Xu Zewei has been extradited to the United States to face charges for allegedly participating in a Chinese government hacking group that compromised thousands of American organizations and stole COVID-19 research.
Xu Zewei, accused of participating in a state-sponsored Chinese hacking operation, has been extradited to face charges in the U.S. The extradition marks a significant development in ongoing efforts to prosecute individuals involved in cyberattacks against American institutions.
According to allegations, Xu participated in a Chinese government-linked hacking group responsible for breaching thousands of U.S. organizations. The group targeted sensitive networks across multiple sectors, with a particular focus on stealing COVID-19-related research during the pandemic.
The case highlights the continued tension between the U.S. and China over cyber espionage. American officials have repeatedly accused Chinese state-sponsored groups of conducting sophisticated cyberattacks to steal intellectual property and sensitive government information.
Prosecutors allege the hacking group accessed research institutions, pharmaceutical companies, and government agencies. The theft of pandemic-related research raised national security concerns during a critical period of global health response.
The extradition process reflects international cooperation in addressing cybercrime, though China has historically resisted extradition requests from the United States. Xu's case represents one of the more high-profile instances of a suspected Chinese state-linked hacker being brought to American custody.
Once in U.S. custody, Xu will face federal charges related to the cyberattacks. The prosecution is expected to detail the scope of the breaches and the stolen information.
This development comes as the U.S. government has increased efforts to identify and prosecute individuals involved in state-sponsored hacking operations. The Department of Justice and the FBI have prioritized cases involving cyberattacks on critical infrastructure and theft of sensitive research.
Microsoft has released a patch for a zero-day vulnerability in Windows Defender that could allow attackers to exhaust hard disk space. The flaw was discovered and reported by security researcher NightmareEclipse.
A software defect from 2006 triggered a cascading network failure that knocked out Telstra's national phone service Wednesday morning. The bug, related to daylight savings time processing, created a 'digital domino chain' that locked customers out across the country.
The EU Parliament is advancing legislation that would require tech companies to scan for child sexual abuse material (CSAM), reviving a proposal rejected in March. End-to-end encrypted services like WhatsApp would be exempt from the requirements.
Hackers compromised the Injective Labs SDK repository on GitHub and published a malicious package to npm that steals cryptocurrency wallet private keys and seed phrases from developers.