Advertisement
Facebook
China

Chinese hackers used fake Facebook accounts in attempt to trick Uygur minority, says site

  • The effort, which Facebook described as ‘highly targeted’ saw a group of hackers create fake personalities on Facebook to build relationships with Uygurs, a Muslim ethnic group in China
  • Facebook’s probe found links between the hackers and two China-based tech firms but no direct links to Beijing

Reading Time:2 minutes
Why you can trust SCMP
10
Facebook’s probe found links between the hackers and two China-based tech firms but no direct links to Beijing. Photo: Reuters
Associated Press
Hackers in China used fake Facebook accounts and impostor websites to try to break into the computers and smartphones of Uyghur Muslims, the social network said on Wednesday.
The company said the sophisticated, covert operation targeted Uygur activists, journalists and dissidents from China’s Xinjiang region, as well as individuals living in Australia, Canada, Kazakhstan, the United States, Turkey, Syria, and other nations.
The hackers attempted to gain access to the computers and phones by creating fake Facebook accounts for supposed journalists and activists, as well as fake websites and apps intended to appeal to a Uygur audience. In some cases, the hackers created lookalike websites almost identical to legitimate news sites popular with Uygurs.

The accounts and sites contained malicious links. If the target clicked on one, their computer or smartphone would be infected with software allowing the network to spy on the target’s device.

Advertisement

The software could obtain information including the victim’s location, keystrokes and contacts, according to FireEye, a cybersecurity firm that worked on the investigation.

In all, fewer than 500 people were targeted by the hackers in 2019 and 2020, Facebook said. The company said it uncovered the network during its routine security work, and has deactivated the fictitious accounts and notified individuals whose devices may have been compromised. Most of the hackers’ activities took place on non-Facebook sites and platforms.

Advertisement

“They tried to create these personas, build trust in the community, and use that as a way to trick people into clicking on these links to expose their devices,” said Nathaniel Gleicher, Facebook’s head of security policy.

Advertisement
Select Voice
Choose your listening speed
Get through articles 2x faster
1.25x
250 WPM
Slow
Average
Fast
1.25x