Chinese state hackers will “almost certainly” conduct aggressive cyberattacks to disrupt critical U.S. infrastructure, such as pipelines and railways, if a conflict breaks out with the United States, a senior U.S. cybersecurity official has warned.
Beijing is investing heavily in advancing cybertechnologies designed to sabotage U.S. infrastructure, Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency, said at an event at the Aspen Institute in Washington.
“In the event of a conflict, China will almost certainly use aggressive cyber operations to go after our critical infrastructure, to include pipelines and rail lines, to delay military deployment, and to induce societal panic,” she told the audience.
“This, I think, is the real threat that we need to be prepared for, and to focus on and to build resilience against.”
While malign activities from Chinese state actors have, for years, been in the spotlight, Easterly noted that the focus has been espionage—be it the “decades of intellectual property theft” or the “greatest transfer of intellectual wealth in history.” But Beijing’s efforts have now increasingly shifted toward disruption and destruction, she said.
“Given the formidable nature of the threat from Chinese state actors, given the size of their capability, given how much resources and effort they’re putting into it, it’s going to be very, very difficult for us to prevent disruptions from happening.”
Easterly’s comments come as bilateral tensions continue to rise and cyber attacks from China draw growing attention.
The United States and intelligence partners stated that the group can use the same tactics from the Volt Typhoon campaign to target other sectors worldwide.
The resources that the Chinese regime has put into cyber warfare have been considerable.
Appearing before the House Appropriations Committee on April 27, FBI Director Christopher Wray said the Chinese hackers outnumber FBI cyber personnel by “at least 50 to 1.”
In a State Department briefing on June 13, spokesperson Matthew Miller cited a March Intelligence Community report noting that “China almost certainly is capable of launching cyber-attacks that could disrupt critical infrastructure services within the United States, including against oil and gas pipelines and rail systems.”
“It’s vital for government network defenders and the public to stay vigilant. It’s why the U.S. Government, in a whole-of-government action, has worked with the private sector to prepare private sector defenses,” he told reporters when asked about the Volt Typhoon cyberattack.
Easterly said her agency has been engaging with different social sectors in an effort to protect the vulnerable groups that may be targeted.
“We have to look at this as a threat to the nation and that we all have a part to play.”