In a striking declaration, the Cyber Security Association of China has accused U.S. intelligence agencies of launching cyberattacks against two Chinese military enterprises, indicating that one of the attacks involved the exploitation of a Microsoft zero-day vulnerability. The allegations were made public on Friday and highlight the ongoing tensions between the two nations in the arena of cyber warfare.
According to a translation of the association’s statement, U.S. agencies used a zero-day vulnerability in Microsoft Exchange Mail to infiltrate a major Chinese military enterprise’s mail server over a sustained period from July 2022 to July 2023. This breach allegedly allowed attackers to steal sensitive information from the target.
In a second incident, the association reported that U.S. intelligence launched a cyberattack from July to November of 2022 against another Chinese military enterprise involved in communications and satellite internet. This attack reportedly exploited vulnerabilities in electronic file systems, leading to further data theft. However, the names of the targeted enterprises were not disclosed.
Chinese government accusations against U.S. cyber activities have become more frequent, previously noted in a series of allegations made in April and December of the past year. These latest claims are particularly notable as they involve the assertion of employing a previously unpatched zero-day vulnerability, putting a spotlight on U.S.-based Microsoft. Notably, Microsoft itself has previously accused Chinese hackers of similar exploits involving its SharePoint product.
The Office of the Director of National Intelligence has yet to respond to these claims. In related discussions, former President Donald Trump has acknowledged U.S. covert operations against China, stating, “You don’t think we do that to them? We do. We do a lot of things,” reflecting on the complex dynamics of international cyber espionage.
Furthermore, China has accused various nations, including Taiwan, of conducting cyberattacks, reporting a staggering 600 attacks by foreign governmental entities just in 2024. The recent statement underscores the challenges faced by China regarding its national cybersecurity, emphasizing the seriousness of perceived threats posed by foreign intelligence operations.