Security News FBI: Chinese State Hackers Breached U.S. Telecom Providers

[enaph]

Content source

https://cyberinsider.com/fbi-chinese-state-hackers-breached-u-s-telecom-providers/

The FBI and Cybersecurity and Infrastructure Security Agency (CISA) announced that Chinese state-affiliated hackers breached U.S. telecommunications infrastructure, posing a major threat to national security.

The agencies reported that the unauthorized access impacts critical communications systems across the nation, raising concerns about potential data exposure and interference in essential communications. The breach has prompted an immediate, multi-agency investigation, with the FBI and CISA working directly with affected companies to secure their networks.

The breach was initially flagged by the FBI, which, along with CISA, alerted impacted telecom providers, offering technical assistance to contain the threat. Both agencies are now intensifying efforts across the telecom sector, encouraging organizations to bolster their cybersecurity defenses.

The FBI and CISA have urged any companies suspecting unauthorized access to immediately report incidents to their local FBI field office or CISA. While the recent announcement did not disclose specific telecom companies affected, the breach's impact on vital national infrastructure has placed cybersecurity in the telecommunications sector under high scrutiny.

Similar threats reported in Canada​

The Canadian Centre for Cyber Security, a division of the Communications Security Establishment (CSE), published a related advisory, warning of extensive reconnaissance scans targeting Canadian government and critical infrastructure sectors. Although these scans do not constitute full breaches, they are typically seen as potential precursors to more intrusive attacks.

The scans, attributed to Chinese state-sponsored hackers, have targeted various organizations, including government departments, democratic institutions, and critical infrastructure, spanning most of 2024.

The Canadian advisory emphasized the importance of strengthening defenses to guard against this persistent reconnaissance threat. Canadian cybersecurity experts recommend proactive measures such as prompt patching, multi-factor authentication, and enhanced logging to catch any unusual network activity early.

Possible links to previous U.S. telecom breaches​

This recent announcement adds to a growing list of cybersecurity incidents attributed to Chinese state actors targeting North American telecommunications. Earlier this month, reports indicated that hackers associated with a Chinese hacking group, known as “Salt Typhoon,” had accessed the networks of major U.S. broadband providers, potentially compromising systems tied to lawful surveillance. Those affected included key U.S. telecom firms such as AT&T, Verizon, and Lumen Technologies, whose networks play critical roles in managing communications for both government and civilian entities.

Though it remains uncertain whether this breach is linked to the recent FBI and CISA disclosures, both cases share similarities, such as a focus on critical communications infrastructure and potential interception of sensitive information. Salt Typhoon, active since 2020, specializes in intelligence collection and espionage, often targeting network traffic within North America and Southeast Asia.

 

[Gandalf_The_Grey]

US says Chinese hackers breached multiple telecom providers

The FBI and the U.S. Cybersecurity & Infrastructure Security Agency (CISA) have disclosed that Chinese hackers breached commercial telecommunication service providers in the United States.

The breached entities have been warned, and the agencies are proactively alerting other potential targets of the elevated cyber activity.

"The U.S. Government is investigating the unauthorized access to commercial telecommunications infrastructure by actors affiliated with the People's Republic of China," reads the announcement.

"After the FBI identified specific malicious activity targeting the sector, the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) immediately notified affected companies, rendered technical assistance, and rapidly shared information to assist other potential victims."

As the investigation is currently underway, not much information has been shared with the public.

Organizations that believe they might have been compromised by Chinese hackers are urged to contact their local FBI office or CISA and report it immediately.

"Agencies across the U.S. Government are collaborating to aggressively mitigate this threat and are coordinating with our industry partners to strengthen cyber defenses across the commercial communications sector," concludes the announcement.

At the start of the month, it was revealed that a Chinese hacking group tracked as Salt Typhoon had breached multiple U.S. broadband providers, including Verizon, AT&T, and Lumen Technologies.

US says Chinese hackers breached multiple telecom providers

The FBI and the U.S. Cybersecurity & Infrastructure Security Agency (CISA) have disclosed that Chinese hackers breached commercial telecommunication service providers in the United States.

www.bleepingcomputer.com

 

[Vitali Ortzi]

Baseband software could be hacked as well everyone is vulnerable and it's should be a very easier way to get into an iphone then using a escalation change with something like WebKit as the vector , other like the ones for images , gpu (can't remember the name of the kit )

 

[bazang]

The FBI and the U.S. Cybersecurity & Infrastructure Security Agency (CISA) have disclosed that Chinese hackers breached commercial telecommunication service providers in the United States.

This is no surprise. The quality and robustness of Enterprise security is dismal. Government security can be even weaker.

Security is not software. It is a process.