, according to the official, who said it was the first time NATO had condemned Beijing’s hacking operations.

A Chinese Foreign Ministry spokesperson, asked about the Microsoft Exchange hack, has previously said that China “firmly opposes and combats cyber attacks and cyber theft in all forms” and cautioned that attribution of cyberattacks should be based on evidence and not “groundless accusations.”

With files from the Associated Press’ Eric Tucker




© 2021 The Canadian Press

You May Also Like

World

France, which has opened its borders to Canadian tourists, is eager to see Canada reopen to the French. The Canadian border remains closed...

Health

Kashechewan First Nation in northern Ontario is experiencing a “deepening state of emergency” as a result of surging COVID-19 cases in the community...

World

The virus that causes COVID-19 could have started spreading in China as early as October 2019, two months before the first case was identified in the central city of Wuhan, a new study...

World

April Ross and Alix Klineman won the first Olympic gold medal for the United States in women’s beach volleyball since 2012 on Friday,...

© 2021 Newslebrity.com - All Rights Reserved.