Chinese Hackers Position Themselves In US Critical Infrastructure, Warns Cyber Official

A top U.S. cybersecurity official warned on Friday that Chinese hackers are strategically positioning themselves within U.S. critical infrastructure networks, potentially preparing for a major conflict. Morgan Adamski, executive director of U.S. Cyber Command, stated that ongoing Chinese cyber operations are aimed at gaining an advantage if tensions between the U.S. and China escalate into a serious conflict.

Adamski’s remarks, made during a presentation at the Cyberwarcon security conference in Arlington, Virginia, highlighted that Chinese-linked hackers have already infiltrated key IT networks. These actions are part of a broader strategy to enable potential disruptions, such as manipulating vital systems like HVAC controls in server rooms or even interfering with critical energy and water systems during a crisis.

The warning comes as the U.S. government continues to respond to a series of cyber espionage activities attributed to China. A recent attack on U.S. telecommunications firms, identified as the “Salt Typhoon” operation, is one of the most significant and damaging cyberattacks in the country’s history. This operation involved stealing sensitive telecommunications data, including call records, and compromising communications between high-ranking officials from both major U.S. political parties ahead of the 2024 presidential election.

The Chinese government consistently denies any involvement in cyberattacks targeting U.S. entities. Despite these denials, U.S. officials, including those at the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), have been working to assist potential victims by providing technical help and issuing warnings. These agencies are also actively sharing information on Chinese cyber operations globally, including sanctions, indictments, and cybersecurity advisories, in an effort to disrupt Chinese cyber activity.

The U.S. has also responded offensively, according to Adamski, with coordinated efforts to degrade and disrupt Chinese cyber operations. These actions are part of a larger strategy to safeguard critical infrastructure and reduce vulnerabilities ahead of any potential conflict with China. The growing threat of cyberattacks from China underscores the increasing role of cybersecurity in national defense, particularly as the U.S. faces evolving geopolitical tensions.