GBAF Logo
Finance

Cyber agencies warn organisations to guard against China-linked covert networks

Published by Global Banking & Finance Review

Posted on April 23, 2026

2 min read

· Last updated: April 23, 2026

Add as preferred source on Google
Activist investor 7Square urges Nuernberger to explore takeover offers - Global Banking & Finance Review
The featured image illustrates the financial landscape as activist investor 7Square pressures Nuernberger to evaluate rival takeover offers, emphasizing the ongoing competition in the insurance sector.
Finance Banking cybersecurity International
Global Banking & Finance Awards 2026 — Call for Entries

LONDON, April 23 (Reuters) - International cyber agencies on Thursday urged organisations to better defend against covert networks used by China-linked hackers to conceal malicious cyber activity,

China-linked hackers using everyday devices to hide attacks, cyber agencies warn

International Cybersecurity Agencies Issue Warning on Covert Chinese Hacker Activity

LONDON, April 23 (Reuters) - International cyber agencies on Thursday urged organisations to better defend against covert networks used by China-linked hackers to conceal malicious cyber activity, according to Britain's National Cyber Security Centre.

The NCSC published the new guidance alongside industry and 15 international partners from across eight other countries: the United States, Australia, Canada, Germany, Japan, the Netherlands, New Zealand and Spain.

How Covert Networks Operate

Covert networks, usually made up of what the NCSC described as vulnerable everyday internet-connected devices such as home routers and smart devices, are used to target critical sectors globally, steal sensitive data, and maintain persistent access.

Techniques Used by Hackers

"In recent years, we have seen a deliberate shift in cyber groups based in China utilising these networks to hide their malicious activity in an attempt to avoid accountability," NCSC director of operations Paul Chichester said in a statement.

Official Responses and Statements

The Chinese foreign ministry did not immediately respond to a Reuters request for comment.

Challenges in Detecting and Disrupting Attacks

The new guidance - jointly issued with agencies including the U.S.'s Federal Bureau of Investigation - warns that attacks can be hard to detect because evidence can disappear quickly, complicating efforts to disrupt such activity.

Increasing Threats and National Responses

Warnings from Cybersecurity Leaders

The advisory comes a day after Richard Horne, the head of the NCSC, warned Britain to brace for a rise in cyberattacks directly or indirectly from nation states, including China, Iran and Russia.

He said his agency had continued to handle about four nationally significant cyber incidents a week on average and that the highest-impact attacks were increasingly tied to governments rather than criminal gangs alone.

Collaborative Efforts with AI Companies

Britain has also called on leading AI companies to work with the government to build AI-powered cyber-defence capabilities to protect critical national infrastructure.

(Reporting by Muvija M and Sam Tabahriti, additional reporting by Beijing newsroom, editing by William James)

Key Takeaways

  • Agencies from nine countries—including UK, US, Canada, Australia, Germany, Japan, Netherlands, New Zealand and Spain—released joint guidance to guard against China-linked covert networks (ncsc.gov.uk).
  • The guidance warns of ‘living off the land’ techniques where attackers use built-in network tools to remain undetected within infrastructure networks (ncsc.gov.uk).
  • Recent intelligence has revealed botnets and proxy networks (ORB) composed of compromised routers and IoT devices used by China-linked actors to orchestrate global espionage campaigns, underscoring need for enhanced detection and mitigation (globalsecurity.org)

References

Frequently Asked Questions

What is the main warning from international cyber agencies?
Agencies are warning organisations to strengthen defences against covert networks used by China-linked hackers.
Which countries partnered in the new cybersecurity guidance?
Partners include the United States, Australia, Canada, Germany, Japan, the Netherlands, New Zealand, Spain, and the UK.
Who published the latest cybersecurity guidance?
The guidance was published by Britain's National Cyber Security Centre (NCSC) with support from industry and international partners.
What is the focus of the advisory from cyber agencies?
The advisory focuses on defending against covert networks used by China-linked hackers for malicious activities.

Tags

Related Articles

Image for Australia's Wong to visit Japan, China, South Korea to discuss energy security

Australia's Wong to visit Japan, China, South Korea to discuss energy security

Image for Hungary's Magyar to meet EU's von der ​Leyen for talks on EU funds this week

Hungary's Magyar to meet EU's von der ​Leyen for talks on EU funds this week

Image for Switzerland angers Italy by claiming costs of treating Crans-Montana fire victims

Switzerland angers Italy by claiming costs of treating Crans-Montana fire victims

Image for Russian defence minister visits North Korea

Russian defence minister visits North Korea

Image for Fertiliser plant in Russia's Vologda region damaged in Ukrainian drone attack, governor says

Fertiliser plant in Russia's Vologda region damaged in Ukrainian drone attack, governor says

Image for Close Brothers will not take legal action against Britain's car finance redress scheme, Sky News reports

Close Brothers will not take legal action against Britain's car finance redress scheme, Sky News reports

More from Finance

Explore more articles in the Finance category

Image for Germany's far-right AfD rises to record 28%, INSA poll shows
Germany's far-right AfD rises to record 28%, INSA poll shows
Image for German government suspects Russia of Signal attack targeting politicians, sources say
German government suspects Russia of Signal attack targeting politicians, sources say
Image for Romania finds parts of second drone after overnight Russian attack on Ukraine
Romania finds parts of second drone after overnight Russian attack on Ukraine
Image for China condemns EU's inclusion of Chinese entities in sanctions package against Russia
China condemns EU's inclusion of Chinese entities in sanctions package against Russia
Image for Russian parliament speaker in North Korea to mark Pyongyang's troop deployment in Ukraine war
Russian parliament speaker in North Korea to mark Pyongyang's troop deployment in Ukraine war
Image for Macron reaffirms efforts to reopen Strait of Hormuz, as TotalEnergies warns of energy shortages
Macron reaffirms efforts to reopen Strait of Hormuz, as TotalEnergies warns of energy shortages
Image for France's Macron says EU mutual assistance clause is unambiguous
France's Macron says EU mutual assistance clause is unambiguous
Image for US to let Venezuela pay Maduro's lawyer in drug trafficking case
US to let Venezuela pay Maduro's lawyer in drug trafficking case
Image for Italy votes down equal parental leave while fathers redefine their role online
Italy votes down equal parental leave while fathers redefine their role online
Image for German auto industry faces even tougher competition as China economy slows
German auto industry faces even tougher competition as China economy slows
Image for Romania says drone fragments damage property during overnight Russian attack on Ukraine
Romania says drone fragments damage property during overnight Russian attack on Ukraine
Image for Engine maker Horse plans India move to supply growing small car market, CEO says
Engine maker Horse plans India move to supply growing small car market, CEO says
View All Finance Posts