One of the most compelling (and worrisome) cyber-attacks of the last quarter of 2024 was directed at major United States telecommunications providers including AT&T and Verizon. This attack was attributed to a Chinese People’s Liberation Army (PLA) hacking operation coined Salt Typhoon – also deemed responsible for other attacks on different parts of the U.S. critical infrastructure.
These offensive cyber operations, while long ongoing, were first reported in October, but only recently discussed in any detail by both the White House and some of the affected telcos.
Verizon and AT&T acknowledged that they were infiltrated by the Salt Typhoon operation, but both report that they have cleared the intrusion from their networks. According to executives from both AT&T and Verizon, the attacks appeared to specifically target high-profile U.S. government and political figures. Both companies emphasized that they are cooperating with federal authorities and notifying all potentially affected parties.
The lasting impact of this Salt Typhoon operation is unknown, but it continues a pattern of PLA behavior to probe and infiltrate numerous critical infrastructure sectors to establish persistent access to the systems that provide almost every American essential service on a daily basis. The challenge the Chinese present with this activity cannot be overstated. Senate Intelligence Chair Mark Warner (D-VA) has called it the “worst telecom hack in our nation’s history.”
Any company that is part of the Defense Industrial Base or supply chain in any way is a target for highly capable nation states like China and many others. We must ensure we defend our critical assets with diligence and perseverance equal to that of our attackers. Without that commitment and investment in our own cybersecurity, we are putting not only ourselves, but all of our partners in the defense community at risk.
Commentaires