At least eight U.S. telecom companies have been breached by a Chinese hacking company, a White House official revealed on Wednesday.
What the White House Is Saying
Deputy national security adviser Anne Neuberger disclosed new details about the extensive Chinese hacking operation that allowed Beijing to access private text messages and phone conversations involving an undisclosed number of Americans.
Neuberger discussed the extent of the breach just a day after the FBI and Cybersecurity and Infrastructure Security Agency released guidance aimed at identifying the hackers and preventing future cyberespionage. White House officials warned that the list of affected telecommunications companies and countries could continue to expand.
According to Neuberger, U.S. officials believe the hackers successfully accessed communications belonging to senior government leaders and high-profile political figures through the breach.
“We don’t believe any classified communications has been compromised,” Neuberger said on Wednesday during a call with reporters.
Neuberger noted that President Joe Biden has been briefed about the incident and said that he “has made it a priority for the federal government to do everything it can to get to the bottom this.”
AP Photo/Kiichiro Sato/AP Photo/Kiichiro Sato
China’s Response
Following the release of new guidance from U.S. federal authorities, the Chinese embassy in Washington on Tuesday denied allegations linking Beijing to the hacking campaign.
“The U.S. needs to stop its own cyberattacks against other countries and refrain from using cyber security to smear and slander China,” embassy spokesperson Liu Pengyu said.
In October, federal authorities confirmed that hackers with ties to China targeted the phones of then-presidential candidate Donald Trump, his running mate Senator JD Vance and individuals connected to Democratic candidate Vice President Kamala Harris.
An official, speaking anonymously under White House guidelines, indicated that the hacking campaign is believed to have begun at least one to two years ago.
Recommendations
The recommendations issued Tuesday for telecommunications companies focus on technical measures, emphasizing encryption, system centralization and continuous monitoring to guard against cyber intrusions.
Experts suggest that implementing the recommended security measures could significantly disrupt the operation, known as Salt Typhoon, and deter China or other nations from launching similar attacks in the future. Neuberger highlighted strengthened cybersecurity measures across industries like rail, aviation and energy, spurred by the May 2021 ransomware attack on Colonial Pipeline.
“So, to prevent ongoing Salt typhoon type intrusions by China, we believe we need to apply a similar minimum cybersecurity practice,” she said.
A ransomware attack by a criminal hacking group on Colonial Pipeline, which supplies roughly 45 percent of the fuel used along the Eastern Seaboard, exposed critical vulnerabilities in the nation’s aging energy infrastructure. The incident caused widespread economic disruptions, prompting Colonial to pay the hackers $4.4 million to restore operations and bring the pipeline back online.
This article includes reporting from The Associated Press.
