Chinese cybersecurity firm sanctioned by US Treasury over alleged links to Salt Typhoon hackers

An American flag flying outside the US Capitol building against a blue sky

(Image credit: Getty Images)

A Chinese cybersecurity firm has been sanctioned by the US Treasury
The firm allegedly has ties to hacking group Salt Typhoon
Salt Typhoon is accused of carrying out a cyberattack on 9 telco giants

A Chinese cybersecurity firm has been sanctioned by the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) for alleged links to the notorious hacking group Salt Typhoon.

Salt Typhoon is perhaps best known as the group who infiltrated the networks of nine major US telecommunications companies and internet providers, including Verizon and AT&T in the largest telecoms hack in US history.

“Sichuan Juxinhe Network Technology Co., LTD. (Sichuan Juxinhe) had direct involvement in the exploitation of these U.S. telecommunication and internet service provider companies. The MSS (China Ministry of State Security) has maintained strong ties with multiple computer network exploitation companies, including Sichuan Juxinhe,” the Treasury said in a statement.

A major incursion

The Salt Typhoon hack saw state-sponsored actors targeting high-level government communications through a breach of third-party tech support platform BeyondTrust. Hackers were reportedly lurking inside telecom networks for months before being eradicated.

“The Treasury Department will continue to use its authorities to hold accountable malicious cyber actors who target the American people, our companies, and the United States government, including those who have targeted the Treasury Department specifically,” said Deputy Secretary of the Treasury Adewale O. Adeyemo.

Following the hack, the US Treasury was again hit by a further cyberattack which targeted the Committee on Foreign Investment in the US (CFIUS), which is the department in charge of reviewing foreign investments for national security risks.

In January 2025, the Treasury similarly sanctioned a Chinese cybersecurity firm Yongxin Zhicheng Technology Group for alleged ties to Flax Typhoon, the group responsible for hijacking legally required broadband and communications backdoors which allow US law enforcement to intercept communications.

Take a look at our pick of the best malware removal software
Japan says Chinese hackers have launched hundreds of attacks against targets in the country
Check out our pick for best antivirus software for PCs

Ellen has been writing for almost four years, with a focus on post-COVID policy whilst studying for BA Politics and International Relations at the University of Cardiff, followed by an MA in Political Communication. Before joining TechRadar Pro as a Junior Writer, she worked for Future Publishing’s MVC content team, working with merchants and retailers to upload content.