Chinese hackers stole Mekong River data from Cambodian ministry: sources

Tan KW

Publish date: Thu, 22 Jul 2021, 05:10 PM

PHNOM PENH/HANOI : Buried in a long US indictment accusing China of a global cyberespionage campaign was a curious detail: Among the governments targeted by Chinese hackers was Cambodia, one of Beijing's most loyal Asian allies.

The target of the hack, which two sources with knowledge of the indictment said was Cambodia's foreign ministry, was also revealing: discussions between China and Cambodia over the use of the Mekong River, a new battleground for US and Chinese influence in South-East Asia.

Four Chinese nationals - three security officials and a contract hacker - have been charged for attacks aimed at dozens of companies, universities and government agencies in the United States and abroad, the US Justice Department said on Monday (July 19).

Reaction from the defendants named in the indictment was not immediately available.

The accusations, which China has said were fabricated and politically motivated, were outlined in a 30-page US court indictment about the activities of what it said was a front company run by Chinese state security in Hainan, a Chinese island province near South-East Asia.

Among the hackers' targets was "Cambodian Government Ministry A", according to the indictment, from which they "stole data pertaining to discussions between the Governments of China and Cambodia over the use of the Mekong River" in January 2018.

That ministry was Cambodia's Ministry of Foreign Affairs, two sources with direct knowledge of the indictment told Reuters.

China's embassy in Cambodia did not respond to a request from Reuters for comment. The Chinese foreign ministry did not immediately respond to a faxed request for comment.

A Cambodian foreign ministry spokesperson referred questions to the telecommunications ministry, which declined to comment. Cambodian government spokesperson Phay Siphan declined to comment.

The 4,350km (2,700-mile) long Mekong, known as the Lancang in its upper reaches, flows from China along the borders of Myanmar, Laos and Thailand through Cambodia and Vietnam, where it has supported farming and fishing communities for millennia.

Like the South China Sea, the Mekong River has become a front in US-China rivalry, with Beijing overtaking Washington in both spending and influence over downstream countries at the mercy of its control of the river's waters.

According to the indictment, Chinese hackers obtained data from the Cambodian ministry on the same day Cambodia hosted the China-backed Lancang-Mekong Cooperation (LMC) leaders summit with China, Laos, Myanmar, Thailand, and Vietnam in Phnom Penh on Jan 10, 2018.

The data obtained by the hackers pertained to those discussions, the indictment said, without elaborating.

On the same day, the hackers hid and transmitted "trade secrets and proprietary hydroacoustic data" within digital images of a koala bear and former US President Donald Trump, according to the indictment. It said the material was sent to an online account controlled by the hackers.

It was not clear if the hydroacoustic data - data collected by sonar and used to monitor underwater features - was of the Mekong River area.

Last week, US Secretary of State Antony Blinken told South-East Asian foreign ministers the US supported a "free and open Mekong region" under the Washington-backed Mekong-US Partnership.

- Reuters

Discussions

Be the first to like this. Showing 2 of 2 comments

MuttsInvestor

LoL..... Rueters digging up...2018 case which did NOT make it to Cambodia Courts. Hlaf Truths and Lies from Western media.

2021-07-22 17:59

stockraider

China has captured more than 42 million malicious program samples in 2020, with an average daily spread of more than 4.82 million times. The overseas sources of these malicious program samples were mainly the US and India, according to the National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT/CC) on Wednesday.

This report comes as the US and its allies ramp up efforts to turn cyberspace into a new battlefield by groundlessly accusing China of conducting cyberattacks worldwide. Such groundless accusations will not change the fact that the US remains the world's top spying empire with widespread malfeasance in cyberspace, observers said.

About 55.41 million IP addresses in China were attacked by malicious programs, accounting for 14.2 percent of the total number of IP addresses in the country. These attacked IP addresses are mainly based in East China's Shandong, Jiangsu, Zhejiang and South China's Guangdong, the report said.

Over the years China has been a major victim of cyberattacks. According to the annual report by CNCERT/CC, in 2020 about 5.31 million hosts on the Chinese mainland were controlled by a total of about 52,000 overseas malicious program command and control servers. The top three origins of these overseas servers in terms of the number of compromised Chinese hosts are all from NATO member states, according to a statement from the Chinese Mission to the European Union (EU) in response to the accusations.

The Global Times learned from Chinese tech giant 360 Security Technology last year of a series of attacks against China's aerospace, scientific research institutions, petroleum industry and large-scale internet companies by a hacking organization affiliated with the CIA. The company found proof that the hacking group, APT-C-39, belongs to the CIA, and the hack was traced back to 2008, mainly targeting organizations in Beijing, South China's Guangdong and East China's Zhejiang provinces.

Global Times

2021-07-22 19:37

Featured Posts

MQ Trader

Introducing MY's First IPO Fund for Sophisticated Investors!

MQ Chat

New Update. Discover investment communities that resonate with your ideas

MQ Trader

M & A Value Partners IPO Equity Fund has been launched - Targeted 13% Return p.a

Latest Videos