Krishnamoorthi Demands Answers on Reported Impersonation of Members of Congress by China-Linked Hackers

September 8, 2025
Press Release

WASHINGTON  — Today, Congressman Raja Krishnamoorthi (D-IL), Ranking Member of the House Select Committee on the Strategic Competition Between the United States and the Chinese Communist Party (CCP) called attention to an alarming cyber incident involving the electronic impersonation of Chairman John Moolenaar (R-MIwhich news reports suggest was conducted by the PRC-affiliated hacking group known as APT41. He urgently seeks answers regarding which other Members of Congress have been impersonated by CCP hackers.

In a letter to Director of National Intelligence Tulsi Gabbard and FBI Director Kash Patel, Ranking Member Krishnamoorthi detailed a recent incident in which several trade groups, law firms, and U.S. government agencies received emails appearing to be from Chairman Moolenaar. The emails contained attachments identified by cybersecurity firm Mandiant as spyware capable of infiltrating recipient organizations’ networks.

While the Chinese Communist Party (CCP) routinely condemns the Select Committee’s work, impersonating its leadership in an attempt to infiltrate the computer networks of U.S. organizations and agencies represents a profound escalation,” Ranking Member Krishnamoorthi wrote. “As the Ranking Member of the Select Committee, I stand firmly with the Chairman in condemning this illegal and sanctionable act.” 

Ranking Member Krishnamoorthi continues, “it is reasonable to presume this impersonation attempt is not the first time this has happened, and it certainly will not be the last. Congress urgently requires full transparency regarding this alarming incident, as well as all other suspected impersonations of Members of Congress by PRC intelligence agencies and their affiliates.”

Krishnamoorthi is requesting a classified briefing from the ODNI and FBI by September 30, 2025. Key questions include:

  • How many Members of Congress have been impersonated by the CCP via email or other electronic means? Please be prepared to name all such Members and the PRC-based hacking groups believed to be behind such incidents, if known.
  • To the extent APT41 is in fact the threat actor behind the impersonation of the Chairman, has APT41 impersonated any other U.S. officials using similar email messages?
  • To the best of your knowledge, have any U.S.-based organizations or agencies been successfully compromised or hacked as a result of a CCP-affiliated impersonation of a Member of Congress or other U.S. official?
  • Please describe what steps are being taken to investigate such incidents and hold those behind them accountable.

Read the letter HERE.