How the US shot itself in the foot with indictment against Chinese ‘hackers’
- The details in the indictment against the Chinese nationals were most likely obtained by a US government hacking operation
- China is hardly an outlier in a world where cyberspying and hacking is what modern intelligence agencies in all countries are paid to do
Cyberattacks can be divided into two categories: those conducted by criminals typically for monetary gain and those executed by state agencies and their proxies for national security and economic reasons.
The distinction between the two is consequential. Governments are responsible for cybercrimes emanating from their territory and are obliged to identify, investigate and punish the perpetrators. A state-sponsored cyberattack is a whole different matter.
A hack that is the work of a government would be an act of aggression inconsistent with the United Nations Charter and justifies condemnation and even retaliation.
Interestingly, in the same week the Microsoft Exchange scandal broke, Microsoft announced that its Windows operating system had been exposed to an attack caused by malware developed by a private company in Israel.
No one in Washington hinted that the Israeli government should be held accountable for a hack. But, when it comes to China, the possibility of independent actors conspiring to commit a cybercrime is not even on the menu of options. We are expected to believe that all 1.4 billion Chinese work for the Communist Party, and no stroke on a keyboard is possible without the approval of Beijing.
To make the case for Chinese culpability, again without providing any evidence, US Secretary of State Antony Blinken pointed to China’s Ministry of State Security as being responsible for the Microsoft hack.
The decision to unseal the indictment against defendants who will never set foot in a US courtroom at the same time as the explosion of the Microsoft hack story was meant to conflate two completely unrelated cases and cause the world to believe that all attacks originating from China must be the work of the Communist Party.
In claiming that Ministry of State Security agents “fostered an ecosystem of criminal contract hackers who carry out both state-sponsored activities and cybercrime for their own financial gain”, Blinken suggests that when it comes to China there is a third category of cyber attackers, hybrid ones, who work for the government while trying to enrich themselves on the side through criminal activity.
What are the hacking accusations against China?
This begs the question of how such sensitive data, spanning a period of nearly a decade, about the life and work of Chinese spies, was obtained by the Department of Justice to begin with.
This means that the US blames China for the very same tactics the National Security Agency and CIA routinely use.
How China’s surveillance state was a mirror to the US for Snowden
It should come as no surprise that a country which invests so much in spying on its friends would also want to spy on its adversaries.
Like it or not, cyberspying and hacking is what modern intelligence agencies of all countries are paid to do.
That’s the world we live in. Washington’s attempt to portray China as an outlier, a cyber empire which poses a unique threat to global security and therefore deserves condemnation and reprisal, is another arrow in a quiver of misrepresentation and hypocrisy – a pot calling the kettle black.
Gal Luft is co-director of the Institute for the Analysis of Global Security and professor at Ostim Technical University, Turkey