The FBI and CISA (Cybersecurity and Infrastructure Security Agency) have issued a warning about a significant Chinese cyber espionage campaign targeting US telecommunications networks, known as the Salt Typhoon operation.
Key details include:
- The cyber attacks are "ongoing and likely larger in scale than previously understood"
- Chinese hackers have compromised networks of multiple telecom companies
- The FBI began investigating the activity in late spring and early summer of 2024
- While widespread call and text metadata was stolen, expansive call and text content was not compromised for most users
- However, private communications of a limited number of government and political individuals were potentially accessed
Recommendations for Users:
- Use encrypted communication apps
- Use cell phones with timely operating system updates
- Implement phishing-resistant multi-factor authentication
- Avoid sending texts between different platforms (iPhone to Android)
The FBI and CISA strongly urge Americans to use encrypted communications wherever possible, emphasizing that encryption can make intercepted data unreadable even if it is captured by adversaries.
A Senate Commerce subcommittee is scheduled to hold a hearing on December 11, 2024, to discuss the Salt Typhoon threat and review best practices for communications network security.