عربي English Türkçe اردو فارسى
Logo
Latest News
World

Chinese Hackers Spying on US Critical Infrastructure, Western Intelligence Says

REUTERS/Kacper Pempel
REUTERS/Kacper Pempel
TT
TT

Chinese Hackers Spying on US Critical Infrastructure, Western Intelligence Says

REUTERS/Kacper Pempel
REUTERS/Kacper Pempel

A state-sponsored Chinese hacking group has been spying on a wide range of US critical infrastructure organizations, from telecommunications to transportation hubs, Western intelligence agencies and Microsoft said on Wednesday.

The espionage has also targeted the US island territory of Guam, home to strategically important American military bases, Microsoft said in a report, adding that "mitigating this attack could be challenging."

While China and the United States routinely spy on each other, analysts say this is one of the largest known Chinese cyber-espionage campaigns against American critical infrastructure, Reuters said.

The Chinese embassy in Washington did not immediately respond to a Reuters request for comment.

It was not immediately clear how many organizations were affected, but the US National Security Agency (NSA) said it was working with partners including Canada, New Zealand, Australia, and the UK, as well as the US Federal Bureau of Investigation to identify breaches. Canada, UK, Australia and New Zealand warned they could be targeted by the hackers too.

Microsoft analysts said they had "moderate confidence" this Chinese group, which it dubbed as 'Volt Typhoon', was developing capabilities that could disrupt critical communications infrastructure between the United States and Asia region during future crises.

"It means they are preparing for that possibility," added said John Hultquist, who heads threat analysis at Google's Mandiant Intelligence.

The Chinese activity is unique and worrying also because analysts don't yet have enough visibility on what this group might be capable of, he added.

"There is greater interest in this actor because of the geopolitical situation."

As China has stepped up military and diplomatic pressure in its claim to democratically governed Taiwan, US President Joe Biden has said he would be willing to use force to defend Taiwan.

Security analysts expect Chinese hackers could target US military networks and other critical infrastructure if China invades Taiwan.

The NSA and other Western cyber agencies urged companies that operate critical infrastructure to identify malicious activity using the technical guidance they issued.

"It is vital that operators of critical national infrastructure take action to prevent attackers hiding on their systems," Paul Chichester, director at the UK's National Cyber Security Center said in a joint statement with the NSA.

Microsoft said the Chinese hacking group has been active since at least 2021 and has targeted several industries including communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education.

NSA cybersecurity director Rob Joyce said the Chinese campaign was using "built-in network tools to evade our defenses and leaving no trace behind." Such techniques are harder to detect as they use "capabilities already built into critical infrastructure environments," he added.

As opposed to using traditional hacking techniques, which often involve tricking a victim into downloading malicious files, Microsoft said this group infects a victim's existing systems to find information and extract data.

Guam is home to US military facilities that would be key to responding to any conflict in the Asia-Pacific region. It is also a major communications hub connecting Asia and Australia to the United States by multiple submarine cables.

Bart Hoggeveen, a senior analyst at the Australian Strategic Policy Institute who specializes in state-sponsored cyber attacks in the region, said the submarine cables made Guam "a logical target for the Chinese government" to seek intelligence.

"There is high vulnerability when cables land on shore," he said.

New Zealand said it would work towards identifying any such malicious cyber activity in its country.

"It's important for the national security of our country that we're transparent and upfront with Australians about the threats that we face," Australia's Minister for Home Affairs and Cyber Security Clare O'Neil said.

Canada's cybersecurity agency said it had no reports of Canadian victims of this hacking as yet. "However, Western economies are deeply interconnected," it added. "Much of our infrastructure is closely integrated and an attack on one can impact the other."

Most Viewed

 
 
World

Iran Has Fired 400 Missiles at Israel, 92% Intercepted since Start of War

A woman stands inside a destroyed building, amid the US-Israeli conflict with Iran, in Tehran, Iran, March 21, 2026. Reuters/Alaa Al-Marjani
A woman stands inside a destroyed building, amid the US-Israeli conflict with Iran, in Tehran, Iran, March 21, 2026. Reuters/Alaa Al-Marjani
TT
TT

Iran Has Fired 400 Missiles at Israel, 92% Intercepted since Start of War

A woman stands inside a destroyed building, amid the US-Israeli conflict with Iran, in Tehran, Iran, March 21, 2026. Reuters/Alaa Al-Marjani
A woman stands inside a destroyed building, amid the US-Israeli conflict with Iran, in Tehran, Iran, March 21, 2026. Reuters/Alaa Al-Marjani

Israel's military said on Sunday that Iran had fired more than 400 ballistic missiles at Israel since the start of the Middle East war, with around 92 percent of them intercepted.

The figures were announced a day after Iranian missiles struck two towns in southern Israel, leaving around 175 people needing medical treatment.

"Iran has fired over 400 ballistic missiles. We have had great interception rates. We have approximately a 92 percent successful interception rate," Israeli military spokesman Lieutenant Colonel Nadav Shoshani told journalists.

One of the towns hit on Saturday was Dimona, widely believed to hold Israel's undeclared nuclear arsenal.

The impact of the missile was just five kilometres from the town's nuclear facility, AFP reported.

The other nearby town to be hit was Arad, which saw extensive damage to several buildings.

Shoshani said the missiles fired on Saturday were "not different from ballistic missiles" and that there had now only been four direct hits during the war so far.

The Israeli military has said it will investigate the failure to intercept the incoming fire on Saturday.

"We have intercepted in the past and will intercept in the future," Shoshani said.

Prime Minister Benjamin Netanyahu acknowledged Saturday was a "very difficult evening" and urged residents to head to protection centres whenever sirens blare.

On Sunday he visited Arad, where he vowed to continue pursuing top Iranian officials.

"We are going after the IRGC (Iran's Revolutionary Guards), this criminal gang," Netanyahu told journalists at the site.

"We're going after them personally, their leaders, their installations, their economic assets. We're going after them personally."

One man was wounded Sunday in the commercial hub of Tel Aviv in what local media said was a blast from a cluster munition.

World

Türkiye Discusses Steps to End War with Iran, US, EU, Egypt in Calls

A man looks at residential buildings damaged by an Iranian missile strike in Arad, southern Israel, Sunday, March 22, 2026. (AP Photo/Ohad Zwigenberg)
A man looks at residential buildings damaged by an Iranian missile strike in Arad, southern Israel, Sunday, March 22, 2026. (AP Photo/Ohad Zwigenberg)
TT
TT

Türkiye Discusses Steps to End War with Iran, US, EU, Egypt in Calls

A man looks at residential buildings damaged by an Iranian missile strike in Arad, southern Israel, Sunday, March 22, 2026. (AP Photo/Ohad Zwigenberg)
A man looks at residential buildings damaged by an Iranian missile strike in Arad, southern Israel, Sunday, March 22, 2026. (AP Photo/Ohad Zwigenberg)

Turkish Foreign Minister Hakan Fidan discussed steps to end the war between Iran, the United States and Israel with counterparts from Iran and Egypt, as well as US officials and the European Union, a Turkish diplomatic source said on Sunday.

The source said Fidan had held separate calls with Iranian Foreign Minister Abbas Araqchi, Egyptian Foreign Minister Badr Abdelatty, European Union foreign policy chief Kaja Kallas, and US officials, without elaborating further.

World

Iran Minister Says US, Israeli Strikes Caused 'Heavy Damage' to Water, Energy Infrastructure

The Iranian flag waves in front of the International Atomic Energy Agency (IAEA) headquarters, before the beginning of a board of governors meeting, amid the coronavirus disease (COVID-19) outbreak in Vienna, Austria, March 1, 2021. (Reuters)
TT
TT

Iran Minister Says US, Israeli Strikes Caused 'Heavy Damage' to Water, Energy Infrastructure

The Iranian flag waves in front of the International Atomic Energy Agency (IAEA) headquarters, before the beginning of a board of governors meeting, amid the coronavirus disease (COVID-19) outbreak in Vienna, Austria, March 1, 2021. (Reuters)

Iran's critical water and energy infrastructure have suffered extensive damage due to US and Israeli strikes on tens of thousands of civilian sites, officials said on Sunday.

Israel and the United States launched strikes on Iran on February 28, killing the Islamic republic's supreme leader and sparking a war that has since spread across the Middle East.

"The country's vital water and electricity infrastructure has suffered heavy damage following terrorist and cyber attacks by the United States and the Zionist regime," said energy minister Abbas Aliabadi, according to ISNA news agency, AFP reported.

"The attacks targeted dozens of water transmission and treatment facilities and destroyed parts of critical water supply networks," he noted, adding that efforts were under way to repair the damage.

Iran's Red Crescent chief Pirhossein Kolivand said the total number of damaged civilian sites "has reached 81,365 based on the latest field assessments".

He said the figure includes residential and commercial units, schools, medical centers and vehicles.

"Behind every damaged unit stands a family, a life, a memory, a livelihood, and a future that has collapsed beneath the rubble of war and violence," he added.

AFP has not been able to access sites or verify the figures outside of the Iranian capital, but journalists in Tehran have reported damage to multiple residential buildings and other civilian infrastructure.

More than 1,200 Iranians have been killed in US and Israeli strikes, according to the latest toll from Iran's health ministry on March 8, which could not be independently verified.

On Sunday, ISNA news agency reported that strikes had damaged a hospital in the southern city of Ahvaz, in Khuzestan province.

Other media, including Fars news agency, showed images of rescuers pulling bodies from the rubble of destroyed buildings in the northern city of Tabriz.

It was not immediately clear when those strikes took place.

Earlier on Sunday, US President Donald Trump threatened to strike Iran's power plants if it failed to reopen the strategic Strait of Hormuz within 48 hours.

Traffic through the vital strait -- through which 20 percent of the world's crude oil and liquefied natural gas normally passes -- has been brought to a near-standstill since the start of the war.

Iranian forces have attacked multiple vessels, saying they failed to heed "warnings" against transiting the waterway.

In recent days, Iran has allowed some vessels from countries it considers friendly to pass, while warning it would block ships from countries it says have joined the "aggression" against it.

In response to Trump, Iran threatened to target energy infrastructure and desalination plants across the region.