On Mar. 25, UK GVT issued sanctions against entity and 2 individuals.
UK GVT said it held China state-affiliated organizations and 2 individuals responsible for 2 cyber actions against institutions and parliamentarians, and issued sanctions.
UK Treasury UK OFSI issued financial sanctions notice, updated cyber sanctions list.
UK NCSC has assessed that UK Electoral Commission systems were highly likely to have been compromised by a Chinese state-affiliated entity between 2021 and 2022.
Malicious Cyber Activity
Almost certain that China state-affiliated Advanced Persistent Threat Group 31 (APT31) conducted reconnaissance activity on parliamentarians in a separate 2021 campaign.
UK GVT said it is the latest in a pattern of malicious cyber activity by Chinese state-affiliated bodies/individuals targeting democratic institutions and parliamentarians.
No accounts compromised, but believes it is part of large-scale espionage campaign.
In response, Foreign, Commonwealth and Development Office has summoned the Chinese Ambassador to UK, sanctioned a front company, 2 individual APT31 members.
Sanctioned Entities
These are: Wuhan Xiaoruizhi Science and Technology Company Limited, associated with APT31, and operating on behalf of Chinese Ministry of State Security (MSS).
Zhao Guangzong, an APT31 member, operating on behalf of MSS, who has engaged in cyber activities targeting officials, government entities, and parliamentarians.
Ni Gaobin, an APT31 member, also operating on behalf of MSS, and has engaged in cyber activities targeting officials, government entities, and parliamentarians.
The US is also designating same persons and entity for malicious cyber activity.
In Mar. 2024, OFAC designated Chinese hackers targeting infrastructure, see #205895.
Apr. 2024 Supportive Statements
On Apr. 2, 2024, UK GVT announced links have been added to supportive statements.
