US Ambassador To China Hacked

Uploaded on 2023-08-03 in FREE TO VIEW

The US ambassador to Beijing, Nicholas Burns, is an American officials whose emails were hacked by a Chinese cyber spying hack.

Also hit was Daniel Kritenbrink, the Assistant Secretary of State for East Asia. The US admitted the email account of the commerce secretary, Gina Raimondo, had also been compromised.

US officials said that these officials were the three most senior targets, but many more could have been breached.

It was not clear how much sensitive US government information had been compromised.

Apparently the Secretary of State Antony Blinken’s email had not been breached, nor had those of his inner circle of advisers. But Kritenbrink accompanied the secretary on the trip to China recently and Burns had also attended meetings with the country’s leader, Xi Jinping, and other senior Chinese officials in the course of the visit.

It is thought possible that the hackers got access to US preparations for the meetings and the internal discussions about them.

US intelligence officials said they were surprised by the sophistication of the cyber-attack, which used a flaw in Microsoft’s cloud computing environment which has since been mended says Microsoft.  

Microsoft identified the hackers as the Chinese group Storm-0558, which apparently focuses on espionage hacks.

Recently officials said that hackers based in China hacked accounts of the State and Commerce departments, but they did not say how many people were affected.

The federal Cybersecurity and Infrastructure Security Agency said that it learned of the hacking campaign in mid-June and that the campaign lasted around a month.

Microsoft has now offered existing customers a series of enhanced digital forensic tools, following frustration from US officials that the high price tag it placed on core security products had prevented many lower-paying victims from detecting the breach.

Reuters:     The Wall Street Journal:     The Guardian:     Independent:     NBC News:     US Dept. Of State:     Politico

 

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

« Norway’s Government Ministries Hit by Cyber Attack
Banks Hacked With Open-Source Software »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

QA Systems

QA Systems

QA Systems provides software testing solutions for safety and business critical sectors and software safety and security standards.

Ciklum

Ciklum

Ciklum provide specialist software QA and testing services including Security QA and Performance QA, QA Automation and Manual QA.

IronScales

IronScales

IronScales combines human intelligence with machine learning to automatically prevent, detect and respond to email phishing attacks.

Celare

Celare

Celare delivers DPI based network perimeter monitoring solutions with integrated Big Data security analytics and threat detection.

Onspring

Onspring

Onspring is the cloud-based platform of choice for governance, risk and compliance (GRC) teams and business operations experts across multiple industries.

Somansa

Somansa

Somansa is a global leader in Data Security and Compliance solutions designed to protect valuable company information from leakage and help meet regulatory compliance requirements.

VerSprite

VerSprite

VerSprite is a specialist information security consulting firm. We provide organizations with detection across all their attack surfaces and deliver critical insight into all possible attack methods.

Center for Analysis & Investigation of Cyber-Attacks (CAICA)

Center for Analysis & Investigation of Cyber-Attacks (CAICA)

The Center for Analysis & Investigation of Cyber-Attacks is one of the leading Kazakhstan organisations in the field of information and computer security.

KOS-CERT

KOS-CERT

KOS-CERT is the national Computer Incident Response Team for Kosovo.

CipherTrace

CipherTrace

CipherTrace develops cryptocurrency Anti-Money Laundering, cryptocurrency forensics, and blockchain threat intelligence solutions.

FDD Center on Cyber and Technology Innovation (CCTI)

FDD Center on Cyber and Technology Innovation (CCTI)

The Foundation for Defense of Democracies is a nonprofit research institute focusing on foreign policy and national security. Ares of focus include cyber security and technology innovation.

JaCIRT

JaCIRT

JaCIRT is the national Cyber Incident Response Team for Jamaica, established to deliver on the mandate outlined in the GoJ’s National Cyber Security Strategy.

Microminder Cyber Security

Microminder Cyber Security

Microminder Cyber Security are innovators, advisors, strategists committed to solving your cyber security challenges.

Transparity Cyber

Transparity Cyber

Transparity Cyber is dedicated to cybersecurity. As part of the Transparity Group we’re an established name in the Microsoft Cloud landscape, with a focus on cybersecurity excellence.

Memcyco

Memcyco

Memcyco is a provider of cutting-edge digital trust technologies to empower brands in combating online brand impersonation fraud, and preventing fraud damages to businesses and their clients.

Munio

Munio

Munio is a leading Fortified IT Support and Cyber Security companies in the south east of the UK.