Foreign Secretary Dominic Raab condemns continued Chinese cyber attacks on telecoms, tech and governments.
Following announcements by the US Department of Justice and Malaysian law enforcement today (Wednesday 16 September) of criminal charges against Chinese nationals and arrests of Malaysian nationals relating to malicious cyber attacks, Foreign Secretary Dominic Raab said:
Today we have another example of the Chinese using malicious cyber activity for criminal ends. We condemn the attempted attacks against governments and businesses. This kind of opportunistic and reckless behaviour in cyberspace is wholly unacceptable.
The UK will continue to counter those conducting such cyber attacks, and work with our allies to hold perpetrators to account.
- The criminal charges indicate that Chinese linked actors are targeting super computers, communications companies and systems that allow home working, in countries around the world.
- The Foreign Secretary raised concern over evidence that China is engaged in malicious cyber attacks against commercial, medical and academic institutions on 22 July 2020.
- The UK announced on 20 December 2018 that actors on behalf of the Chinese Ministry of State Security carried out a malicious cyber campaign targeting intellectual property and sensitive commercial data in Europe, Asia and the US.
- The UK’s National Cyber Security Centre (NCSC) has produced practical advice for individuals and organisations on protecting against the threats outlined in the indictment, including:
- https://www.ncsc.gov.uk/guidance/mitigating-malware
- https://www.ncsc.gov.uk/guidance/phishing
- https://www.ncsc.gov.uk/guidance/multi-factor-authentication-online-services
- https://www.ncsc.gov.uk/guidance/setting-two-factor-authentication-2fa
- https://www.ncsc.gov.uk/collection/supply-chain-security
- https://www.ncsc.gov.uk/guidance/introduction-logging-security-purposes
- https://www.ncsc.gov.uk/guidance/10-steps-incident-management
- https://www.ncsc.gov.uk/guidance/preventing-lateral-movement
- https://www.ncsc.gov.uk/guidance/eud-security-guidance-windows-10-1709