The US Department of Justice has charged a Chinese national for his participation in the Chinese hacking group that breached at least four US companies, including Indianapolis-based health insurer Anthem Inc. in 2015.
The DOJ indictment, opened today, names Fujie Wang, 32, as one of the group’s members. As per the court documents, Wang and his fellow hackers operated using spear-phishing to trick employees into installing malware on their computers. After infecting an employee, the group used the malware to escalate access to other systems inside a victim company’s network till they find and steal the data they like which includes personally identifiable information (PII) and confidential business information.
US investigators stated that the group operated between February 2014 and January 2015. Only the name of the firm Anthem was mentioned in the court documents while the names of other companies hacked during this time were not disclosed.
The Anthem hack remains to be one of the worst hacks in US history along with the OPM, Target, Equifax, and two Yahoo breaches.
The Anthem hack occured in the fall of 2014 and hackers managed to steal the personal information of more than 78.8 million Americans. Exposed data included Anthem client names, dates of birth, physical and email addresses, medical IDs and Social Security numbers.
The DOJ’s indictment does not mention any links between Wang and the Beijing government apparatus.
Assistant Attorney General Benczkowski stated that the defendants allegedly attacked U.S. businesses operating in four distinct industry sectors, and violated the privacy of over 78 million people by stealing their PII.
Wang who is still presumably in China is now on the FBI’s Most Wanted Cyber list.