According to the National Internet Emergency Center, the National Internet Emergency Center discovered and handled two cases of the United States launching cyber attacks on large-scale technology companies and institutions to steal trade secrets. Since August 2024, a certain advanced material design and research unit in my country has been attacked by a suspected US intelligence agency. After analysis, the attacker exploited a vulnerability in a certain electronic document security management system in China to invade the software upgrade management server deployed by the company, and delivered control Trojans to more than 270 hosts of the company through the software upgrade service, stealing a large amount of the company's trade secrets and intellectual property. Since May 2023, a large-scale high-tech enterprise in my country's smart energy and digital information has been attacked by a suspected US intelligence agency. After analysis, the attacker used multiple overseas springboards, exploited Microsoft Exchange vulnerabilities, invaded and controlled the company's mail server and implanted backdoor programs, and continued to steal mail data. At the same time, the attacker used the mail server as a springboard to attack and control more than 30 devices of the company and its subsidiaries, stealing a large amount of the company's trade secrets.