Ethical Hacking News
Czech cybersecurity agency NUKIB has sounded the alarm on growing risks of Chinese espionage threats to critical infrastructure, citing the cyberespionage group APT31 and risky devices. The warning comes as many devices and cloud services transmit data to or are managed from China, posing significant risks to critical infrastructure.
NUKIB warns of growing Chinese espionage threats to critical infrastructure. The agency cites cyberespionage group APT31 and risky devices as significant risks. Czech organizations are advised to exercise extreme caution when dealing with foreign vendors and cloud services due to China's laws and politics allowing broad access to data.
Czech cybersecurity agency NUKIB has issued a warning about the growing risks of Chinese espionage threats to critical infrastructure, citing the cyberespionage group APT31 and risky devices. The agency's statement highlights the increasing dependence of critical industries such as energy, healthcare, transport, and government on storing and processing data in cloud storage and on network connectivity that allows remote operation and updates.
In essence, NUKIB warns that suppliers of technological solutions have the ability to fundamentally influence the operation of critical infrastructure and/or access important data. Therefore, trust in the reliability of these suppliers is absolutely crucial. The agency's warning comes at a time when many devices and cloud services transmit data to or are managed from China, giving suppliers deep influence over operations and access to sensitive data.
Risky products include IP cameras, PV inverters, smart meters, healthcare tech, phones, cars, and AI models, as stated by the NUKIB. These devices can transmit data to or be remotely managed by their suppliers, posing a significant risk to critical infrastructure. Furthermore, the agency notes that the increasing number of connected devices that are transmitting data and are being managed from China is another risk factor.
The NUKIB has also cited attacks by APT31 against Czech ministries and NATO allies as evidence of the growing threat. In May 2025, the Czech government strongly condemned China after APT31 was linked to a cyberattack targeting the nation's critical infrastructure. The agency notes that APT31 has been operational for more than a decade, stealing diplomatic cables, industrial designs, and political strategy documents from Europe, North America, and Asia.
The EU, its Member States, and NATO Allies expressed strong support and solidarity with Czechia following the cyberattack. In response to the incident, the European Union issued a separate statement condemning APT31 activity and warning that Chinese hackers have ramped up attacks against member states. The statement noted that states should not allow their territory to be used for malicious cyber activities.
In addition, NUKIB pointed out that in China, laws and politics give authorities broad power to access data, pressure private firms, and compel their cooperation in state-led espionage. This highlights the need for critical infrastructure operators to exercise extreme caution when dealing with foreign vendors and cloud services.
The agency emphasizes that trust is not guaranteed, even if there is no outright ban on Chinese-made devices or technology. Therefore, Czech organizations are advised to view cyber risks linked to China as serious and put proper protections in place. For everyday citizens, the warning is not binding, but it is still wise to stay alert, think carefully about the technology used, and pay attention to what data is being shared and with whom.
In conclusion, NUKIB's warning on Chinese espionage risks to critical infrastructure highlights a pressing concern for governments, organizations, and individuals alike. The agency's call for vigilance and cooperation in addressing this threat must be heeded by all stakeholders.
Related Information:
https://www.ethicalhackingnews.com/articles/Czech-Cyber-Agency-Sounds-Alarm-on-Chinese-Espionage-Risks-to-Critical-Infrastructure-ehn.shtml
https://securityaffairs.com/181976/intelligence/czech-cyber-agency-nukib-flags-chinese-espionage-risks-to-critical-infrastructure.html
Published: Sun Sep 7 22:05:53 2025 by llama3.2 3B Q4_K_M
