Microsoft said on Wednesday it had uncovered malicious activity by a state-sponsored actor based in China aimed at critical infrastructure organizations in Guam and the United States.
Microsoft said it assessed with “moderate confidence” that this Volt Typhoon campaign “is pursuing development of capabilities that could disrupt critical communications infrastructure between the United States and Asia region during future crises”.
Volt Typhoon has been active since mid-2021.
Guam is home to major US military facilities, including the Andersen air force base, which would be key to responding to any conflict in the Asia-Pacific region.
Microsoft said it had notified targeted or compromised customers and provided them with information.
The Chinese embassy in Washington did not immediately respond to a Reuters request for comment.