China-Linked Hackers Breach US Telecom Systems, Access Key Communication Records
In a concerning escalation of foreign cyber interference, U.S. officials disclosed that a China-linked hackers successfully infiltrated commercial telecommunications networks, reportedly gaining access to sensitive phone records tied to notable political figures, including former President Donald Trump and Ohio Senator JD Vance, according to recent media reports. The New York Times reported that just weeks ahead of the presidential election, a China-affiliated hacker group was detected targeting communications from phones used by Trump, Vance, and possibly members of Vice President Kamala Harris’ campaign staff.
The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint statement on Friday, confirming the ongoing investigation into “unauthorized access to commercial telecommunications infrastructure by actors affiliated with the People’s Republic of China (PRC).” The infiltration reportedly involved Verizon’s phone systems and may have exposed sensitive data, including caller IDs, durations, and frequencies of communications, raising concerns about the scope and implications of compromised information within U.S. national security.
Salt Typhoon Group Implicated, History of Targeting Government and Telecom Sectors
Cybersecurity analysts have identified Salt Typhoon, a known Advanced Persistent Threat (APT) group sponsored by the Chinese government, as the potential source behind these attacks. Salt Typhoon, also referred to as GhostEmperor and FamousSparrow, has a history of targeting government agencies and telecom companies, deploying anti-forensic and anti-detection techniques to avoid exposure. Previous reports indicated that Salt Typhoon breached multiple U.S. Internet Service Providers (ISPs) in September, including Verizon, AT&T, and Lumen Technologies.
In response to these recent threats, the Republican Homeland Security Committee called for an official briefing with CISA’s director Jen Easterly, expressing grave concerns over the possibility that the PRC could exploit its network access to reroute U.S. internet traffic or intercept communications via lawful wiretapping systems. The committee emphasized that this breach, if true, could severely threaten both the privacy rights of American citizens and the broader national security of the U.S.
As part of an intensified response, CISA has reportedly assembled an “emergency team” to address the breach, yet questions remain on whether this measure will be sufficient to mitigate the far-reaching capabilities of the Salt Typhoon group.
Ongoing Investigation and National Security Concerns
The FBI and CISA confirmed they have collaborated with the affected telecom companies, providing technical assistance to prevent further breaches and disseminating information to other potential victims across the telecom sector because of China-linked hackers. Federal agencies, industry partners, and the government are working to identify the full extent of the breach and enhance cybersecurity measures within U.S. telecommunications.
Despite the investigation, it is still undetermined if or what specific communications from Trump, Vance, or their staff may have been accessed. Verizon, acknowledging the breach, stated it is cooperating with law enforcement agencies in their ongoing investigation. The Harris campaign has yet to issue a statement, while a spokesperson for the Chinese embassy denied the allegations, claiming that China “has no intention and will not interfere” in U.S. election processes, urging U.S. officials to refrain from “making accusations against China.”
Steven Cheung, Trump’s communications director, responded to the report, asserting that the current administration had empowered China to interfere in U.S. infrastructure, framing it as a potential threat to Trump’s campaign.