The US government is sounding the alarm after a complex cyberattack, dubbed Salt Typhoon, compromised large portions of the American telecommunications network. The attack, carried out by Chinese hackers, began as far back as 2022 and has given Chinese operatives persistent access to US telecommunications networks.
According to US officials, the purpose of the attack was to give Chinese operatives access to devices such as routers and switches run by companies like AT&T, Verizon, and Lumen. The attack has been linked to previous cyberattacks by Russian operatives, with Sen. Mark Warner (D-VA) describing it as “the worst telecom hack in our nation’s history”.
Research from security vendor Trend Micro shows that Salt Typhoon has compromised critical infrastructure around the world in recent years. US officials have confirmed these findings and expressed a high level of concern.
The attack exploited technical vulnerabilities in cybersecurity products, allowing Chinese officials to obtain records showing communication patterns, as well as access to phone call and text message contents. It also compromised private portals used by telephone companies for law enforcement monitoring and US intelligence surveillance.
To address the Salt Typhoon attack, the Cybersecurity and Infrastructure Security Agency has released guidance on best cybersecurity practices for organizations. However, many organizations are still vulnerable due to existing weaknesses in their infrastructure.
Experts recommend that companies and governments ensure their IT departments and cybersecurity programs are adequately staffed and funded to meet their needs. They should also monitor threat intelligence feeds and informal professional networks to stay up-to-date on attackers’ tactics and techniques.
While the average American is unlikely to be directly affected by the Salt Typhoon attack, experts stress the importance of maintaining cybersecurity programs to prevent debilitating incidents.
Source: https://www.yahoo.com/news/salt-typhoon-security-expert-explains-134327946.html