The United States has announced the identification of a ninth telecommunications company targeted in a major espionage campaign linked to China, known as Salt Typhoon. According to Anne Neuberger, Deputy National Security Advisor for Cyber and Emerging Technologies, the discovery came after the release of government guidelines for telecom operators. These recommendations detailed the methods employed by Chinese hackers and strategies for their detection.
“Based on this information, a ninth company has been identified,” Neuberger told reporters, noting that the company’s name has not yet been disclosed. Chinese authorities have vehemently denied involvement in the attack, which intercepted unclassified data, including phone metadata of senior U.S. officials, as well as President-elect Donald Trump and Vice President-elect J.D. Vance.
The incident has sparked concern among lawmakers from both parties, prompting calls for enhanced security measures. Mike Waltz, appointed by Trump as National Security Advisor, stated that “offensive countermeasures” should be prioritized.
The administration is formulating responses to mitigate the breach’s impact. Next month, the Federal Communications Commission (FCC) is set to review a proposal requiring telecommunications companies to submit annual cybersecurity reports or face penalties. Among the recommendations is network segmentation, a measure designed to limit attackers’ movements in the event of a breach.
Neuberger highlighted severe lapses in network management by some companies. In one instance, a single administrator had access to more than 100,000 routers, enabling hackers to seize control of the entire network.
The full scope of the breach remains unclear due to hackers’ attempts to erase their tracks and companies’ insufficient data logging. Neuberger has urged the FCC to establish minimum cybersecurity standards to strengthen network defenses and prevent future attacks.
Simultaneously, the General Services Administration is scrutinizing government contracts to tighten cybersecurity requirements for contractors. Meanwhile, the Department of Commerce continues to advocate for a ban on China Telecom, a decision to be finalized by the incoming administration.
Neuberger also stated that further measures to bolster cybersecurity and counter threats from foreign adversaries can be expected in the coming months.
