China-linked hackers reportedly infiltrated the email systems of staff working for a major US congressional committee, according to a new investigative report. The breach is said to have exposed sensitive communications, reigniting concerns in Washington over persistent foreign cyber-espionage targeting democratic institutions.

Targeted Staff, Not Lawmakers Themselves

The reported intrusion primarily affected congressional committee staff rather than elected lawmakers. Staffers often handle policy drafts, scheduling details, and sensitive briefings, making them high-value targets for foreign intelligence operations seeking insight into US legislative priorities.

Attack Linked to State-Sponsored Chinese Actors

Cybersecurity experts cited in the report attributed the breach to a China-backed hacking group known for long-term espionage campaigns. These actors typically focus on stealthy access rather than disruptive attacks, aiming to quietly collect intelligence over extended periods.

Cloud-Based Email Systems Exploited

The attackers are believed to have exploited vulnerabilities in cloud-hosted email platforms widely used across government offices. While the exact technical method has not been officially disclosed, analysts suggest compromised credentials or token-based access may have played a role.

US Authorities Launch Investigation

Federal agencies, including cybersecurity and intelligence bodies, have reportedly initiated a review to assess the scope of the breach. Congressional leadership has also been briefed, with internal audits underway to determine whether classified or highly sensitive information was accessed.

China Denies Allegations

Beijing has consistently rejected accusations of state-sponsored hacking, calling them politically motivated and lacking evidence. Chinese officials maintain that China opposes all forms of cybercrime and is itself a victim of frequent cyberattacks.

Growing Pattern of Cyber Espionage

This incident adds to a growing list of alleged cyber operations targeting US government entities, think tanks, and critical infrastructure. Experts warn that congressional systems remain attractive targets due to their influence on foreign policy, defense funding, and technology regulation.

Push for Stronger Cyber Defenses

The reported breach is expected to intensify calls for stronger cybersecurity standards across Congress. Lawmakers have increasingly emphasized zero-trust architectures, mandatory multi-factor authentication, and stricter oversight of third-party cloud services.