Yu Pingan, Chinese national, arrested on charges linked to OPM, Anthem hacks

FILE - In this Thursday, Feb. 5, 2015, file photo, the Anthem logo hangs at the health insurer’s corporate headquarters in Indianapolis. The Yahoo hack, reported on Thursday, Sept. 22, 2016, exposed personal details from at least 500 million user … FILE - In this Thursday, Feb. … more >

By Andrew Blake - The Washington Times - Friday, August 25, 2017

The FBI has arrested a Chinese national on charges involving the malware used to hack the U.S. Office of Personnel Management in 2014 and steal personal information pertaining to millions of federal government employees and contractors.

Yu Pingan, apprehended Monday at Los Angeles International Airport after flying in to attend a conference, was in federal court this week to face charges concerning Sakula, a sophisticated piece of malware used by the hackers who pulled off the historic OPM breach as well as the 2015 intrusion suffered by health insurance firm Anthem, among others.

He is charged with a single count of conspiracy to commit computer hacking, the Justice Department confirmed Thursday.

Mr. Yu, 36, provided versions of Sakula to two unnamed co-conspirators knowing they would use the malware to target various U.S. entities between 2010 and 2015, investigators allege in charging documents unsealed after his arrest.

At least three separate intrusions “involved variants of an uncommon malicious software tool known as Sakula,” FBI Special Agent Adam James wrote in an affidavit unsealed this week.

The FBI had identified Mr. Yu as one of the group of conspirators believed responsible for the intrusions, the agent wrote.

Mr. Yu’s alleged victims aren’t identified in court papers, but Sakula has previously been linked to the OPM and Anthem attacks — two of the biggest security breaches in recent history.

Hackers stole about 21.5 million personnel records from OPM containing Social Security numbers and other sensitive information in the 2014 hack, and records for another 78.8 million Anthem customers the following year. Both hacks were attributed to Chinese actors, and Beijing boasted in Dec. 2015 of having arrested a handful of hackers accused of carrying out the OPM breach.

Michael Berg, Mr. Yu’s court-appointed attorney, said his client identified himself as a teacher unaffiliated with the Chinese government.

“He says he has no involvement in this whatsoever,” Mr. Berg told Reuters.

• Andrew Blake can be reached at ablake@washingtontimes.com.

LISTEN: Inside NATO’s planning for future war Pierre Vandier joins Threat Status

Bold and Blunt: War, peace and the game-changers in Israel Gol Kalev joins Cheryl Chumley

Washington Times Weekly: Middle East mediators Vaughn Cockayne with George Gerbo

Yu Pingan, Chinese national, arrested on charges linked to OPM, Anthem hacks

Please read our comment policy before commenting.

Latest Video

Compounding without safeguards: A prescription for risk

Scott Walker

Tom Basile

Tim Murtaugh

Get Friday’s top stories in under five minutes

LISTEN: Young voters want a socialist president

LISTEN: Inside NATO’s planning for future war