FBI confirms Chinese hackers accessed US government official devices, networks

Flag of the People's Republic of China overlaid with a technological network of wires and circuits.
(Image credit: Shutterstock)

  • FBI and CISA confirm networks have been compromised by Salt Typhoon
  • Devices and networks used by government individuals also hit
  • The group also successfully breached a network used by US authorities

A joint statement from the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) has confirmed “broad and significant cyber espionage campaign” with links to the People’s Republic of China successfully breached numerous commercial telecommunications organizations.

The infiltration of these communications networks, believed to be the group tracked as Salt Typhoon, has allowed the threat actors to gain access to customer call records data as well as the private communications of a limited number of individuals within the US government.

The joint statement has also confirmed the group managed to successfully infiltrate a US wiretap system used by authorities to submit requests pursuant to court orders.

ISPs and telecoms compromised by Salt Typhoon

In late September 2024, Salt Typhoon targeted several US internet service providers in a reconnaissance scan that is believed to assist in vulnerability hunting for potential use in later attacks. In early October 2024, it was also reported the compromise affected a number of telecommunications companies such as AT&T, Lumen Technologies, and Verizon.

Now, it appears that the issue is more widespread than first thought, with the Wall Street Journal reporting that the group may have had access “for months or longer,” citing people familiar with the matter.

This access may have allowed them to harvest “internet traffic from internet service providers that count businesses large and small, and millions of Americans, as their customers.”

Salt Typhoon has also been targeting Canadian organizations, with wide sections of the government also subjected to reconnaissance scans, as well as “dozens of organizations, including democratic institutions, critical infrastructure, the defence sector, media organizations, think tanks and NGOs,” the Government of Canada said in a statement.

“The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) continue to render technical assistance, rapidly share information to assist other potential victims, and work to strengthen cyber defenses across the commercial communications sector,” the joint statement concluded. “We encourage any organization that believes it might be a victim to engage its local FBI field office or CISA.”

You might also like

Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

Read more
Flag of the People's Republic of China overlaid with a technological network of wires and circuits.
Salt Typhoon attacks may have hit more US firms than previously thought
An American flag flying outside the US Capitol building against a blue sky
Chinese cybersecurity firm sanctioned by US Treasury over alleged links to Salt Typhoon hackers
China
Salt Typhoon strikes again - more US ISPs, universities and telecoms networks hit by Chinese hackers
China
Salt Typhoon hackers used this clever technique to attack US networks
China
US Government officials urged to lock down devices amid telecoms breach
China
AT&T and Verizon say they're free of Salt Typhoon hacks at last, as further victims identified
Latest in Pro
Finger Presses Orange Button Domain Name Registration on Black Keyboard Background. Closeup View
I visited the world’s first registered .com domain – and you won’t believe what it’s offering today
Racks of servers inside a data center.
Modernizing data centers: an efficient path forward
Dr. Peter Zhou, President of Huawei Data Storage Product Line
Why AI commonization is so important for business intelligent transformation and what Huawei’s data storage has to offer
Wix automation
The world's leading website builder aims to save businesses time with new tool
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Latest in News
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over
Quordle on a smartphone held in a hand
Quordle hints and answers for Sunday, March 16 (game #1147)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Sunday, March 16 (game #378)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Sunday, March 16 (game #644)
Three iPhone 16 handsets on show
Apple could launch an iPhone 17 Ultra this year – but we've heard these rumors before
Super Mario Odyssey
ChatGPT is the ultimate gaming tool - here's 4 ways you can use AI to help with your next playthrough