US jeopardizes global cyber security: Foreign Ministry

The US is the origin of cyber warfare and the biggest global cyber thief, and it is of common interest for all to reveal US' hypocrisy on cyber security, a spokesperson for the Chinese foreign ministry said Wednesday.

The China Cybersecurity Industry Alliance issued a report that discloses over ten cases in which US intelligence agencies launched cyber attacks, carried out internet monitoring and espionage, and leaked and proliferated cyberattack weapons and tools since 2010.

Foreign Ministry spokesperson Wang Wenbin told a daily news briefing that China noted that the report provides a systematic account of the history and typical cases of cyber attacks undertaken by relevant departments of the US government and their impact on global cyber security.

These cases show once again that the US is the origin of cyber warfare, the biggest spreader of advanced cyber weapons and the biggest global cyber thief, Wang said.

The so-called Clean Network and what the US calls "technology that reflects democratic values and interests" are just a pretext for it to unscrupulously conduct cyber thefts and attacks and ensure its supremacy, he added.

Wang stressed that safeguarding cybersecurity is a shared responsibility of all countries.

"Cyberspace should not be used as a tool to split the international community or contain and bring down other countries. It is in the international community's common interest to end the US' lawlessness on cyber theft and reveal its hypocrisy on cyber security," Wang said.

Here are some of the cases from the report.

Case 1: In 2010, the US was found using the Stuxnet virus to attack Iran's nuclear facilities. This is the first case in history where a government launched cyber attacks against key infrastructure of another country, opening the "Pandora's box" of state-to-state cyberwarfare. In 2022, the US Cyber Command announced that it is their obligation to "own the domain".

Case 2: The ransomware WannaCry that affected most countries and caused the most severe losses across the world in 2017 was the result of leaked cyber weapons from the US National Security Agency. Ironically, in 2021, the US put on an act by launching a so-called International Counter-Ransomware Initiative with dozens of countries.

Case 3: In 2013, PRISM revealed how the US engaged in cyber espionage across the world, including against China. The US even asked nine international internet giants, including Microsoft, Yahoo, Google and Apple, to cooperate with the US government to secretly monitor information. The program even invaded the network equipment of multiple countries including Germany and the ROK. On the other hand, since 2018, the US has been citing digital security as an excuse to suppress Chinese companies without providing any evidence, and it even coerced its allies who were also victims of US espionage to join the gang.

Case 4: In 2013, the media exposed that the US National Institute of Standards and Technology (NIST) used its cryptography standards to install backdoors, which expanded the targets of supply chain attacks from IT products to IT standards. On March 30, 2023, the US' top diplomat said at the "Summit for Democracy" that the US is working with partners to establish necessary rules and norms so that technology is developed in ways that reflect what they call "democratic values and interests".

Case 5: In 2015, the media disclosed the US government's Project CAMBERDADA, which is aimed to intrude, divide and suppress foreign cybersecurity vendors and force them to dance to the tune of the US. As a result, few global cybersecurity vendors now choose to disclose cases of the US's cyberattacks, and some US cybersecurity vendors have even become an accomplice of the US government's disinformation campaign targeting other countries.