Have you asked yourself ? Do we need individuals in our organisation to receive emails from China ? Do we need internetaccess to Chinese sites ? Is it not easier to just whitelist those that you would need and refuse the rest ?
Well off course it can use other channels if it is organised with botnets and other hops, but it may seem like something very simple to do.