In a rather concerning development, Chinese hackers reportedly infiltrated the networks of major US telecommunications companies, gaining access to systems used for court-authorized wiretaps, according to a report from The Wall Street Journal.
The breach, which targeted providers like Verizon Communications, AT&T, and Lumen Technologies, potentially allowed the attackers to remain undetected for months, gathering sensitive information related to government requests for communications data.
The extent of the breach
The hackers, believed to be part of a Chinese state-sponsored group, infiltrated telecom companies’ infrastructure to handle government-authorized wiretaps.
This breach could have provided the attackers access to sensitive US internet traffic and allowed them to monitor communications under surveillance orders. The intrusion was only recently discovered, and it is suspected that the hackers may have maintained access to these networks for an extended period, collecting intelligence.
US investigators have dubbed the group responsible for the breach “Salt Typhoon.” This incident is part of a broader trend of cyber espionage activities allegedly linked to Chinese hackers.
Earlier in the year, US law enforcement disrupted another major Chinese hacking campaign, “Flax Typhoon,” a group accused of sweeping cyberespionage efforts. These operations are believed to be aimed at gathering intelligence for the Chinese government.
China’s response and denial
China’s foreign ministry responded to the allegations, denying any involvement in the hacking operation. In a statement, they claimed they were not aware of the attack mentioned in the report and accused the US of creating “false narrative” to frame China.
The ministry also criticized the US for hindering global cybersecurity cooperation and dialogue, calling the allegations an impediment to international efforts to address cybersecurity threats.
Beijing has consistently denied any accusations of state-sponsored hacking activities, including those of the US government. In this case, China’s foreign ministry cited evidence published by their cybersecurity agencies, which they claimed showed that “Volt Typhoon,” another group allegedly linked to Beijing, was the work of an international ransomware organization.
Telecom companies’ silence
Lumen Technologies, one of the affected companies, declined to comment on the matter, while Verizon and AT&T have yet to respond to requests for a statement. The breach highlights the vulnerability of critical infrastructure, even in industries as secure as telecommunications, and raises concerns over systems’ integrity for sensitive government operations like wiretapping.
With US telecom networks now implicated in these ongoing cyberattacks, the revelations point to an escalating battle in cyber espionage. Both nations will likely continue to trade accusations, while experts stress the need for stronger international cooperation to confront the growing cybersecurity challenge.