China RAGES as Italy Extradites Accused Hacker

Interlocking gears with USA and China flags.

Italy delivered a major blow to Chinese cyber-espionage operations by extraditing an alleged CCP-controlled hacker accused of stealing critical COVID-19 research from American scientists, defying intense diplomatic pressure from Beijing.

Story Snapshot

Chinese national Xu Zewei extradited from Italy to US on April 26, 2026, to face charges of hacking COVID-19 vaccine research
US authorities link Xu to the notorious Hafnium hacking group that infiltrated thousands of computers globally
China’s Foreign Ministry denounced the extradition as “political manipulation” and demanded Italy reverse course
Extradition marks first major CCP-linked hacker transfer from Europe to US, setting precedent for future cases

Italian Courts Approve Transfer Despite Beijing’s Objections

Italian authorities transferred Chinese national Xu Zewei to US custody on April 26, 2026, following a top court ruling earlier that month approving his extradition. The 30-year-old was arrested in Milan in July 2025 at the request of US law enforcement on charges of wire fraud and aggravated identity theft. China’s Foreign Ministry immediately protested the decision, calling the charges fabricated and urging Italy to “correct its mistake.” The extradition demonstrates Italy’s commitment to its NATO alliance obligations despite significant economic ties with Beijing.

Arrivederci: European Ally Extradites CCP-Controlled Super-Hacker to US to Face Long Arm of the Lawhttps://t.co/JfWzMsIuqo

— RedState (@RedState) April 27, 2026

COVID Research Theft and Hafnium Connection

The US Department of Justice accuses Xu of participating in a Chinese government-directed campaign to steal COVID-19 vaccine and treatment research from American universities during 2020. Federal prosecutors allege he targeted immunologists and virologists, pilfering sensitive data that gave China’s pharmaceutical industry an unfair competitive advantage. Additionally, investigators link Xu to the Hafnium hacking group, which compromised thousands of Microsoft Exchange servers worldwide in 2021, affecting government agencies, businesses, and research institutions. This represents exactly the type of state-sponsored intellectual property theft that has frustrated American researchers and undermined fair competition in critical industries.

Broader Pattern of CCP Cyber Warfare

Xu’s case fits into a disturbing pattern of Chinese Communist Party cyber-espionage operations targeting Western democracies. US Deputy Attorney General Lisa Monaco previously described “prolific global hacking backed by the Chinese government” when discussing the related ATP31 group, which sent over 10,000 malicious emails to European and Italian lawmakers. These operations serve dual purposes of repressing CCP critics abroad and stealing trade secrets to benefit Chinese state-owned enterprises. The Hafnium attacks alone compromised sensitive systems across multiple continents, exposing vulnerabilities that many organizations struggled to patch quickly enough. This systematic assault on Western cybersecurity infrastructure raises serious questions about whether current defenses adequately protect American innovation and national security interests.

Defense Claims Mistaken Identity

Xu’s Milan-based attorney maintains his client is a victim of mistaken identity and reported receiving no official notification of the extradition as of April 25, 2026. The lawyer claimed Xu remained in a Parma prison that day, though Reuters confirmed his arrival in US custody by April 26. Despite these defense assertions, Italian courts found sufficient evidence to approve the extradition request under the bilateral treaty between Rome and Washington. The case now proceeds to US federal court, where prosecutors will present evidence linking Xu to the cyber-espionage operations. China’s vehement diplomatic response suggests Beijing recognizes the strategic significance of this precedent for future extradition requests involving alleged state-sponsored hackers.

Implications for US-China Tech Competition

This extradition sends a clear message that European allies will support American efforts to hold Chinese cyber-criminals accountable, even when facing economic pressure from Beijing. The theft of COVID-19 research represents more than simple intellectual property crime; it undermined the global pandemic response and gave China’s pharmaceutical sector unearned advantages developed through American taxpayer-funded research. For universities and biotech companies, the case highlights ongoing vulnerabilities to foreign espionage that threaten both national security and economic competitiveness. The precedent established by Italy’s cooperation may encourage other European nations to approve similar extradition requests, strengthening deterrence against CCP-directed hacking operations targeting Western research institutions and critical infrastructure.