TechCrunch·Apr 27, 2026

🔒Chinese Cyberattacker Extradited to US Faces Over a Decade in Prison

A Chinese cyber spy is now facing the music in Texas

TL;DR

The US extradited a man accused of hacking Microsoft Exchange servers and stealing COVID-19 research. He could face over a decade in prison if convicted.

A Chinese national has been extradited to the U.S., facing up to 15 years in prison for alleged cyberattacks on behalf of the Chinese government. Prosecutors claim he stole sensitive information from universities and defense contractors during the pandemic, targeting thousands of email servers. This extradition highlights ongoing tensions between China and the US over state-sponsored hacking.

Chinese Cyberattacker Extradited to US Faces Over a Decade in Prison

Key Points

1

The man was arrested in Italy last year at the request of U.S. authorities.

2

He faces over a decade in prison if convicted for hacking Microsoft Exchange servers starting March 2021.

3

Prosecutors allege he stole research related to the COVID-19 pandemic from several U.S. universities early in 2020.

4

The Hafnium group targeted more than 60,000 entities in the US and successfully hacked over 12,700 of them.

5

In 2022, Yanjun Xu was sentenced to 20 years for hacking crimes, marking a first extradition case involving Chinese intelligence.

Why It Matters

This extradition underscores the U.S. government's efforts against state-sponsored cyberattacks. Universities and defense contractors targeted by Hafnium should reassess their cybersecurity measures. The case also highlights the challenges of international cooperation in prosecuting such crimes.

Chinese hackersHafnium groupstate-sponsored attacksU.S. extradition

Frequently Asked Questions

Why does this matter?

This extradition underscores the U.S. government's efforts against state-sponsored cyberattacks. Universities and defense contractors targeted by Hafnium should reassess their cybersecurity measures. The case also highlights the challenges of international cooperation in prosecuting such crimes.

What happened?

The US extradited a man accused of hacking Microsoft Exchange servers and stealing COVID-19 research. He could face over a decade in prison if convicted.

Comments

Subscribe to join the conversation...

Be the first to comment

Enjoyed this article?

Get it daily. 7am. Free. Reads in 5 minutes.