Ethical Hacking News
Italy has moved to extradite Xu Zewei, a Chinese national accused of hacking into COVID-19 research, to face U.S. authorities over cyber espionage charges.
Italy is extraditing a Chinese national, Xu Zewei, to the US over allegations of hacking into COVID-19 research. Xu was arrested at Milan's Malpensa Airport in July 2025 after arriving from China on a U.S. warrant. Xu is accused of being part of the China-nexus group Hafnium, which carried out attacks against the US Treasury and targeted thousands of computers worldwide. The Italian Interior Ministry documents indicate Xu is also part of a large-scale cyber intrusion campaign orchestrated by the Chinese government. Xu's family claims he is an innocent IT technician, while his wife opposes his extradition citing his Italian visa as proof of no wrongdoing. The case highlights the need for better patching, faster detection, stronger identity controls, and closer international coordination to address cyber threats.
Italy has taken a significant step towards ensuring accountability for cybercrime, as it moves to extradite a Chinese national, Xu Zewei, to the United States over allegations of hacking into sensitive COVID-19 research. The move comes in response to U.S. authorities' requests, which accuse Xu of being part of a team of hackers that carried out espionage operations, particularly in 2020 on anti-COVID vaccines being produced at the University of Texas.
According to reports from Italian news agency ANSA, Xu Zewei was arrested by Italian police at Milan's Malpensa Airport in July 2025, upon arrival from China. The arrest was made in accordance with a U.S. warrant issued by federal authorities, who claim that Xu is part of the China-nexus group Hafnium (also known as Silk Typhoon), which carried out attacks against the US Treasury and targeted thousands of computers worldwide to obtain information on various U.S. government policies.
The Italian Interior Ministry documents indicate that Xu Zewei is also accused of being part of a "large-scale cyber intrusion campaign" orchestrated by the Chinese government, which aimed to gather sensitive information from research institutions across the globe. This case highlights the increasing reliance on international cooperation in combating cybercrime and the importance of effective extradition processes.
In contrast to his family's claims that Xu Zewei is an innocent IT technician, Xu's wife has publicly stated her opposition to his extradition, citing his Italian visa as proof of no wrongdoing. She also mentioned that her husband works as an IT manager at Shanghai GTA Semiconductor Ltd, where he develops systems and networks.
The situation serves as a critical reminder of the challenges faced by law enforcement agencies in addressing cyber threats. The extradition process is part of the response to these operations, but it highlights the need for better patching, faster detection, stronger identity controls, and closer international coordination across Europe and the United States.
In broader terms, this case underscores the growing threat landscape of state-backed hacking ecosystems and their impact on sensitive research and global security. It also serves as a testament to the importance of maintaining transparency and cooperation between governments in addressing these threats.
Related Information:
https://www.ethicalhackingnews.com/articles/Italy-Moves-to-Extradite-Chinese-National-Accused-of-Hacking-into-COVID-19-Research-ehn.shtml
https://securityaffairs.com/191368/apt/italy-moves-to-extradite-chinese-national-to-the-u-s-over-hacking-charges.html
https://news.bloomberglaw.com/white-collar-and-criminal-law/italy-decides-to-extradite-chinese-man-wanted-by-us-for-hacking
https://www.bloomberg.com/news/articles/2026-04-26/italy-decides-to-extradite-chinese-man-wanted-by-us-for-hacking
https://attack.mitre.org/groups/G0125/
https://en.wikipedia.org/wiki/HAFNIUM_(group)
Published: Mon Apr 27 04:30:41 2026 by llama3.2 3B Q4_K_M
