A Chinese citizen, accused of participating in the Silk Typhoon hacking group, has been moved to the United States from Italy. This action follows charges related to cyber espionage activities targeting American institutions.
Extradition and Allegations
The individual in question, Xu Zewei, aged 34, was detained by Italian authorities in July 2025. He is accused of being involved with a Chinese state-sponsored group and orchestrating cyber attacks against U.S. entities from February 2020 to June 2021. These attacks included unauthorized access to a Texas university’s systems to acquire COVID-19 vaccine research data.
Xu faces multiple charges, including wire fraud and conspiracy to damage and extract information from protected computers. Additionally, he is charged with aggravated identity theft. Alongside him, another Chinese national, Zhang Yu, is implicated but remains at large.
Cyber Operations and Techniques
The U.S. Department of Justice (DoJ) identified Xu as an employee of Shanghai Powerock Network Co. Ltd., a company alleged to have facilitated cyberattacks on behalf of the Chinese government. This entity is one of many reported to operate under directives from the Ministry of State Security’s Shanghai State Security Bureau.
Xu and his associates reportedly exploited vulnerabilities in Microsoft’s Exchange Server, a widely-used email service, to conduct these operations. The hacks, tracked by Microsoft under the name Hafnium, involved deploying web shells for remote access and control.
Legal Proceedings and Defense
Despite these accusations, Xu maintains his innocence, asserting that he is a victim of mistaken identity. His attorney has stated that Xu was on vacation in Milan with his wife at the time of his arrest and has pleaded not guilty to all charges in a recent court appearance.
The ongoing legal battle highlights the complexities of international cybercrime and the challenges faced by authorities in prosecuting such cases. As investigations continue, the implications for international relations and cybersecurity policies remain significant.
The case underscores the ongoing global concerns about cyber threats and the need for enhanced cooperation between nations to combat such activities effectively. Future developments in Xu’s legal proceedings will be closely watched as they may set precedents for handling similar cases in the future.
