The Digital Honey Trap: FBI Shuts Down 13 Sites Used by Chinese Intelligence to Poach Sensitive Data

US authorities have dismantled a web of fraudulent job portals designed to lure government employees into leaking classified secrets.

The job listings looked mundane enough: consulting roles for think tanks and defense firms, complete with professional-looking profiles and sleek, AI-generated headshots. But behind the polished veneer of these 13 websites lay a calculated espionage operation. On Wednesday, the FBI pulled the plug on these domains, revealing they were part of a sophisticated Chinese effort to infiltrate the ranks of American workers who hold classified or sensitive government information.

The mechanics of the trap

According to Justice Department officials, the strategy was simple but effective. These fake consulting entities, acting on behalf of what investigators link to Chinese intelligence services, targeted current and former U.S. government employees. The goal was never to hire them for legitimate work, but to pressure them into disclosing non-public information.

Recruiters used platforms like LinkedIn to funnel traffic toward these sham websites. Once a candidate engaged, they were often offered payment—via cryptocurrency or anonymous online transfer systems—for reports that crossed the line into state secrets. Special agent Dan Wierzbicki noted that the operation was finally exposed when targets began coming forward, reporting that their interactions with these "recruiters" simply didn't feel right.

A global warning

This wasn't an isolated incident. The domain seizures align with a broader, coordinated alert issued last week by the Five Eyes intelligence alliance, which includes the U.K., Australia, Canada, New Zealand, and the U.S. The alliance warned that Chinese military intelligence is increasingly posing as private business leaders to compromise personnel across the West. These operators are not just looking for technical blueprints; they are actively hunting for defense and foreign policy analysts to compromise.

The bigger picture

Why does this matter? Beyond the immediate security breach, this move signals a shift in how Western intelligence is responding to the "gray zone" tactics used by Beijing. By seizing these websites, the FBI is moving from passive monitoring to active disruption, essentially cutting off the digital front door for these recruitment efforts.

The reliance on stolen identities and AI-generated imagery highlights the evolving nature of modern espionage. It’s no longer just about high-stakes physical surveillance; it’s about weaponizing the gig economy. For government officials and defense contractors, the incident serves as a stark reminder that in the digital age, a "consulting opportunity" can be a front for a national security threat. As geopolitical tensions simmer, the battle for information has moved squarely into our email inboxes and professional networking feeds.