By NewsBlogger The UK government imposed sanctions on individuals and an entity allegedly involved in cyber-attacks targeting UK parliamentarians, sparking skepticism among cybersecurity experts about the effectiveness of such measures in enhancing cybersecurity.
At a glance
- UK government imposed sanctions on individuals and entities involved in cyber-attacks targeting UK parliamentarians in 2021
- Chinese hacking group APT31 indicted in Washington
- Cybersecurity experts skeptical about the effectiveness of sanctions in enhancing UK cybersecurity
- Chinese state-affiliated entity accused of compromising systems of the Electoral Commission
- The Chinese embassy in London denied accusations, highlighting tensions in the cyber realm
The details
The UK government recently imposed sanctions on two individuals and one entity allegedly involved in cyber-attacks targeting UK parliamentarians in 2021. Home Secretary James Cleverly emphasized that actions against elected representatives and electoral processes will not be tolerated.
This move was seen as a response to a decision made in Washington to indict seven individuals associated with APT31, a Chinese hacking group.
Cybersecurity experts, including Alan Woodward, a professor in the field, are skeptical about the effectiveness of these sanctions in enhancing UK cybersecurity.
The UK government accused a Chinese state-affiliated entity of compromising the systems of the Electoral Commission.
In response, the Chinese embassy in London denied these accusations, highlighting ongoing tensions between the two countries in the cyber realm.
Chinese hacking attempts are considered a common occurrence, with China being a leader in government-backed exploitation, according to Google.
APT31, the group at the center of these recent sanctions, has been linked to cyber-attacks in various countries, including France, Finland, and even on tech giant Microsoft.
Another Chinese hacking outfit, APT40, targeted New Zealand’s parliament in 2021.
Mei Danowski, a cybersecurity expert focusing on China, pointed out that nearly every cybersecurity firm in China has government clients, indicating a close relationship between the industry and the government.
Western governments, including the US and UK, have struggled to coordinate a cohesive response to Chinese cyber-attacks, partly due to challenges of attributing responsibility in the cyber realm.
The Chinese government often maintains plausible deniability about its involvement in such activities, complicating the diplomatic landscape.
The “name and shame” tactic employed by the US and UK, such as in this case with the sanctions, may have limited impact beyond symbolic gestures.
China has consistently denied any interest in interfering in the internal affairs of the UK or other countries, emphasizing that intelligence gathering is a common practice among nations.
In a related development, it was revealed that former US President Donald Trump had authorized a covert CIA operation targeting Chinese social media to influence public opinion against Beijing.
This revelation underscores broader geopolitical tensions between the US and China in the cyber domain.
While some cybersecurity experts argue that sanctions may be justified in cases where Chinese cyber-attacks result in the harassment of dissidents, the broader challenge of effectively countering and deterring such activities remains a complex and ongoing issue for the international community.
Article X-ray
Sources
Here are all the sources used to create this article:
Facts attribution
This section links each of the article’s facts back to its original source.
If you suspect false information in the article, you can use this section to investigate where it came from.
| theguardian.com |
|---|
| – UK government imposed sanctions on two individuals and one entity accused of targeting UK parliamentarians in cyber-attacks in 2021 – James Cleverly, the home secretary, stated that targeting elected representatives and electoral processes will never go unchallenged – Experts saw the UK’s response as a reaction to a decision in Washington to indict seven individuals associated with APT31 – Alan Woodward, a professor of cybersecurity, believes the sanctions won’t make a significant impact on UK cybersecurity – The UK government accused a Chinese state-affiliated entity of compromising the Electoral Commission’s systems – The Chinese embassy in London denied the UK’s accusations – Chinese hacking attempts are part of the ecosystem in which western governments must navigate their relationships with Beijing – Google reported that China leads government-backed exploitation – APT31 has been linked to hacks in France, Finland, and Microsoft – APT40, another Chinese hacking outfit, attacked New Zealand’s parliament in 2021 – China’s hackers for hire compete for government contracts and gather data from foreign agencies – Mei Danowski, a China cybersecurity expert, stated that nearly every cybersecurity firm in China would have government clients – Western governments struggle to coordinate an effective response to Chinese hacks – Chinese government often has plausible deniability about responsibility for hacks – Audrye Wong, a professor, noted that China is cautious and cares about shaping perceptions – US and UK’s “name and shame” tactic may be symbolic at best – China denies interest in meddling in the UK’s internal affairs – Gathering information on foreign states is part of every country’s intelligence operations – Donald Trump authorized a covert CIA operation on Chinese social media to turn public opinion against Beijing – Some cybersecurity experts believe sanctions may be justified if Chinese cyber-attacks lead to the harassment of dissidents |
