A Chinese national, Xu Zewei, accused of working as a contracted hacker for Chinaโs Ministry of State Security and linked to the Silk Typhoon/Hafnium group, has been extradited from Italy to the United States to face charges for cyberespionage. U.S. prosecutors allege he exploited Microsoft Exchange zero-day vulnerabilities, deployed web shells to steal data from COVID-19 research organizations, and operated under cover companies such as Shanghai Powerock Network Co., Ltd. #XuZewei #SilkTyphoon #Hafnium #MicrosoftExchange #ShanghaiPowerock
Keypoints
- Xu Zewei was extradited from Italy to the U.S. to face criminal charges for alleged cyberespionage.
- U.S. authorities accuse Xu of acting as a contracted hacker for Chinaโs Ministry of State Security (MSS).
- Prosecutors link him to the Silk Typhoon (aka Hafnium) group that exploited internet-facing systems to gain access.
- The indictment alleges exploitation of Microsoft Exchange zero-day vulnerabilities and deployment of web shells to exfiltrate data.
- Victims included COVID-19 research organizations, and Xu allegedly used firms like Shanghai Powerock Network Co., Ltd. as cover.