The First Amendment Guarantees ALL Freedoms, including a Truthful Press
China Rejects Hacking Claims as ‘Fabricated’ After Biden Admin Blames CCP for Microsoft Cyber-Attack
Publisher's Note: This post appears here courtesy of the The Daily Wire. The author of this post is Ian Haworth.
The Chinese Communist Party has denied involvement in a major cyber-attack which targeted Microsoft in March, despite the Biden administration blaming hackers with links to China for the attack.
"The United States and countries around the world are holding the People's Republic of China (PRC) accountable for its pattern of irresponsible, disruptive, and destabilizing behavior in cyberspace, which poses a major threat to our economic and national security," Secretary of State Antony Blinken said Monday.
He then called out China's main intelligence service, the Ministry of State Science (MSS) specifically, saying they had "fostered an ecosystem of criminal contract hackers who carry out both state-sponsored activities and cybercrime for their own financial gain."
China described the accusations as "fabricated."
"The U.S. has mustered its allies to carry out unreasonable criticisms against China on the issue of cybersecurity," foreign ministry spokesman Zhao Lijian told reporters, as reported by the BBC.
On Monday, a spokesman for the Chinese Embassy in Washington said that the "U.S. has repeatedly made groundless attacks and malicious smear[s] against China on cybersecurity," and that "This is just another old trick, with nothing new in it."
In March, Microsoft first claimed that a hacking group backed by the Chinese government was reportedly using the security deficiencies in their common email system utilized by many American businesses.
"Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks," the company announced in a blog post. "In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to email accounts and allowed installation of additional malware to facilitate long-term access to victim environments. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to HAFNIUM, a group assessed to be state-sponsored and operating out of China, based on observed victimology, tactics, and procedures."
"We are sharing this information with our customers and the security community to emphasize the critical nature of these vulnerabilities and the importance of patching all affected systems immediately to protect against these exploits and prevent future abuse across the ecosystem," the post added. "This blog also continues our mission to shine a light on malicious actors and elevate awareness of the sophisticated tactics and techniques used to target our customers."
According to Microsoft, "HAFNIUM primarily targets entities in the United States across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs."
"HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers, and has used legitimate open-source frameworks, like Covenant, for command and control. Once they've gained access to a victim network, HAFNIUM typically exfiltrates data to file sharing sites like MEGA," the post explained. "In campaigns unrelated to these vulnerabilities, Microsoft has observed HAFNIUM interacting with victim Office 365 tenants. While they are often unsuccessful in compromising customer accounts, this reconnaissance activity helps the adversary identify more details about their targets' environments."
"HAFNIUM operates primarily from leased virtual private servers (VPS) in the United States," Microsoft concluded.
Go Back
The Chinese Communist Party has denied involvement in a major cyber-attack which targeted Microsoft in March, despite the Biden administration blaming hackers with links to China for the attack.
"The United States and countries around the world are holding the People's Republic of China (PRC) accountable for its pattern of irresponsible, disruptive, and destabilizing behavior in cyberspace, which poses a major threat to our economic and national security," Secretary of State Antony Blinken said Monday.
He then called out China's main intelligence service, the Ministry of State Science (MSS) specifically, saying they had "fostered an ecosystem of criminal contract hackers who carry out both state-sponsored activities and cybercrime for their own financial gain."
China described the accusations as "fabricated."
"The U.S. has mustered its allies to carry out unreasonable criticisms against China on the issue of cybersecurity," foreign ministry spokesman Zhao Lijian told reporters, as reported by the BBC.
On Monday, a spokesman for the Chinese Embassy in Washington said that the "U.S. has repeatedly made groundless attacks and malicious smear[s] against China on cybersecurity," and that "This is just another old trick, with nothing new in it."
In March, Microsoft first claimed that a hacking group backed by the Chinese government was reportedly using the security deficiencies in their common email system utilized by many American businesses.
"Microsoft has detected multiple 0-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks," the company announced in a blog post. "In the attacks observed, the threat actor used these vulnerabilities to access on-premises Exchange servers which enabled access to email accounts and allowed installation of additional malware to facilitate long-term access to victim environments. Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to HAFNIUM, a group assessed to be state-sponsored and operating out of China, based on observed victimology, tactics, and procedures."
"We are sharing this information with our customers and the security community to emphasize the critical nature of these vulnerabilities and the importance of patching all affected systems immediately to protect against these exploits and prevent future abuse across the ecosystem," the post added. "This blog also continues our mission to shine a light on malicious actors and elevate awareness of the sophisticated tactics and techniques used to target our customers."
According to Microsoft, "HAFNIUM primarily targets entities in the United States across a number of industry sectors, including infectious disease researchers, law firms, higher education institutions, defense contractors, policy think tanks, and NGOs."
"HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers, and has used legitimate open-source frameworks, like Covenant, for command and control. Once they've gained access to a victim network, HAFNIUM typically exfiltrates data to file sharing sites like MEGA," the post explained. "In campaigns unrelated to these vulnerabilities, Microsoft has observed HAFNIUM interacting with victim Office 365 tenants. While they are often unsuccessful in compromising customer accounts, this reconnaissance activity helps the adversary identify more details about their targets' environments."
"HAFNIUM operates primarily from leased virtual private servers (VPS) in the United States," Microsoft concluded.
| Gender Quota Requirement for Corporate Boards Is Gender Discrimination | Guest Editorial, Editorials, Op-Ed & Politics | Chief of Tokyo 2020 Organizing Committee Won’t Rule Out Cancelling Games |
Latest Op-Ed & Politics
 |
eve 45% of Latinos support mass deportation
Published: Thursday, April 25th, 2024 @ 12:40 pm
By: John Steed
|
 |
this at the time that pro-Hamas radicals are rioting around the country
Published: Thursday, April 25th, 2024 @ 8:01 am
By: John Steed
|
 |
Pro death roundtable
Published: Wednesday, April 24th, 2024 @ 12:39 pm
By: Countrygirl1411
|
 |
populist / nationalist anti-immigration AfD most popular party among young voters, CDU second
Published: Wednesday, April 24th, 2024 @ 11:25 am
By: John Steed
|
 |
political scheme behhind raid on Mar-a-Lago
Published: Wednesday, April 24th, 2024 @ 9:16 am
By: John Steed
|
 |
The FBI screwed up but it will be the taxpayers who will have to foot the bill
|
 |
how many of these will come to North Carolina?
Published: Tuesday, April 23rd, 2024 @ 1:32 pm
By: John Steed
|
 |
Barr had previously said he would jump off a bridge before supporting Trump
Published: Tuesday, April 23rd, 2024 @ 11:37 am
By: John Steed
|
 |
Babis is leader of opposition in Czech parliament
Published: Tuesday, April 23rd, 2024 @ 10:28 am
By: John Steed
|
 |
illegal alien "asylum seeker" migrants are a crime wave on both sides of the Atlantic
Published: Tuesday, April 23rd, 2024 @ 9:44 am
By: John Steed
|
 |
only one holdout against acquital
Published: Tuesday, April 23rd, 2024 @ 9:01 am
By: John Steed
|
 |
DEI now includes criminals?
Published: Monday, April 22nd, 2024 @ 8:33 pm
By: John Steed
|
 |
Decision is a win for election integrity. NC should do the same.
|
 |
Biden regime intends to force public school compliance as well as colleges
Published: Monday, April 22nd, 2024 @ 1:55 pm
By: John Steed
|
 |
clamps down on oil drilling in Alaska
Published: Monday, April 22nd, 2024 @ 9:09 am
By: John Steed
|
 |
plan put in place by Eric Holder
Published: Monday, April 22nd, 2024 @ 7:38 am
By: John Steed
|
 |
prosecutors appeal acquittal of member of parliament in lower court for posting Bible verse
Published: Sunday, April 21st, 2024 @ 9:14 am
By: John Steed
|
 |
Biden abuses power to turn statute on its head; womens groups to sue
Published: Friday, April 19th, 2024 @ 8:28 pm
By: John Steed
|
Home
Contact
About
Service Rates
Privacy Policy
Follow on Facebook
Subscribe to Newsletters
Rss Feed
Keywords
Eastern NC Now & ENC NOW © Copyright 1998-2024 All Rights Reserved.
