Hard to know how credible this story is. The Nightly is a new website from one of the Australian media companies, seems to be relatively tabloid-level.
It's not clear, is this "Chinese Government-sponsored hacker collective" chatting in English or is it translated?
The messages show the Chinese citizen and the collective members reacting in real-time to the vulnerability being detected.
“I don’t understand. Which idiot discovered this?” the Chinese citizen claiming responsibility asked.
“Looks like it’s being dug out,” a fellow said.
“Bullshit”, he replied. “F---. How did he find out?”
The Nightly can also reveal that the cyber infiltration operation may not yet be neutralised.
“And not just this one”, he said after claiming the XZ attack.
“It’s okay. I have another open-source thing. It’s also been poisoned. Still can play with it. F---ing hell,” he told another hacker collective in further messages also discovered by The Nightly.
I heard it was Craig Wright, a.k.a. Satoshi Nakamoto.
Anyone can claim anything; especially if it gets them attention and/or notoriety/street cred. Obviously this warrants investigation, but colour me somewhat skeptical based on the information in this article.
It's not clear, is this "Chinese Government-sponsored hacker collective" chatting in English or is it translated?