Recent reports reveal that Chinese operatives are actively utilizing various technological tools, including American AI, to gather intelligence and manipulate public discourse surrounding AI datacenters in the United States. Despite their efforts, these attempts have not yet yielded significant success.
Resurgence of the Volt Typhoon Botnet
A notable resurgence of a botnet associated with Chinese government-backed actors has been identified, particularly the Volt Typhoon botnet. This network previously exploited a covert system of connected devices to infiltrate critical U.S. networks for potential future attacks. In January 2024, the FBI dismantled the KV-botnet, which consisted of hundreds of outdated routers and other internet-connected devices.
Following this takedown, Lumen’s Black Lotus Labs reported that while the KV cluster has largely ceased operations, the JDY cluster remains active, with over 1,500 compromised routers and IoT devices. This activity indicates a focused effort to identify vulnerable infrastructure shortly after public vulnerability disclosures, particularly targeting the U.S. military and related entities.
Influence Operations Using AI
In addition to botnet activities, Chinese operatives have attempted to influence public opinion using American AI tools. OpenAI reported banning ChatGPT accounts likely linked to these operatives, who generated content aimed at shaping narratives about AI and its impact on electricity demand and costs for American households. The operators crafted social media posts and images that framed the rise in electricity demand as a consequence of datacenters and AI applications.
Despite these efforts, OpenAI’s Ben Nimmo noted that neither campaign gained substantial engagement, highlighting the limited success of these influence operations. The first cluster focused on social media content, while a second cluster criticized U.S. tech policies and tariffs, specifically avoiding references to Chinese leadership in their outputs.
Continued Espionage Efforts
In a separate but related development, the U.S. Justice Department has taken action against fake consulting websites allegedly used by Chinese agents to target individuals with security clearances. These websites advertised consulting positions and sought to recruit applicants to share sensitive information, often compensating them through online accounts and cryptocurrency to obscure their identities.
These incidents underscore the ongoing challenges posed by Chinese operatives in both cyber and influence domains, reflecting a persistent strategy to exploit technological advancements for espionage and manipulation.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
