China’s ‘Salt Typhoon’ Hacking Campaign Exposes Global Telecom and Internet Companies to Cyber Threats
A Global Cybersecurity Alert: ‘Salt Typhoon’ Campaign Targets Telecom and Internet Providers
A highly sophisticated and widespread cyber campaign, attributed to a China-linked hacking group known as Salt Typhoon, has compromised the networks of numerous global telecom and internet companies. The operation, which is believed to be in preparation for potential military action against Taiwan, has resulted in the theft of sensitive data, including call records, text messages, and audio from senior officials’ phones.
Global Reach of the Campaign
The campaign, which has been ongoing, has affected over 200 companies worldwide, with hundreds of networks breached across the United States, North and South America, Asia, Africa, and Oceania. The hackers have targeted leading U.S. telecom companies, including AT&T, Verizon, and CenturyLink (Lumen), as well as satellite communications giant Viasat and internet providers Charter Communications (Spectrum), Windstream, and Consolidated Communications.
Warning from U.S. Authorities
The U.S. authorities have warned citizens to use end-to-end encrypted messaging apps to secure their communications. T-Mobile reported that its customers’ calls and messages remained secure. However, the group accessed a U.S. state National Guard network, enabling data theft across other states and territories.
Impact on Other Countries
In addition to the U.S., the campaign has affected top telecom firms in Canada, with the government warning that the attacks extended beyond the telecom sector. Cisco devices linked to universities in Argentina and Mexico were also targeted. Hacking activity was confirmed on routers at Mytel (Myanmar), South Africa, and universities across Bangladesh, Indonesia, Malaysia, and Thailand.
Japan, Australia, and New Zealand have warned of Salt Typhoon activity affecting telecom and critical infrastructure. In New Zealand, government, transport, lodging, and military networks were impacted. Furthermore, at least 20 organizations were affected in Afghanistan, Eswatini, India, Taiwan, and the Philippines, spanning telecom, consulting, chemical, and transport sectors, as well as government agencies and nonprofits.
In Europe, Salt Typhoon activity was recorded in the United Kingdom, potentially exposing senior government staff call records and messages. Norway confirmed multiple breaches, while small internet providers in the Netherlands, Italy, and Poland were also affected.
“State-sponsored hacking groups like Salt Typhoon pose a significant threat to global cybersecurity, and their activities should be closely monitored.” – Professor Triveni Singh, a renowned cybercrime expert and former IPS officer
Need for Cybersecurity Measures
The Salt Typhoon campaign highlights the need for organizations to prioritize cybersecurity and implement robust measures to protect their networks and sensitive data. As the campaign continues to expand, it is essential for companies and individuals to remain vigilant and take proactive steps to secure their communications.
About Author
English