Chinese Cyberspies Breach US Telecoms, Intercepting Top Officials’ Communications
A major data breach in the United States, linked to Chinese cyberespionage, continues to escalate, revealing severe issues within the country’s counterintelligence framework.
In early October, reports first emerged of breaches affecting the infrastructure of leading telecommunications operators, such as Verizon, AT&T, and Lumen Technologies, as well as some operators in allied nations. These attacks have been attributed to the Chinese cyberespionage group Salt Typhoon, identified by Microsoft.
According to sources familiar with the investigation, hackers successfully intercepted phone calls and text messages, including those from high-ranking officials involved in U.S. national security and policy matters.
The United States has confirmed the attacks. The Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency stated that they are conducting an investigation and working to mitigate the threat associated with unauthorized access to U.S. telecommunications infrastructure.
On October 8, the White House assembled a response coordination group under a directive signed by Barack Obama in 2016. This group is the fourth of its kind created to address critical cybersecurity incidents. Similar groups were previously established to respond to attacks on Microsoft Exchange and SolarWinds.
The Cybersecurity Safety Review Board, established by Joe Biden in 2021, will also review this incident. Modeled after the National Transportation Safety Board, the board’s mission is to investigate significant cyberattacks.
Microsoft uses code names for Chinese hacker groups, including Salt Typhoon, Volt Typhoon, and Flax Typhoon. These groups target U.S. and allied critical infrastructure to potentially destabilize it in the event of a conflict.
American intelligence notes that China remains the most active and resilient cyber threat to the U.S., seeking to exert influence over the nation’s critical infrastructure and strategic decision-making.
