FBI sanctions listing
ZHU HUA
ZHU HUA is an individual designated on the U.S. Federal Bureau of Investigation — Wanted (FBI) sanctions list under the Cyber's Most Wanted, China Threat programmes, listed on 2018-11-15. Cyber's Most Wanted, China Threat. This page summarises the public designation — known aliases, identifying particulars, the stated reason for listing and linked parties — alongside an independent, transparent risk indicator.
Reason for listing
Conspiracy to Commit Computer Intrusions; Conspiracy to Commit Wire Fraud; Aggravated Identity Theft On December 17, 2018, a grand jury in the United States District Court for the Southern District of New York indicted ZHU HUA, aka “Afwar,” aka “CVNX,” aka “Alayos,” aka “Godkiller,” and ZHANG SHILONG , aka “Baobeilong,” aka “Zhang Jianguo,” aka “Atreexp," two members of a hacking group operating in China known in the cybersecurity community as Advanced Persistent Threat 10 (the “ APT 10 Group ”), with conspiracy to commit computer intrusion, conspiracy to commit wire fraud, and aggravated identity theft. The defendants worked for Huaying Haitai Science and Technology Development Company located in Tianjin, China, and they acted in association with the Chinese Ministry of State Security’s Tianjin State Security Bureau. As alleged in the Indictment, from at least 2006 through 2018, the defendants conducted extensive campaigns of global intrusions into computer systems aiming to steal, among other data, intellectual property and confidential business and technological information from more than at least 45 commercial and defense technology companies in at least a dozen states, managed service providers (“MSP”), which are companies that remotely manage the information technology infrastructure of businesses and governments around the world, and U.S. government agencies. The victim companies targeted by ZHU HUA and ZHANG SHILONG were involved in a diverse array of commercial activity, industries, and technologies, including aviation, space and satellite technology, manufacturing technology, oil and gas exploration, production technology, communications technology, computer processor technology, and maritime technology. In addition, for example, the APT 10 Group’s campaign compromised the data of an MSP and certain of its clients located in at least 12 countries including Brazil, Canada, Finland, France, Germany, India, Japan, Sweden, Switzerland, the United Arab Emirates
Statement of reasons as published by US FBI. This is the issuing authority's wording, reproduced for reference.
Designation record
| List / authority | US FBI (FBI) — FBI — Cyber's Most Wanted |
|---|---|
| Entity type | Person |
| Programmes / regime | Cyber's Most WantedChina Threat |
| Date listed | 2018-11-15 |
| Source record ID | fbi:7c46aaa49bcc41f6957f7d8faaa385c8 |
| Last updated (our copy) | 2026-06-04 |
Identity & particulars
| Position / role | Cyber's Most Wanted, China Threat |
|---|
Known aliases (5)
Deep-research dossier
Not yet deep-researched
The instant review above is drawn from the public lists. A deep-research dossier goes much further — an analyst-grade OSINT report: associate & co-investment network screening, structural / ownership opacity, a dated risk trajectory, an 8-factor scoring model, and numbered, source-linked evidence. See the format in the design system.
Clarifications & right of reply
Are you ZHU HUA, or an authorised representative?
You — or your counsel or agent — can file a clarification and supporting documents against this record. Filings are reviewed and verified before anything is published; submissions are never posted automatically.
File a clarification or document
Source & provenance
| Issuing authority | U.S. Federal Bureau of Investigation — Wanted |
|---|---|
| Source identifier | fbi:7c46aaa49bcc41f6957f7d8faaa385c8 |
| Aggregated by | Sanctiometer (independent) — verify against the issuing authority's official list before acting. |