The U.S. Treasury Department has accused a Chinese cybersecurity company of supporting state-sponsored hacking campaigns. Integrity Technology Group, based in Beijing, allegedly provided infrastructure for cyber attacks by a group known as Flax Typhoon. The Treasury Department sanctioned Integrity Technology Group on Friday.
It said the company helped Flax Typhoon target U.S. victims between mid-2022 and late-2023. Flax Typhoon has been active since at least 2021. The group exploits known vulnerabilities to gain access to computers.
It then uses remote access software to maintain a foothold. Acting Under Secretary Bradley T. Smith said the Treasury “will not hesitate to hold malicious cyber actors and their enablers accountable.” He added that the U.S. will work with partners to strengthen cyber defenses.
Integrity Technology Group was established in 2010. It provides services to Chinese government agencies, including the Ministry of State Security.
u.s. sanctions Chinese cybersecurity firm
The Flax Typhoon hackers have targeted corporations, universities, government agencies, and media organizations in the U.S. and abroad. The U.S. government is taking steps to mitigate the threats posed by these state-backed actors. China has denied the allegations.
It says it opposes all forms of cyber attacks. However, this incident adds to growing concerns about state-sponsored espionage activities. The Treasury Department is investigating the extent of the data breach with help from the FBI and intelligence community.
Cybersecurity experts warn that the ramifications could affect various sectors. Earlier this month, the Treasury was notified by a software company about a security breach. Hackers had obtained a key allowing them remote access to Treasury workstations and documents.
Top Chinese officials are interested in Treasury Department activities. The department oversees sensitive financial data and implements sanctions against Chinese firms.
