On Mar. 25, OFAC designated Chinese hackers targeting infrastructure.
OFAC designated 2 individuals and 1 entity linked to China for their roles in cyber operations targeting US entities that operate within US critical infrastructure sectors.
US Treasury issued press release regarding details of the sanctioned subjects.
Action part of collaborative effort with US DoJ, DoJ FBI, US State Dept, and UK GVT.
Also, DoJ unsealed indictments of Zhao Guangzong, Ni Gaobin, five others, #206151.
Also concurrent with UK GVT sanctions against China state-affiliated actors, #205836.
Designations
Wuhan Xiaoruizhi Science and Technology Company, Limited (Wuhan XRZ), a Wuhan-based Ministry of State Security front company serving as cover for cyber operations.
Wuhan XRZ believed to be linked to Advanced Persistent Threat (APT) 31, a collection of Chinese state-sponsored intelligence officers, contract hackers, and support staff.
APT 31 responsible for targeted a wide range of high-ranking US government officials and their advisors integral to US national security including staff at the White House.
Also responsible for numerous cyber attacks on critical infrastructure sectors, including the defense industrial base, information technology, as well as the energy sectors.
Zhao Guangzong and Ni Gaobin, two Chinese nationals affiliated with Wuhan XRZ, for their roles in malicious cyber operations targeting US critical infrastructure sectors.
Designated pursuant to EO 13694, for engaging in malicious cyber-enabled activities.
US State Dept Statement
US State Dept issued a press release announcing the criminal charges against seven Chinese hackers and on imposing sanctions against two individuals, one entity.
Apr. 2024 OFAC Federal Register
On Apr. 4, 2024, OFAC published Chinese cyber designations in the federal register.
Regulators
DoJ; OFAC; US Treasury
Entity Types
B/D; Bank; BS; CU; Exch; IA; Ins; Inv Co; MSB
Reference
OFAC: 89 FR 23635, 4/4/2024; List, 3/25/2024; US Treasury: PR, 3/25/2024; US State Dept: PR, 3/25/2024; EO 13694;