The United States has announced a $10 million reward for information leading to the arrest of Guan Tianfeng, a Chinese hacker accused of exploiting computer firewalls.
Guan, 30, is believed to reside in Sichuan Province, China. According to a recently unsealed indictment, he faces charges of conspiracy to commit computer and wire fraud.
Guan, along with co-conspirators from Sichuan Silence Information Technology Co. Ltd., allegedly exploited vulnerabilities in firewalls produced by UK-based cybersecurity firm Sophos Ltd. The group reportedly infected tens of thousands of devices with malware, aiming to steal data and deploy ransomware.
Deputy Attorney General Lisa Monaco stated, “The defendant and his co-conspirators exploited a vulnerability in tens of thousands of network security devices, infecting them with malware designed to steal information from victims around the world.”
In April 2020, approximately 81,000 firewall devices were targeted globally, with 23,000 located in the United States, including 36 safeguarding critical infrastructure. FBI agent Herbert Stapleton noted that the swift response from Sophos prevented potentially catastrophic damage.
The Treasury Department has imposed sanctions on Sichuan Silence, alleging the company sold stolen data and hacking services to Chinese businesses and government entities, including the Ministry of Public Security.
A man responding to a phone number registered to Sichuan Silence declined to comment on the sanctions and claimed Guan was “uncontactable.”
The U.S. government continues its efforts to combat global cybercrime, offering rewards through its Rewards for Justice program to bring perpetrators to justice.