In recent months, the U.S. Congress and Western media have been abuzz with allegations of Chinese cyberwarfare targeting the United States. Central to these claims is 'Volt Typhoon,' a malware purported to disrupt civilian infrastructure, including electricity and transportation grids.
However, doubts about these allegations have surfaced. China's National Computer Virus Emergency Response Center (CVERC) released a report on July 8, challenging the narrative that links Volt Typhoon to Chinese government activities. According to CVERC, Volt Typhoon is likely a ransomware operated by a criminal group known as Dark Power, not a state-sponsored cyberweapon.
The initial report by the U.S.-based cybersecurity firm ThreatMon pointed to specific IP addresses associated with Dark Power, suggesting a Chinese origin. After these claims were met with skepticism, ThreatMon attempted to retract or obscure these connections in a subsequent report, although remnants of the original data remained accessible.
CVERC's investigation further implies that the Volt Typhoon controversy might be fueling legislative efforts in the U.S., particularly concerning Section 702 of the Foreign Intelligence Surveillance Act (FISA). Critics argue that such measures infringe upon the Fourth Amendment rights of Americans by granting unwarranted surveillance powers.
The debate over Volt Typhoon underscores the complex interplay between cybersecurity threats and political agendas. While the U.S. seeks to address potential cyber threats, questions arise about the motivations behind these actions and their implications for privacy and international relations.
As the situation unfolds, it remains crucial for both nations to engage in transparent dialogue to address cybersecurity challenges without compromising individual rights or escalating tensions.
Reference(s):
Volt Typhoon: How U.S. intelligence fabricate disinformation on China
cgtn.com
