Chinese authorities are dealing with a significant security breach after a trove of documents from a private security contractor connected to the nation’s top policing agency was leaked online. The cache of documents provides unprecedented insight into the clandestine activities of a company, I-Soon, also known as Anxun in Mandarin, which has deep ties to China’s powerful Ministry of Public Security.
The leaked documents, which surfaced late last week, comprise hundreds of pages of contracts, marketing presentations, product manuals, and lists of clients and employees. They offer a detailed look into I-Soon’s operations, including its surveillance techniques, hacking capabilities, and efforts to shape online narratives.
Spying Abilities
Among the most concerning revelations are the tools and methods employed by I-Soon to spy on both Chinese citizens and foreigners. Additionally, the leaked documents indicate the apparent targeting of ethnic minorities and dissidents in regions where anti-government protests have occurred, such as Hong Kong and Xinjiang.
🇨🇳 I-SOON leak: files 44 and 46 contain tables enumerating data samples from targets — telcos, universities, government departments such as foreign ministries, hospitals, etc — in various countries including Afghanistan, India, Indonesia, Thailand, Myanmar, Vietnam, Malaysia,… https://t.co/yEdbAZEyM6 pic.twitter.com/dYL86vDBYT
— Byron Wan (@Byron_Wan) February 20, 2024
The documents suggest that I-Soon’s activities extend beyond China’s borders, with evidence of hacking operations across Central and Southeast Asia, Hong Kong, Taiwan, and even social media platforms used by Chinese citizens abroad.
Extent of Surveillance
The leaked material implicates I-Soon in a range of activities, including surveillance of dissidents overseas, hacking foreign networks, and promoting pro-Beijing narratives on social media.
It raises serious concerns about China’s expanding cyber capabilities and its use of private contractors to advance its security interests. It also highlights the challenges posed by state-sponsored hacking and espionage in an increasingly interconnected world.
The leak has prompted an investigation by Chinese police, who are working to determine the source of the breach. Meanwhile, analysts and cybersecurity experts are poring over the leaked documents to better understand the extent of I-Soon’s operations and its connections to the Chinese government.