The accused targeted dozen US companies and government entities through cyber operations, including spear phishing and malware attacks.