A Chinese cyber-espionage group, known as Salt Typhoon, has infiltrated nine U.S. telecommunications companies, granting them access to private communications of numerous Americans.
Discovery of the Ninth Breach
The latest breach was identified after the federal government issued guidance to telecom companies, detailing Chinese hacking techniques and detection methods. Anne Neuberger, Deputy National Security Adviser for Cyber and Emerging Technology, confirmed the discovery of the ninth company but did not disclose its identity.
Scope of the Espionage
Salt Typhoon’s activities have enabled Chinese officials to access private texts and phone conversations of an unspecified number of Americans, including senior U.S. government officials. The Chinese government has denied responsibility for these cyber intrusions.
Government Response and Policy Measures
In response to these breaches, the Biden administration is implementing several measures to enhance cybersecurity in the telecommunications sector:
- Federal Communications Commission (FCC) Regulations: The FCC is set to vote on a proposed rule requiring telecom providers to establish and annually report their cybersecurity practices, with potential fines for non-compliance. Recommendations include network segmentation to contain potential breaches.
- General Services Administration (GSA) Contracts: The GSA is reviewing government contracts to ensure the inclusion of robust cybersecurity requirements, leveraging government procurement to enforce high-impact security practices.
- Commerce Department Actions: The Commerce Department is progressing with a ban on China Telecom, with final decisions pending the incoming administration.
Call for Enhanced Cybersecurity Measures
The breaches have prompted calls for the telecommunications industry to adopt stricter cybersecurity protocols. Neuberger highlighted instances where inadequate security measures, such as a single administrator account controlling extensive network access, facilitated the breaches. Implementing minimum cybersecurity standards is deemed essential to prevent future intrusions.
