UK, allies expose China-based technology companies for enabling global cyber campaign against critical networks
The UK and international allies recently publicly linked three technology companies based in China with a global malicious cyber campaign targeting critical networks.
In a new advisory published today, the National Cyber Security Centre (NCSC) – a part of GCHQ - and international partners from twelve other countries have shared technical details about how malicious cyber activities linked with these China-based commercial entities have targeted nationally significant organisations around the world.
Since at least 2021, this activity has targeted organisations in critical sectors including government, telecommunications, transportation, lodging, and military infrastructure globally, with a cluster of activity observed in the UK, read the National Cyber Security Centre website.
The activities described in the advisory partially overlap with campaigns previously reported by the cybersecurity industry, most commonly under the name Salt Typhoon.
The data stolen through this activity can ultimately provide the Chinese intelligence services the capability to identify and track targets’ communications and movements worldwide.
The advisory describes how the threat actors have had considerable success taking advantage of known common vulnerabilities rather than relying on bespoke malware or zero-day vulnerabilities to carry out their activities, meaning attacks via these vectors could have been avoided with timely patching.
Organisations of national significance in the UK are encouraged to proactively hunt for malicious activity and implement mitigative actions, including ensuring that edge devices are not exposed to known vulnerabilities and implementing security updates.
NCSC Chief Executive Dr Richard Horne said, "We are deeply concerned by the irresponsible behaviour of the named commercial entities based in China that has enabled an unrestrained campaign of malicious cyber activities on a global scale."
The three China-based technology companies provide cyber-related services to the Chinese intelligence services and are part of a wider commercial ecosystem in China, which includes information security companies, data brokers and hackers for hire.
The named entities are: Sichuan Juxinhe Network Technology Co Ltd, Beijing Huanyu Tianqiong Information Technology Co, and Sichuan Zhixin Ruijie Network Technology Co Ltd.
IBNS
Senior Staff Reporter at Northeast Herald, covering news from Tripura and Northeast India.
Related Articles
Chaos in Dhaka: Man dies after crude explosive hurled from flyover in Mogbazar area
A man was killed on Wednesday evening after assailants hurled a crude explosive from a flyover in the Mogbazar area of Bangladesh’s capital, Dhaka, media reports said.
Zelenskyy’s demilitarised zone gambit: Ukraine’s 20-point peace plan puts Donbas, NATO-style guarantees at centre stage
Kyiv/IBNS: Ukrainian President Volodymyr Zelenskyy has outlined a revised 20-point peace proposal that could redefine the contours of any future settlement to end Russia’s war on Ukraine.
Pakistan court hands 22-year jail term to two in shocking blasphemy case
A Pakistani court on Monday sentenced two individuals to 22 years of rigorous imprisonment and imposed fines totaling Rs 550,000 on charges of blasphemy.
Balochistan Bloodshed: 248 civilians killed in a year of unrelenting violence
At least 248 civilians and 205 Pakistani security personnel were killed in attacks, bombings, and armed incidents across Pakistan's conflict-hit Balochistan during 2025, as per official data released, reported The Balochistan Post.
Latest News
Shimla doctor sacked after shocking video shows him assaulting patient
Massive protest by Sanatani Hindus at zero point of India–Bangla border in Kailashahar
Arunachal Pradesh police rescue 24 child labourers trafficked from Tripura
Govt launches inter-departmental referral system to ease patient care in Tripura: CM
