U.S. authorities on Thursday accused a Chinese national visiting the United States of providing malware that has been linked to the theft of security clearance records of millions of American government employees.
Yu Pingan of Shanghai was arrested on Monday at Los Angeles International Airport after a federal criminal complaint accused him of conspiring with others wielding malicious software known as Sakula, a Justice Department spokesman said on Thursday.
The complaint said the group attacked a seried of unnamed U.S. companies using Sakula, the same rare program involved in U.S. Office of Personnel Management (OPM) hacks detected in 2014 and 2015. The filing did not mention the OPM hacks.
The arrest could provide information on the OPM hacks which U.S. officials have blamed on the Chinese government.
In an FBI affidavit linked to the complaint, an FBI agent said he believed Yu provided versions of Sakula to two unnamed men that he knew would be used to carry out attacks on the firms.
Yu's court-appointed attorney, Michael Berg, said Yu was a teacher with no affiliation with China's government.
"He says he has no involvement in this whatsoever," Berg said, adding that Yu came to Los Angeles for a conference.
The Justice Department and San Diego FBI declined to comment further.
The court filings said Sakula had rarely been seen before the attacks on U.S. companies and Yu knew the software he was providing would be used in the hacks carried out between 2010 and 2015.
Though the victims are not named, some companies appeared to be in the aerospace and energy industries.