Treasury sanctions Wuhan XRZ front company and two APT31 hackers for targeting US critical infrastructure
PRC state-sponsored intrusion set publicly attributed to the Ministry of State Security's Hubei State Security Department, operating through the front company Wuhan Xiaoruizhi Science and Technology…
Summary
OFAC designated Wuhan Xiaoruizhi Science and Technology Company, Limited (Wuhan XRZ) — a Wuhan-based Ministry of State Security front company — along with Chinese nationals Zhao Guangzong and Ni Gaobin for their roles in APT31 cyber operations targeting US critical infrastructure. The designations were issued under Executive Order 13694, as amended, and were coordinated with a parallel UK sanctions package and a US Department of Justice indictment unsealed the same day in the Eastern District of New York charging seven APT31-affiliated nationals.
Tags
Primary source
home.treasury.govOther APT31 events
- 2025-05-28Czech Republic publicly attributes multi-year MFA intrusion to APT31
- 2024-03-25UK sanctions APT31 front company and operators over Electoral Commission breach and parliamentary targeting
- 2024-03-25DOJ unseals indictment charging seven APT31 hackers tied to MSS Hubei State Security Department
- 2020-09-10Microsoft discloses Zirconium (APT31) targeting of 2020 US presidential campaign and international affairs community