The United Kingdom (UK) has ignited a fresh wave of tension with China, accusing Beijing-linked organizations of orchestrating “malicious” cyber campaigns against its democratic institutions in 2021 and 2022. These attacks, according to Deputy Prime Minister Oliver Dowden, compromised both the UK Electoral Commission and the email accounts of British parliamentarians, including those of vocal China critics.
Hacking Attempts and Sanctions
The British government alleges that Chinese hackers attempted to breach the email accounts of British lawmakers known for their critical stances on China. In response, the UK imposed sanctions on two individuals and a company linked to APT31, a state-backed Chinese hacking group believed to be responsible for the attempt.
Separately, the UK claims a different Chinese state-affiliated hacking group was behind a cyberattack on the Electoral Commission that occurred between 2021 and 2022. This attack, disclosed last year, reportedly compromised the data of millions of people.
China Denies Accusations
The Chinese embassy in London vehemently refuted the claims, calling them “completely fabricated” and “malicious slanders.” This response highlights the escalating tensions between the UK and China in the realm of cybersecurity.
The British government finds itself in a precarious position, attempting to neutralize security threats from China while simultaneously maintaining or even strengthening cooperation in areas like trade, investment, and climate change. However, with a general election expected later this year, concerns in the UK surrounding alleged Chinese espionage activity have intensified.
Rising Global Concerns over Chinese Hacking
The UK’s accusations are just the latest chapter in a growing narrative of Western anxiety about Chinese cyberespionage. Tensions between China and Western powers regarding cyberespionage have been simmering for some time. Western intelligence agencies have been increasingly sounding the alarm on state-backed Chinese hacking activities.
Examples of Global Incidents
Last month, the US government launched an operation to dismantle a widespread Chinese hacking scheme that had compromised thousands of internet-connected devices, according to security officials. Days later, Dutch intelligence agencies revealed that Chinese cyberspies had gained access to a military network in the Netherlands, highlighting what they claimed to be a trend of Chinese political espionage.
APT31: A Group with a History of Targeting Politicians
APT31, the Chinese hacking group accused by Britain of targeting lawmaker emails, has a documented history of spying on politicians and their staff. In 2020, security researchers from Google and Microsoft warned that the group had targeted the personal emails of campaign staff working for US President Joe Biden. According to US cybersecurity firm Secureworks, APT31 has also targeted legal, consulting, and software development firms in the past.
The UK has been attempting to mend its relationship with China over the past year. Ties between the two nations reached a historic low point under former Prime Minister Boris Johnson. During his administration, the UK restricted some Chinese investments due to national security concerns and voiced anxieties about the suppression of freedoms in Hong Kong.
The UK’s accusations of cyberattacks against its democratic institutions mark a significant development in its relationship with China. It remains to be seen how China will respond beyond its initial denials and whether this incident will further strain the already delicate relationship between the two nations.
