US government agency warns workers of possible Chinese cellphone hacks

News
By published

The CFPB has told staff not to use cellphones

View of the headquarters building of the Consumer Financial Protection Bureau (CFPB) in Washington DC
(Image credit: Shutterstock)
  • US federal agency issues warning against cellphone usage for work calls
  • Warning comes in the aftermath of the breach of several US telecoms providers
  • Attack has been attributed to Salt Typhoon, who also breached a number of ISPs

The Consumer Financial Protection Bureau (CFPB) has issued a warning to its workers that personal mobile devices should not be used for sensitive work calls due to the recent Chinese probing of US telecommunications networks.

The email sent by the CFPB acknowledges that “While there is no evidence that CFPB has been targeted by this unauthorized access, I ask for your compliance with these directives so we reduce the risk that we will be compromised.”

The warning also extends to contractors working for the CFB, and highlights the scale of the attack against US telecoms by the China-related group tracked as Salt Typhoon.

Telecoms attack worries federal agencies

There is no indication on exactly what data may have been exfiltrated from the telecoms providers, but initial reports suggest that call logs, unencrypted texts and some phone audio was exfiltrated by the attackers, including audio from a number of high-profile individuals related to the Harris and Trump campaigns alongside potentially hundreds of thousands of US citizens.

US officials are also cutting down on their phone use in response to the hack, with a former US official who spoke to the Wall Street Journal (WSJ) stating, “There is a general reticence to use their cellphones.”

Salt Typhoon also managed to breach several internet service providers (ISP) in early October, including Verizon, AT&T, and Lumen, with the attackers also gaining access to a lawful wiretap used for surveillance by US authorities.

As the WSJ notes, a federal agency issuing a specific warning against the use of personal mobile phones indicates the depth and breadth of the attacks.

“Do NOT conduct CFPB work using mobile voice calls or text messages,” the CFPB email recommended. The email also stated that staff should only use authorized online collaboration platforms such as Cisco WebEx and Microsoft Teams to make calls and send messages that contain non-public data.

You might also like

Benedict Collins
Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

Read more
An American flag flying outside the US Capitol building against a blue sky
The FCC is creating a security council to bolster US defenses against cyberattacks
An American flag flying outside the US Capitol building against a blue sky
Chinese cybersecurity firm sanctioned by US Treasury over alleged links to Salt Typhoon hackers
Flag of the People's Republic of China overlaid with a technological network of wires and circuits.
Salt Typhoon attacks may have hit more US firms than previously thought
A wall of data on a large screen.
“It's the same doors that the good guys use, that the bad guys can walk through” - former White House tech advisor on data-centric security in the wake of Salt Typhoon
China
Salt Typhoon hackers used this clever technique to attack US networks
An American flag flying outside the US Capitol building against a blue sky
More alleged Chinese intrusions into the US Treasury revealed
Latest in Pro
An image of network security icons for a network encircling a digital blue earth.
Why multi-CDNs are going to shake up 2025
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Millwall FC The Den
The UK's first football club mobile network is here - but you probably won't guess which team has launched it
A person using a smartphone with a cybersecurity lock symbol appearing over it.
The growing threat of device code phishing and how to defend against It
Latest in News
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC
Oura Ring 4
Activity tracking on Oura Ring is about to get a whole lot better, but I've got bad news about your step count
Google Pixel Buds Pro 2
Cleaned your Pixel Buds Pro 2 recently? If not, you might be getting worse sound
Google Maps on a phone being held in someone's hand
Google Maps is getting two key upgrades, for easier route planning and quicker access to Gemini AI
More about pro
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.

Broadcom warns of worrying security flaws affecting VMware tools
An image of network security icons for a network encircling a digital blue earth.

Why multi-CDNs are going to shake up 2025
Xbox Series X and Xbox wireless controller set to a green background

Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
See more latest
Most Popular
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
Render of a new RTX 4000 Max-Q gaming laptop.
I can't say I'm surprised, but Nvidia's RTX 5090 laptop GPU has a big performance leap over its predecessor, according to early benchmarks
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Apple Music on a tablet, showing a new Listening Guide feature
Apple Music Classical just got 3 excellent perks in its biggest upgrade since launch
Google Pixel Buds Pro 2
Cleaned your Pixel Buds Pro 2 recently? If not, you might be getting worse sound
Quick move in Civ 7.
Sid Meier's Civilization 7 update 1.1.1 is here and it finally adds a setting that I've wanted since day one
A green claw wraps around the carcass of a monster
Is Lagiacrus coming to Monster Hunter Wilds? Some fans are convinced, and here's why
Gemini on a smartphone.
Gemini 2.5 is now available for Advanced users and it seriously improves Google’s AI reasoning
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC
Google Maps on a phone being held in someone's hand
Google Maps is getting two key upgrades, for easier route planning and quicker access to Gemini AI