Chinese hackers have infiltrated critical IT networks within the United States, positioning themselves for potential disruptive attacks in the event of a conflict, a senior US cybersecurity official revealed on Friday.
Morgan Adamski, Executive Director of the US Cyber Command, cautioned that these cyber operations, linked to China, are part of strategic preparations to gain the upper hand during a possible confrontation with the US.
Speaking at the Cyberwarcon security conference in Arlington, Virginia, Ms. Adamski described the activities as a coordinated effort to compromise vital infrastructure.
She detailed how these hackers are targeting systems managing energy supplies, water controls, and even HVAC systems in server rooms to prepare for large-scale disruptions.
Earlier this year, US officials had issued warnings about similar intrusions into IT networks, allegedly conducted by China-linked groups.
The operations have raised fears about the potential consequences of such attacks, which could paralyze essential services during a crisis.
Largest telecommunications breach
On Thursday, Senator Mark Warner, Chairman of the Senate Intelligence Committee, labeled a recent hack into US telecommunications systems as the "most severe telecom breach in American history." The espionage campaign, dubbed “Salt Typhoon” by Microsoft, allowed hackers to access sensitive data, including call records and communications involving prominent political figures, such as the current US presidential candidates.
Mr. Warner revealed that the Chinese hackers exploited outdated equipment and network vulnerabilities to penetrate systems deeply. Investigators found that the hackers were able to monitor specific calls and text messages, although encrypted communications such as those via WhatsApp or iMessage remained secure.
“This breach is unprecedented,” said Mr. Warner. “It makes previous attacks like SolarWinds or Colonial Pipeline pale in comparison.”
Global countermeasures
In response, US agencies have initiated “globally synchronized activities” aimed at disrupting and degrading Chinese cyber operations, Ms. Adamski stated. These measures include exposing malicious activities, issuing sanctions, and pursuing law-enforcement actions with the help of international allies.
The FBI and Cybersecurity and Infrastructure Security Agency (CISA) are also providing technical assistance to organizations that may be targeted, urging them to enhance cybersecurity measures.
Beijing denies allegations
The Chinese government has consistently denied accusations of cyberattacks on US entities. The Chinese Embassy in Washington did not respond to requests for comment on the latest developments.
However, Mr. Warner stressed the urgent need to address the vulnerabilities that allowed such an extensive breach. “We’ve not yet discovered the full extent of the intrusion, and the threat remains active,” he warned, emphasizing the importance of stricter cybersecurity standards in the US, similar to those recently adopted in Australia and Britain.
