WASHINGTON — Federal authorities are urgently investigating a cyber attack linked to Chinese-backed hackers that targeted major U.S. telecommunications companies and systems used for key government intelligence gathering functions, officials said. A US official familiar with the matter confirmed this to CBS News.
A group of hackers known as “Salt Typhoon” attacked numerous companies, including Verizon, AT&T, and Lumen Technologies. The official, speaking on condition of anonymity, said the depth and seriousness of the hack was not yet clear.
Chinese hackers have penetrated systems used by U.S. intelligence agencies to conduct eavesdropping, the official said, and both government agencies and affected private companies are aware that malicious actors They are trying to determine what information they were able to collect.
The hack was first reported by the Wall Street Journal. The FBI and other federal agencies, including the Cybersecurity and Infrastructure Security Agency, are currently investigating this cyber breach. The FBI, Justice Department, and CISA have not commented.
AT&T and Lumen Technologies declined to comment on this report. Verizon did not immediately respond to CBS News’ request for comment.
What were the hackers aiming for?
U.S. intelligence officials regularly seek court permission to use communications systems like those targeted by breaches to gather information for law enforcement and national security investigations. . A U.S. official told CBS News that Chinese-backed hackers have been targeting U.S. surveillance capabilities used for wiretapping and other operations, and investigators are now trying to determine how deeply the Chinese have accessed the networks. He said he is trying to figure it out.
One concern is that the cyberattack may have allowed the hackers to access information about ongoing investigations in the United States, including those related to China, through the collection of sensitive data and technology.
What are American lawmakers saying?
In light of the reported hack, Sen. Ron Wyden, D-Ore., called on the Department of Justice and the Federal Communications Commission to impose mandatory, uniform security standards for wiretapping systems at telecommunications companies. Ta.
In a letter to FCC Chairman Jessica Rosenworcel and Attorney General Merrick Garland, Wyden wrote: “Recently reported hacks into wiretapping systems at U.S. telecommunications companies should serve as a major wake-up call to the government. ” he said. “We need to address our outdated regulatory framework and the Department of Justice’s failed approach in combating cyberattacks to protect negligent companies. The security of our nation’s communications infrastructure is of paramount importance, and the government must We must act now to fix long-standing vulnerabilities.”
Specifically, Wyden called on the FCC to establish “baseline” cybersecurity standards for carriers that could be enforced through fines, require annual cybersecurity audits by independent third parties, and more. .
He called on the Justice Department to hold “negligent” companies accountable and be transparent with Congress, law enforcement agencies and the public about data breaches. He said the government should prioritize holding companies accountable for poor cybersecurity over prosecuting foreign hackers because they are rarely brought to justice.
What else has China done?
FBI Director Christopher Wray and other U.S. government officials have long warned about the cyber threat posed by China. Chinese government-backed hackers recently targeted U.S. water treatment facilities and power grids, strategically positioning themselves within critical infrastructure systems and “causing havoc and threatening real-world threats to U.S. citizens and communities.” ,” Wray told Congress in January.
Earlier this year, CISA officials said Chinese-backed hackers were “destroying IT networks in preparation for a devastating or destructive cyberattack on U.S. critical infrastructure in the event of a major crisis or conflict with the United States.” The company issued a public advisory claiming that “the attacker is attempting to infiltrate the site in advance.” state. ”
And in recent years, federal officials at the Justice Department have warned that China is seeking to steal sensitive U.S. technology information to improve its domestic capabilities.
A multi-year cyber operation led by the notorious Chinese state agency known as APT 41 has siphoned an estimated trillions of dollars worth of intellectual property from nearly 30 multinational companies in the pharmaceutical, energy and manufacturing industries, CBS News reports. Reported in 2022. Data across companies in North America, Europe, and Asia.
Margaret Brennan, Olivia Gazis and Nicole Sganga contributed to this report.
