The United States has taken note of China’s fast-paced development of their military capabilities and cyber operations, with a particular focus on critical infrastructure systems. According to US officials, China is gearing up to confront and deter the United States in potential conflicts, leading to a significant shift in their strategy.
One noted example of this change in approach is the increased activity of the China-linked threat group Volt Typhoon, also known as Bronze Silhouette and Vanguard Panda. While this group has been known for attacks against the US government and defense contractors, they have shifted their focus towards critical infrastructure and military bases since May 2021. Their actions have been recognized as a clear threat, resulting in disruptions by both the US government and private sector companies.
Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA) at the US Department of Homeland Security, expressed deep concern over China’s malicious cyber activity against US critical infrastructure. She highlighted the threat posed by Volt Typhoon and their attempts to compromise critical infrastructure to pre-position for possible cyberattacks in the event of conflict.
This shift in strategy by China has raised alarm bells within the US intelligence community. FBI Director Christopher Wray, in a testimony to the House Select Committee on the Chinese Communist Party, emphasized the broad and comprehensive threat posed by China to the US. He stated that the Chinese government uses various means, including cyber capabilities, human intelligence, and corporate transactions, to affect US economic security and ultimately national security.
The FBI’s Director underscored the threat posed by China and highlighted the importance of surveillance powers and the agency’s budget to combat Chinese cyber threats effectively. Wray warned that any reduction in the FBI’s budget would hamper their ability to monitor and disrupt preparatory attacks by Chinese actors.
One of the key tactical components of these cyberattacks is the compromise of small-office, home-office (SOHO) routers, which are then used to mask the source of subsequent attacks. This tactic has made it increasingly difficult to detect and combat these attacks, posing a significant challenge to US national security.
In light of these developments, US technology firms and their customers, as well as small businesses and individuals, are urged to take stock of the technology they use and to be vigilant in maintaining their systems. The National Cybersecurity Alliance has stressed the need for individuals and businesses to take responsibility for their use of technology and to stay informed about cybersecurity measures.
In conclusion, China’s rapid developments in military capabilities and cyber operations have heightened concerns within the US government and cybersecurity experts. The shift in focus towards critical infrastructure as a potential target for cyberattacks poses a significant threat to US national security and highlights the need for proactive measures to combat malicious cyber activities.