In 2021, the Chinese state-sponsored hacking group APT31 targeted 124 members of the PRC-critical Inter-Parliamentary Alliance on China (IPAC). They sent out 1,000 emails to 400 accounts intending to gather data on members’ internet activities for more targeted cyberattacks in the future. The UK and US reacted with sanctions and legal action against the group. Those affected were not informed of the hack, nor its connection to the PRC until March 25, 2024, two months after the publication of an indictment against APT31 hackers by the US Department of Justice. IPAC and its members have since requested the launch of official investigations, pressured their respective governments and the EU to establish legal frameworks to prevent such opacity in the future, called on them to join the UK and US in sanctioning APT31, and demanded to strengthen cyber security for politicians.
PRC hacks parliamentarians critical of Beijing