- May 4, 2019
- 801
A Chinese government official has, once again, accused the US government of "irresponsible malicious cyber activities." Wang Wenbin, a spokesperson for the Chinese Ministry of Foreign Affairs, cited an alert sent by China's CERT team earlier this week that warned Chinese companies about possible uses of HIVE, a malware suite developed by the CIA.
The statement marks the third time in two months that Chinese officials complained about US cyber-espionage tooling after making similar statements about Bvp47 in February and NOPEN in March. Details about HIVE and NOPEN have been available since 2017 since the Vault7 and Shadow Broker leaks. Details about Bvp47 were shared earlier this year for the first time, but the research was also rooted in trawling the 2017 Shadow Brokers leak.
It is unclear why China is pearl-clutching about half a decade old leaks, but its recent statements suggest officials are using the leaked tools to portray the US as an aggressor in Southeast Asia, maybe as a way to justify its own extensive cyber-espionage operations in the region.
Risky Biz News: China complains about US malware, five years later
In other news: Several top VPN apps were caught installing root certificates on user devices and a major Java crypto bug will give many defenders nightmares.
riskybiznews.substack.com