A Chinese national accused of being part of a major hacking group has been extradited to the United States in a case linked to cyberattacks during the COVID-19 pandemic. The group, known as Silk Typhoon, has been associated with large-scale cyber espionage activities targeting sensitive data across the world. These attacks mainly focused on organizations involved in healthcare and research. The case has gained global attention due to its connection with pandemic-related data theft. It shows how cyber threats increased during a critical time for the world.
The accused hacker has been identified as Xu Zewei. He was arrested in Milan, Italy, in July 2025 after U.S. authorities requested action against him. Following legal procedures, Italy approved his extradition to the United States. He was then transferred in April 2026 to face charges in a U.S. court. The process took time due to international legal formalities. His case is now being handled under the U.S. justice system.
According to investigators, the cyberattacks took place between February 2020 and June 2021. This period was the peak of the COVID-19 pandemic when countries were racing to develop vaccines. Hackers targeted universities, research centers, and institutions working on COVID-related projects. Their main goal was to access valuable scientific and medical data. This included research on vaccines, treatments, and testing methods. The attacks were seen as a serious breach of global trust.
The hackers reportedly used vulnerabilities in Microsoft Exchange servers to carry out these attacks. These servers are widely used for email communication by organizations worldwide. They exploited zero-day vulnerabilities, which are unknown security flaws in software. This allowed them to gain access without being detected immediately. Once inside, they could monitor systems and collect sensitive information. Such methods made the attacks more dangerous and difficult to stop.
Reports suggest that the scale of the operation was very large and affected thousands of systems. More than 12,000 organizations around the world were reportedly impacted. These included businesses, educational institutions, and some government-linked systems. The wide reach of the attacks made them one of the most significant cyber incidents during the pandemic. It showed how a single campaign could affect multiple sectors globally. The impact raised serious concerns about cybersecurity preparedness.
After being extradited, Xu Zewei appeared before a U.S. federal court to face multiple charges. These charges include computer intrusion, wire fraud, identity theft, and unauthorized system access. Each of these offenses is considered serious under U.S. law. If convicted, he could face a prison sentence of more than ten years. The case is still ongoing and will go through further legal proceedings. The outcome may set an example for future cybercrime cases.
The case has also led to strong international reactions from different countries. The United States has described the incident as a major national security concern. Officials believe such attacks can threaten global research and innovation. China, however, has denied any involvement in the hacking activities. It has claimed that the accusations are politically motivated. Meanwhile, the defense has argued that there could be a case of mistaken identity.
Overall, this case highlights the growing risk of cyberattacks during global crises. At a time when the world was focused on saving lives, sensitive data was being targeted. It shows the increasing role of state-linked cyber operations in modern conflicts. The extradition also reflects stronger international cooperation against cybercrime. Governments are now working more closely to track and punish such activities. This case stands as an important example of global cybersecurity challenges.
Stay alert, and keep your security measures updated!
Source: Follow cybersecurity88 on X and LinkedIn for the latest cybersecurity news
