The White House has confirmed that a ninth U.S. telecommunications company has fallen victim to a widespread Chinese hacking campaign attributed to the Salt Typhoon cyber-espionage group. This revelation comes after the Biden administration’s recent cybersecurity guidance release.
The Chinese hacking group, also known as Earth Estries, FamousSparrow, Ghost Emperor, and UNC2286, has been targeting critical infrastructure, particularly telecommunications companies, since 2019. Their operations extend across multiple countries, with a significant focus on Southeast Asia.
Deputy National Security Adviser Anne Neuberger emphasized the urgent need for private sector companies to strengthen their cybersecurity measures. While no classified communications have been reportedly compromised, CISA officials cannot confirm the complete removal of the threat actors from affected systems.
In response to these breaches, the U.S. government has initiated several protective measures:
– CISA’s recommendation for officials to use end-to-end encrypted messaging apps
– Planned ban on China Telecom’s remaining U.S. operations
– Potential restrictions on TP-Link routers
– New legislation proposed by Senator Ron Wyden to enhance telecom security
– FCC’s commitment to mandate improved carrier infrastructure security
The ongoing investigation highlights the growing concerns over Chinese state-sponsored cyber activities targeting critical U.S. infrastructure and the urgent need for enhanced cybersecurity measures across the telecommunications sector.