The link between Volt Typhoon and China is not as firmly established as news reports tend to suggest. It's mostly based on tactical attributions (as opposed to operational and strategic ones). China attributes the indicators to a cybercrime group. This blog post has a good summary of the state of evidence (such as it is):
> Black Lotus Labs said it assessed with “medium” confidence that Volt Typhoon was responsible for the compromises, noting the intrusions bear the hallmarks of the Chinese state-sponsored espionage group — including zero-day attacks targeting IT infrastructure providers, and Java-based backdoors that run in memory only.
Who is Natto Thoughts and why should I care? Substack opinions are cheap.
That paragraph you cited simply says that the intrusions bear the hallmarks of Volt Typhoon. It has no bearing on the separate question who Volt Typhoon is.
Analogy: "was this murder committed by Jack the Ripper?" and "who was Jack the Ripper?" are separate questions.
> Who the heck is Natto Thoughts and why should I care?
https://nattothoughts.substack.com/p/who-is-volt-typhoon-a-s...