In recent years, Chinese hackers linked to the regime have attacked organizations involved in cancer research on multiple occasions, according to the report by California-based cybersecurity firm FireEye.
The cyberattacks, the report stated, likely flow from the regime’s desire to find a cure for the disease—the country’s No. 1 killer—and, in turn, stave off its attendant social costs.
“It is likely that an area of unique interest is cancer-related research, reflective of China’s growing concern over increasing cancer and mortality rates, and the accompanying national health care costs,” the report stated.
The report highlighted a U.S. health center “with a strong focus on cancer research” that has been targeted over the years by three separate suspected Chinese hacker groups. In April, suspected Chinese hackers used malware to attack the health center.
It has previously been hacked by other Chinese advanced persistent threat (APT) groups—which aim to gain unauthorized access to a computer network and retain long-term, ongoing access—including APT22, a still-active group known for targeting biomedical, pharmaceutical, and health care organizations.
But it isn’t only cancer research institutes that have fallen victim to cyber-espionage, Chinese APTs, many of which are believed to be state-sponsored, have attacked other health care organizations, including device manufacturers and pharmaceutical companies, the report said.
“The PRC has one of the world’s fastest-growing pharmaceutical markets, creating lucrative opportunities for domestic firms, especially those that provide oncology treatments or services,” it said. “Targeting medical research and data from studies may enable Chinese corporations to bring new drugs to market faster than Western competitors.”
The regime, the report stated, has slated biopharma as an industry for aggressive development under its industrial plan “Made in China 2025.” The plan, which aims to transform the country into a high-tech manufacturing powerhouse by 2025, has been criticized by Western officials and experts as sanctioning the theft of intellectual property (IP) abroad.
“Notably, China’s strategic ‘Made in China 2025’ plan includes a push for increased domestic development of medical technologies and devices, which may drive threat activity against IP holders and producers of these technologies,” it said.
Besides theft of trade secrets, hacker groups have also pilfered huge amounts of personal data, including health information, FireEye stated. In one case, a Chinese cyber actor launched attacks on several health care organizations that held sensitive data on U.S. government employees.
FireEye said that the personal data was likely stolen to “identify, track, and even exploit targeted personnel.”
“The government data alone could be used to identify undercover agents operating in China; to recruit informants and double agents in the U.S.; or to identify and harass or threaten the family members of Americans with security clearances,” the report said.