DOJ seizes 13 alleged Chinese-intelligence domains targeting clearance holders
Federal layoffs have given foreign recruiters a cleaner opening, and DOJ is treating the job market as collection infrastructure.
TL;DR
Nextgov/FCW reports that the FBI and Justice Department seized 13 domains allegedly used by Chinese intelligence to recruit clearance holders through fake consulting firms. The sites advertised high-paying analyst and policy roles to current and former U.S. officials, military personnel and contractors. The risk is practical for laid-off or transitioning cleared workers: a résumé, credential handoff or paid research assignment can become the collection channel before it looks like espionage.
The Justice Department has turned a counterintelligence warning into a domain-seizure case. Nextgov/FCW reports that the FBI and DOJ seized 13 domains that prosecutors say were run by Chinese intelligence operatives to reach Americans with access to classified information. The sites were dressed as consulting firms, with names including Centrik Global Consulting, Rightinfo Consulting, CYDF Consulting and Pulse Wave Global, and advertised roles such as “Senior Analyst” and “International Affairs Consultant.” DOJ says the operators used aliases, fake personas, stolen identities and artificial intelligence-generated photographs, then pushed work and payment through encrypted apps, overseas accounts, cryptocurrency and other false-name infrastructure.
The target set is the point. Current and former officials, military personnel and defense contractors with clearances are more exposed when layoffs push them into freelance work, policy consulting and job boards. The fraud label understates the problem when the deliverable is insider assessment, classified or sensitive information, or a map of how Washington is thinking. That is a collection request with an invoice attached.
The public posture has changed. Nextgov/FCW reported in September that Foundation for Defense of Democracies researchers had found a likely fraudulent China-linked network targeting former federal employees and policy experts. The Army later sent Lt. Gen. Anthony R. Hale’s warning about fake companies and phony recruiters to more than a million personnel, and Nextgov/FCW reported in January that a suspected Chinese outfit approached a former senior State Department official for paid analysis of U.S. policy priorities in Venezuela. By seizing domains now, DOJ is putting court process behind the same warning.
What remains unknown is how many clearance holders were contacted, whether anyone sent useful information, and which domains or recruiting accounts remain active. For Monday, the work is dull: verify the employer before sending résumés, credentials or writing samples; preserve the outreach; and move suspicious contacts to security, legal or counterintelligence reporting channels. Ordinary job-fraud training will miss the point when the buyer wants policy access.
Published ·Deep Fathom