The White House confirmed on Friday that a ninth US telecommunications company had fallen victim to a massive Chinese hacking campaign targeting critical infrastructure in the US and other countries. The cyber-espionage group known as “Salt Typhoon” has been actively infiltrating government and telecom networks worldwide since at least 2019.
White House Deputy National Security Adviser Anne Neuberger revealed the latest breach during a news conference, highlighting the vulnerabilities in the private sector’s cybersecurity practices. She emphasized the need for companies to strengthen their defenses and hold China accountable for these cyberattacks.
The Biden administration has issued new guidance to help organizations detect Chinese cyberactivity and ensure the security of their systems. Neuberger stated that, as of now, there is no indication that any classified communications have been compromised.
However, a senior official from the Cybersecurity and Infrastructure Security Agency (CISA) cautioned that they could not confirm whether the attackers had been completely removed from the affected systems. In response to the breaches, CISA has advised senior government officials to use encrypted messaging platforms like Signal to prevent interception risks and has provided technical guidance to telecom operators to enhance their defenses against Salt Typhoon’s tactics.
The US government is taking further measures to address the cybersecurity threats posed by Chinese entities. The New York Times reported that the last active operations of China Telecom in the US are set to be banned, and investigations into TP-Link routers are ongoing, with potential restrictions on their use expected in the coming year if security risks are confirmed.
Legislative and regulatory actions are also being proposed to strengthen the nation’s telecom defenses. US Sen. Ron Wyden has announced plans for a bill to secure American networks, and Federal Communications Commission Chairwoman Jessica Rosenworcel has pledged to act urgently to mandate enhanced infrastructure protections for US carriers.
Overall, the US government is ramping up efforts to combat cyber threats from China and protect critical infrastructure from malicious actors. The ongoing attacks by Salt Typhoon highlight the importance of proactive cybersecurity measures and collaboration between government agencies and private sector companies to safeguard sensitive information and maintain national security.