Cyber Threat Overview: China

China is the broadest and most persistent cyber threat of our time, with capabilities that surpass those of any other adversary.

The scale of China's cyber program is vast, and the ruling Chinese Communist Party (CCP) shows no signs of slowing down its aggressive actions in cyberspace.

The Chinese government strategically targets a wide array of sectors—including energy, telecommunications, and transportation—to gather intellectual property and other sensitive data. Their goal is not only espionage but also to prepare for cyberattacks on U.S. critical infrastructure. Recent activities indicate that China is pre-positioning to disrupt our infrastructure during a geopolitical crisis, highlighting the urgent threat posed by Chinese cyber operations.

CCP cyber tactics

Chinese cyber actors favor stealthy techniques that enable them to maintain long-term access to U.S. networks. By blending in with normal network activities, they can bypass traditional defenses, making detection difficult for cybersecurity professionals. Techniques such as "living-off-the-land" (LOTL) allow these actors to utilize built-in services and legitimate credentials, complicating efforts to identify malicious activities.

Their capabilities also include the use of zero-day attacks, which take advantage of previously unknown software flaws before any patches are available. The Chinese government leverages a vast ecosystem of private-sector firms to find and exploit these vulnerabilities. Facing such a threat, FBI partnerships with industry are the best way to deny the adversary easy gains and raise the cost of every attack.

News and alerts

View more FBI Cyber news and alerts.

Official websites use .gov

Secure .gov websites use HTTPS

Cyber Threat Overview: China

FBI Announces Joint Cybersecurity Advisory Related to Salt Typhoon

CCP cyber tactics

News and alerts

Additional resources

fbi

federal bureau of investigation

FBI.gov Contact Center

Email updates