Chinese cyberattacks have breached the networks of major U.S. telecommunications companies, exposing sensitive data and prompting a nationwide security alert.
Federal agencies are urging telecom providers to strengthen their defenses, calling the incident one of the most significant in U.S. history.
On November 13, a joint statement from the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) revealed that Chinese state-sponsored hackers had accessed the communications systems of several U.S. telecom companies. These breaches allowed attackers to steal sensitive customer data, including call records, communications tied to government and political activities, and even law enforcement-related information.
In response, the FBI, CISA, and the National Security Agency (NSA), along with international partners, released a detailed cybersecurity guide. The recommendations aim to help organizations quickly identify vulnerabilities, monitor for anomalies, and implement safeguards to prevent further breaches.
Jeff Greene, the Executive Assistant Director for Cybersecurity at CISA, pointed out the gravity of the threat, asserting that China-backed hackers pose a “serious risk” to the critical infrastructure and institutions of the United States.
A Chinese-linked group known as “Salt Typhoon,” responsible for this hacking campaign, has sparked alarms across the nation.
According to Sen. Mark Warner (D-Va.), chair of the Senate Select Committee on Intelligence, the scale of this attack is “unprecedented” in size and complexity. Major telecom providers, including Verizon, AT&T, and CenturyLink, were among those targeted, along with prominent political figures and organizations.
The breach reportedly impacted the communications of key political leaders, including 2024 presidential candidates Vice President Kamala Harris and President-elect Donald Trump.
Sen. JD Vance (R-Ohio), the Vice President-elect, revealed that the breach had targeted his phone. However, Salt Typhoon’s attacks appear to have focused more broadly on critical infrastructure rather than election interference.
“This has been going on for some time,” Warner said. “We lack minimum cybersecurity standards in our telecom sector, and this attack will likely be remembered as one of the most significant cyber incidents in our country’s history.”
In addition to the Salt Typhoon breaches, U.S. authorities have been combating other China-backed hacking campaigns.
Another Chinese group, “Flax Typhoon,” controlled a botnet that the Department of Justice (DOJ) dismantled earlier this year. This botnet comprised over 200,000 devices worldwide, including some in the United States, and was used to conduct cyberattacks disguised as normal internet activity.
Federal officials, including National Security Advisor Jake Sullivan, have engaged with telecom industry executives to discuss strategies for hardening infrastructure against nation-state attacks. During a September enforcement operation, U.S. officials took control of the Chinese hackers’ systems and disabled the malware infecting the compromised devices.
Despite these efforts, the scale of the Chinese cyber threat remains daunting.
FBI Director Christopher Wray testified earlier this year that China operates the largest hacking network in the world, dwarfing U.S. cybersecurity resources. “If every FBI cyber agent focused solely on China, their hackers would still outnumber us 50 to 1,” Wray warned.
Experts caution that Chinese cyber actors are not just engaging in espionage but are positioning themselves for potential sabotage of U.S. critical infrastructure in the event of conflict. From IT systems to water and energy grids, the potential targets are vast and vital.
Morgan Adamski, Executive Director of U.S. Cyber Command, recently highlighted these risks, noting that China-backed groups have already taken steps to disrupt server systems and control mechanisms for utilities. This revelation underscores the urgent need for robust cybersecurity measures across the public and private sectors.
The latest incidents serve as a wake-up call for America’s telecom industry to prioritize cybersecurity.
Federal agencies continue to provide guidance, but the responsibility to protect vital communication networks lies with both government and private entities. With tensions rising between the U.S. and China, the battle for cyber supremacy has never been more critical.