The Federal Bureau of Investigation (FBI) and cybersecurity officials issued urgent guidance to telecommunications companies on Tuesday, calling for enhanced network security measures following the discovery of an extensive Chinese hacking operation that compromised private communications of U.S. citizens.
The campaign, known as Salt Typhoon group's tactics, gave Chinese hackers access to call metadata, text messages, and even audio recordings from an undisclosed number of Americans. The FBI has already contacted specific victims, many working in government and political roles, whose communications were directly accessed.
In an unprecedented joint warning with security agencies from New Zealand, Australia, and Canada, U.S. officials revealed that hackers successfully infiltrated multiple networks to harvest customer metadata, including details about calls and text messages.
The true scope of the breach remains unclear, with investigators still working to determine how many individuals were affected and whether hackers maintain ongoing access to these networks. Of particular concern is evidence suggesting the hackers targeted information related to U.S. law enforcement investigations and court orders, potentially seeking access to Foreign Intelligence Surveillance Act (FISA) programs.
The FBI's technical recommendations focus on encryption, centralized monitoring, and other cybersecurity measures designed to prevent future intrusions. Jeff Greene, executive assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA), acknowledged that completely deterring such attacks would be challenging.
This incident follows several other major Chinese cyber operations recently uncovered by U.S. authorities, including a botnet scheme affecting over 200,000 devices and attempts to target phones belonging to political candidates.
While China's embassy in Washington denounced the allegations as "disinformation" and denied involvement in cyberattacks, U.S. officials remain focused on strengthening defenses against what they view as an ongoing threat to national security and private communications.
The telecommunications industry now faces pressure to implement stronger security protocols to protect customer data and prevent similar breaches in the future.