Australia sees China as main suspect in state-based cyberattacks, sources say

Australia sees China as main suspect in state-based cyberattacks, sources say

File photo Australia's Parliament House in Canberra
File photo: The Australian national flag flies over Parliament House in Canberra on June 20, 2011. (Photo: AFP/TORSTEN BLACKWOOD)

SYDNEY: Australia views China as the chief suspect in a spate of cyber-attacks of increasing frequency in recent months, three sources familiar with the government's thinking told Reuters on Friday (Jun 19), a suggestion swiftly dismissed by Beijing.

The comments came after Prime Minister Scott Morrison said a "sophisticated state-based actor" had spent months trying to hack all levels of the government, political bodies, essential service providers and operators of critical infrastructure.

"We know it is a sophisticated state-based cyber actor because of the scale and nature of the targeting," Morrison told reporters but declined to say who Australia believed was responsible.

Three sources briefed on the matter said Australia believed China is responsible, however.

"There is a high degree of confidence that China is behind the attacks," one Australian government source told Reuters, seeking anonymity as he was not authorised to speak to media.

A Chinese Foreign Ministry spokesman on Friday denied Beijing was involved and said China "firmly opposed all forms of cyber attacks."

Australian intelligence has flagged similarities between the recent attacks and a cyber attack on parliament and the three largest political parties in March 2019. Last year, Reuters reported that Australia had quietly concluded China was responsible for that cyber-attack.

Australia has never publicly identified the source of that attack, however, and China denied it was responsible.

READ: Australia under 'unprecedented' threat from foreign interference: Spy chief

As with last year's attack, Australia's chief cyber intelligence agency said on Friday its investigation had found no evidence that the perpetrator sought to be "disruptive or destructive" once within the host network.

Morrison said he spoke about the issue with British Prime Minister Boris Johnson on Thursday, while other allies have also received briefings.

Defence Minister Linda Reynolds said advice showed no large-scale personal breaches of data resulting from the attack, but urged users to fully update web or email servers with the latest software and use multi-factor authentication.

An Australian government source said Morrison's public declaration was a bid to flag the issue to potential targets.

A US security ally, Australia strained ties with its largest trading partner, China, by pushing for an international inquiry into the source and spread of the coronavirus that first emerged in the central Chinese city of Wuhan late last year.

China recently imposed dumping tariffs on Australian barley, suspended some imports of beef and warned its students and tourists against travel to the country, citing racism accusations. Two-way trade stood at A$235 billion (US$162 billion) last year.

Source: Reuters/nc/ec