US Ambassador To China Hacked

Uploaded on 2023-08-03 in FREE TO VIEW

The US ambassador to Beijing, Nicholas Burns, is an American officials whose emails were hacked by a Chinese cyber spying hack.

Also hit was Daniel Kritenbrink, the Assistant Secretary of State for East Asia. The US admitted the email account of the commerce secretary, Gina Raimondo, had also been compromised.

US officials said that these officials were the three most senior targets, but many more could have been breached.

It was not clear how much sensitive US government information had been compromised.

Apparently the Secretary of State Antony Blinken’s email had not been breached, nor had those of his inner circle of advisers. But Kritenbrink accompanied the secretary on the trip to China recently and Burns had also attended meetings with the country’s leader, Xi Jinping, and other senior Chinese officials in the course of the visit.

It is thought possible that the hackers got access to US preparations for the meetings and the internal discussions about them.

US intelligence officials said they were surprised by the sophistication of the cyber-attack, which used a flaw in Microsoft’s cloud computing environment which has since been mended says Microsoft.  

Microsoft identified the hackers as the Chinese group Storm-0558, which apparently focuses on espionage hacks.

Recently officials said that hackers based in China hacked accounts of the State and Commerce departments, but they did not say how many people were affected.

The federal Cybersecurity and Infrastructure Security Agency said that it learned of the hacking campaign in mid-June and that the campaign lasted around a month.

Microsoft has now offered existing customers a series of enhanced digital forensic tools, following frustration from US officials that the high price tag it placed on core security products had prevented many lower-paying victims from detecting the breach.

Reuters:     The Wall Street Journal:     The Guardian:     Independent:     NBC News:     US Dept. Of State:     Politico

 

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

« Norway’s Government Ministries Hit by Cyber Attack
Banks Hacked With Open-Source Software »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

CloudEndure

CloudEndure

CloudEndure offers Disaster Recovery and Continuous Replication for the Cloud.

CW Jobs

CW Jobs

CWJobs.co.uk is a leading specialist IT recruitment website covering all areas of IT including Cyber Security.

Qualitest Group

Qualitest Group

Qualitest is the world’s largest pure play Quality Assurance and software testing company.

Invensis Learning

Invensis Learning

Invensis Learning is a professional training and certification company providing IT Service Management, IT Security & Governance, DevOps, Cloud Computing and Digital Awareness training.

RunSafe Security

RunSafe Security

RunSafe Security is the pioneer of a patented cyberhardening transformation process designed to disrupt attackers and protect vulnerable embedded systems and devices.

Data61

Data61

Data61 is Australia’s leading digital research network offering the research capabilities, IP and collaboration programs to unleash the country’s digital & data-driven potential.

Lirex

Lirex

Lirex offer consulting and outsourcing services, complete design, construction and maintenance of ICT solutions and systems including cybersecurity.

IdentityIQ

IdentityIQ

IdentityIQ is a US-based identity theft and credit protection company designed to help users stay on top identity thieves and data breaches.

HUB Security

HUB Security

Hub Security provide Ultra Secure, Military Grade HSM (Hardware Security Module) Solutions for Blockchain and Digital Assets.

neoEYED

neoEYED

neoEYED helps banks and fintech to detect and prevent frauds using a Behavioral AI that recognizes the users just by looking at “how” they interact with the applications.

Senserva

Senserva

Senserva delivers a deep analysis for security user accounts and applications within the Microsoft cloud environment.

ScorpionShield

ScorpionShield

ScorpionShield CyberSecurity is an EC-Council Accredited Training Center, and an On-Demand Service for Cybersecurity professionals.

Bright Security

Bright Security

Bright Security is a developer-centric Dynamic Application Security Testing (DAST) solution that helps organizations ship secure applications and APIs quickly and cost-effectively.

Grypho5

Grypho5

Grypho5 offers managed packages to protect where threat actors strike most. We defend your infrastructure dynamically, leaving you to focus on other priorities.

Velaspan

Velaspan

Velaspan design, deploy, and manage enterprise wireless networks and cybersecurity solutions for leading businesses and brands.

EU CyberNet

EU CyberNet

EU CyberNet – the bridge to cybersecurity expertise in the European Union. We establish a network and a practical learning platform with the goal to strengthen cybersecurity globally.