Infosec Watchtower Logo

Finland's Parliament Cyber Attack Linked to Chinese State-Sponsored Hackers APT31

Charles M. Walls | March 29, 2024 | Views: 152

A scene where abstract digital elements blend with symbols of Finnish governance and Chinese cyber espionage.

In a significant cybercrime investigation, Finland's police force has linked the hacking of its Parliament in 2020 to APT31, a cyber espionage group believed to be backed by the Chinese government. The attack, which unfolded between the autumn of 2020 and the early months of 2021, has been described as a sophisticated operation aimed at infiltrating the Finnish Parliament's information systems.

This revelation comes after an intricate and lengthy investigation by Finnish authorities, which unearthed the sophisticated digital footprint of what they've termed a "complex criminal infrastructure." The initial breach was brought to public attention in December 2020, identified by the Finnish Security and Intelligence Service (Supo) as a cyber espionage act against state infrastructure.

Confirming suspicions, the Finnish Police (Poliisi) have now solidified the link between APT31, also known under aliases such as Altaire, Bronze Vinewood, and Judgement Panda, and the cyber intrusion. This group, with roots dating back to at least 2010, is notorious for its state-sponsored cyber operations targeting a myriad of sectors globally.

This accusation aligns with similar charges from the U.K. and the U.S., which have also pointed fingers at APT31 for a series of cyber espionage campaigns affecting businesses, officials, dissidents, and politicians across borders. In a dramatic move, the U.S. has charged seven members of this group, highlighting the international ramifications of their cyber activities. Among those charged are Ni Gaobin and Zhao Guangzong, who are accused of leading attacks on U.S. entities from their positions at Wuhan XRZ, a company implicated in these cyber offenses.

These developments have escalated tensions between China and Western nations, particularly as China denies the allegations, accusing the Five Eyes alliance of disseminating "disinformation" about its cyber activities. Beijing has staunchly defended its position, calling on the U.S. and the U.K. to cease the politicization of cybersecurity and the unilateral imposition of sanctions.

As the cyber espionage landscape continues to evolve, this case underscores the growing complexity and geopolitical significance of cybersecurity in international relations.

Source of Inspiration