Getting your Trinity Audio player ready... |
The U.S. Department of Justice (DOJ) has unveiled charges against five Chinese nationals for their roles in a cybercriminal ring that targeted at least 100 companies globally. The five are alleged to have engaged in cryptojacking, stolen source code, accessed customer account data and more.
In the indictments announced on September 16, the DoJ alleged that the five defendants engaged in computer intrusions that affected several companies in the United States and beyond. They included software development companies, telecommunications providers, computer hardware manufacturers, social media platforms, universities, video game companies and more.
The hackers allegedly stole critical data from their victims, including source code, customer account data, software code signing certificates and more.
“These intrusions also facilitated the defendants’ other criminal schemes, including ransomware and “crypto-jacking” schemes, the latter of which refers to the group’s unauthorized use of victim computers to “mine” cryptocurrency,” the DoJ alleged.
The Justice Department also revealed that two Malaysian businessmen who had conspired with the Chinese hackers had been arrested. A federal grand jury in Washington D.C. had returned an indictment charging the two with colluding with the hackers and profiting from their crimes. Following a warrant for their arrest issued by a District of Columbia court, Malaysian authorities had arrested them in Sitiawan.
The Chinese hackers are still at large, with the U.S. government accusing China of protecting cybercriminals.
“Regrettably, the Chinese communist party has chosen a different path of making China safe for cybercriminals so long as they attack computers outside China and steal intellectual property helpful to China,” Deputy Attorney General Jeffrey Rosen alleged.
The indictment charged Zhang Haoran and Tan Dailin with 25 counts of conspiracy, aggravated identity theft, money laundering, wire fraud and violating the Computer Fraud and Abuse Act. If convicted of their charges, they face over 80 years behind bars.
The other three, Qian Chuan, Jiang Lizhi and Fu Qiang, face charges of money laundering, racketeering, access device fraud and conspiracy to violate the CFAA, among others. They face up to 70 years in prison if convicted of their charges.
For the two Malaysian businessmen, the DoJ charged them with racketeering, intentional damage to protected computer, access device fraud and aggravated identity theft.
The DoJ has continued to crack down on digital currency crime in recent months. Earlier this week, it unveiled charges against two Russian citizens whom it claims coordinated a sophisticated phishing attack targeting three digital currency exchanges and over 100 users. In August, it seized 300 digital currency wallets it claimed were used to fund terrorist activities.