US Telecom Giants AT&T and Verizon Confirm Security Breach by China-Linked Hackers
In a recent acknowledgment, US telecom giants AT&T and Verizon confirmed that their networks were targeted by the China-linked Salt Typhoon cyberespionage group. The breach, which was first reported in October, highlights the ongoing threat of nation-state sponsored cyberattacks on critical infrastructure.
Containment and Response Efforts
According to statements from both companies, the breaches have been contained, and no further malicious activity has been detected. AT&T spokesperson Alexander Byers stated that the company has detected “no activity by nation-state actors in our networks at this time.” Verizon spokesperson Richard Young confirmed that the company has “contained the cyber incident brought on by this nation-state threat actor” and has not detected any threat actor activity on its network “for some time.”
Scope of the Breach
While the full extent of the breach is still unclear, AT&T reported that the hackers targeted “a small number of individuals of foreign intelligence interest” and that only “relatively few instances” of compromised individual information were detected. Verizon confirmed that the hackers specifically targeted “a small number of high-profile customers in government.”
Collaboration with Law Enforcement and Cybersecurity Partners
Verizon’s chief general officer, Vandana Venkatesh, emphasized the company’s swift response to the incident, stating that Verizon “took several key actions to protect its customers and its network, including partnering with federal law enforcement and national security agencies, industry partners, and private cybersecurity firms.”
Ongoing Threat Landscape
The Salt Typhoon breach highlights the ongoing threat of nation-state sponsored cyberattacks on critical infrastructure. US officials have confirmed that at least nine telecommunications providers have been targeted, including Lumen (formerly CenturyLink) and T-Mobile. The incident serves as a reminder of the importance of robust cybersecurity measures and collaboration between industry leaders, law enforcement, and government agencies to protect against emerging threats.
