China is growing more efficient at cyber theft, a U.S. official warned at a recent cybersecurity conference in Washington.
“So what we’re seeing is rather than the Chinese actors going directly at individual companies, they’re going to the points of aggregation. They understand the business decisions and the business processes domestically here in our infrastructure, but not just in the U.S., but in Europe and elsewhere,” said Christopher Krebs, director of Cybersecurity and Infrastructure Security Agency at the U.S. Department of Homeland Security.
“Points of aggregations” refer to managed service providers (MSPs), which are companies that manage other firms’ information technology (IT) infrastructure systems. These could include small and medium-sized MSPs, as well as large technology firms such as IBM.
Krebs explained that many firms are choosing to outsource their IT to these MSPs to save money and be more productive.
“And so they’re going to these managed service providers, which provides the adversary or the actor, a much more efficient way of getting to the stuff they want to get. And that’s the intellectual property, that’s personally identifiable information,” he added.
Zhu and Zhang allegedly acted in association with the Tianjin City bureau of China’s Ministry of State Security, the country’s main intelligence agency.
“If you’re a domestic infrastructure, if you’re a U.S. company, if you’re any company that plays in any of those strategic sectors, you have a target on you. Manage risk accordingly,” Krebs warned.
He added that U.S. companies wanting to do business in China should be “eyes-open,” for China’s cybersecurity and intelligence laws leave their data vulnerable to the Chinese regime.