Security News > 2024 > March > Finland confirms APT31 hackers behind 2021 parliament breach

Finland confirms APT31 hackers behind 2021 parliament breach
2024-03-26 21:23

The Finnish Police confirmed on Tuesday that the APT31 hacking group linked to the Chinese Ministry of State Security was behind a breach of the country's parliament disclosed in March 2021.

As Finnish Parliament officials said three years ago, when describing the incident as a "State cyber-espionage operation" believed to be linked to "The so-called APT31 operation," the attackers gained access to multiple parliament email accounts, including some belonging to Finnish MPs. On Monday, the U.S. Treasury Department's Office of Foreign Assets Control sanctioned two APT31 operatives who worked as contractors for Wuhan XRZ, an OFAC-designated front company used by the Chinese MSS as cover in U.S. critical infrastructure attacks.

The United Kingdom also sanctioned Wuhan XRZ and the two APT31 hackers for breaching the GCHQ intelligence agency, targeting U.K. parliamentarians, and hacking into the country's Electoral Commission systems.

The State Department is now also offering rewards of up to $10 million for information on Wuhan XRZ and APT31 that could help locate and/or apprehend any of the seven Chinese MSS hackers.

US sanctions APT31 hackers behind critical infrastructure attacks.

Chinese Earth Krahang hackers breach 70 orgs in 23 countries.


News URL

https://www.bleepingcomputer.com/news/security/finland-confirms-apt31-hackers-behind-2021-parliament-breach/