Japan, the United States, the EU, the United Kingdom and other countries have officially accused China of a large-scale hacking of Microsoft Exchange Server.

On July 19, 2021, Japan, the United States, the United Kingdom, and the EU accused China of a large-scale hack on Microsoft Exchange Server by name.

Responding to the PRC's Destabilizing and Irresponsible Behavior in Cyberspace --United States Department of State
https://www.state.gov/responding-to-the-prcs-destabilizing-and-irresponsible-behavior-in-cyberspace/

China: Declaration by the High Representative on behalf of the European Union urging Chinese authorities to take action against malicious cyber activities undertaken from its territory --Consilium
https://www.consilium.europa.eu/en/press/press-releases/2021/07/19/declaration-by-the-high-representative-on-behalf-of-the-eu-urging-china- to-take-action-against-malicious-cyber-activities-undertaken-from-its-territory /

UK and allies hold Chinese state responsible for a pervasive pattern of hacking --GOV.UK
https://www.gov.uk/government/news/uk-and-allies-hold-chinese-state-responsible-for-a-pervasive-pattern-of-hacking

Microsoft Exchange hack caused by China, US and allies say
https://apnews.com/article/microsoft-exchange-hack-biden-china-d533f5361cbc3374fdea58d3fb059f35

This time, China has been criticized for a large-scale attack on Microsoft Exchange Server by a Chinese government-affiliated hacker discovered in March 2021. Hacker group 'Hafnium', which is said to be supported by the Chinese government, exploits the vulnerabilities inherent in Exchange Server, and infectious diseases research institutes, law firms, higher education institutions, defense contractors, policy think tanks・ It was a case of stealing important information by launching a cyber attack on NGOs.

Microsoft reports 'new attack by Chinese government hacker using vulnerability of Exchange Server' --GIGAZINE

by Craig Nagy

On July 19, local time, the United States Department of State released a document entitled 'Responding to Irresponsible Actions That Create China's Instability in Cyberspace.' 'The People's Republic of China is responsible for irresponsible, destructive and volatile behavior in cyberspace, which poses a major threat to our economy and national security. The Ministry of National Security of China participates in state-led hacking. We have trained hackers to attack and hackers who carry out cyber attacks for their own financial benefit. '' Hackers hired by the Chinese National Security Ministry have stolen intellectual property, paid for ransomware, and responded to cyber security. The government and companies suffered a total of billions of dollars (hundreds of billions of yen) in damages. '

The United States is not the only country to blame China by name. The EU and the United Kingdom have each issued statements, blaming China for similar arguments. However, the United Kingdom stated that the Chinese government was involved in this attack, such as 'Chinese state-backed actors' as in the United States, but the EU said 'malicious cyber activities from'. We used the phrase 'from the territory of China' repeatedly, such as 'the territory of China,' and avoided the statement that 'the Chinese government was involved.'

In addition to Japan, countries such as the North Atlantic Treaty Organization (NATO), Australia, Canada, and New Zealand are also participating in this statement on China's cyber attacks. Regarding Japan, on July 19, the Ministry of Foreign Affairs evaluated in the following 'Foreign Press Secretary's Discourse' that 'APT40 is likely to have the background of the Chinese government, even for Japan. We have been paying close attention to attacks such as APT40, which threaten the security of cyberspace. This statement from the United Kingdom and the United States shows our determination to maintain an international order based on rules in cyberspace. I strongly support you. '

About cyber attacks by a cyber attack group called APT40 with the background of the Chinese government (Discourse by Foreign Press Secretary) | Ministry of Foreign Affairs
https://www.mofa.go.jp/mofaj/press/danwa/page6_000583.html

At a regular press conference on July 19, President Joe Biden only told reporters that the investigation was 'not over,' but White House spokesman Jen Psaki said, 'This time. The condemnation statement is not the conclusion of our efforts on cyber activities with China and Russia, 'he said, suggesting that additional steps could be taken depending on future developments.