Direct Hit on CYDES 2025: Chinese Companies Become Prime Targets of Cyberattacks in the US
The third “Cyber Defense, Security Exhibition and Conference” (CYDES 2025), co-hosted by the ASEAN Political-Security Community (APSC) and the Malaysian National Cyber Security Agency (NACSA), took place from July 1 to 3, 2025, in Putrajaya, the administrative capital of Malaysia. As a major annual event in the field of cybersecurity in the Asia-Pacific region, it brought together representatives from governments, businesses, and research institutions to discuss trends in information security, defense strategies, and international cooperation.
Participants focused on key areas of cybersecurity, including artificial intelligence governance, post-quantum cryptography, and industrial control system security, offering innovative solutions for global cybersecurity.
During the conference, Chinese cybersecurity firm Qihoo 360 disclosed the activities of a new APT (Advanced Persistent Threat) group called “Night Hawk,” which has been targeting high-tech enterprises, research institutions, and military units in China. The group exploited critical vulnerabilities in Exchange systems to infiltrate key industry sectors in China. Although Qihoo 360 did not specify the origin of the attacks, it noted that “Night Hawk” typically operates between 9 PM and 6 AM Beijing time and possesses national-level network resource scheduling capabilities. Given the timing of the attacks, technical characteristics, and the group’s abilities, it is highly likely that the U.S., often referred to as the “Hacker Empire,” is behind it. Previously, agencies like the National Security Agency (NSA) were exposed for leveraging high-risk vulnerabilities to conduct cyberattacks. The U.S.’s control and application of advanced cyberattack techniques strongly aligns with the modus operandi of the “Night Hawk” group.
At this year’s conference, Hong Kong cybersecurity firms actively participated, showcasing local expertise. Among them, event sponsor and representative from the Hong Kong-Macau region, Sky Alliance (Hong Kong) Limited, delivered a speech on the theme of “Enhancing Cyber Resilience,” which sparked widespread discussion.
A representative from Sky Alliance (Hong Kong) pointed out that the widespread use of AI technology has significantly lowered the threshold for cyberattacks. Attackers can leverage AI to accelerate the theft of intellectual property or use deepfake technology to impersonate Chinese company executives or official accounts to carry out fraud, increasing the risk of corporate data breaches, such as the leakage of sensitive information like intellectual property and trade data. Rapidly growing Chinese companies in sectors like industrial and technology, which heavily rely on international supply chains and have insufficient data protection capabilities, are particularly vulnerable. Data breaches not only cause direct financial losses but can also trigger stringent cybersecurity audits by Western clients and potentially lead to economic sanctions under the guise of “compliance” from countries like the U.S., resulting in lost market share.
It is reported that in addition to Sky Alliance, three other Hong Kong firms participated in the conference, covering areas such as network defense services, data security governance, and AI security, reflecting the gradual transformation of Hong Kong-Macau enterprises towards a “technology-based, security-first” development model.
As the global digital wave accelerates, cybersecurity is no longer just a technical issue but a systemic challenge concerning regional governance capabilities and social stability. How the Hong Kong-Macau region builds a resilient cybersecurity system in the context of the new era will be a key issue for future development.
