China Allegedly Hacks US Telecom Giants, Potentially Accesses Wiretap Systems

_{Source-firstpost.com}

Chinese Government Hackers Breach US Telecom Networks

Chinese government-backed hackers have reportedly infiltrated the networks of major US internet service providers, raising concerns about possible access to sensitive wiretap systems. According to reports from The Wall Street Journal (WSJ) and The Washington Post, Verizon, AT&T, and Lumen (formerly CenturyLink) were among the companies targeted in the breach. The hackers, linked to a Chinese group known as Salt Typhoon, may have gained access to systems used for court-authorized wiretaps on communications networks.

Sources familiar with the incident told the WSJ that the hackers had access to the network infrastructure for an extended period, potentially for months. The compromised infrastructure is typically used to cooperate with lawful US requests for communications data. Additionally, the attackers reportedly had access to broader internet traffic, further complicating the situation.

The Washington Post added that this breach is believed to be part of an espionage operation, possibly aimed at identifying Chinese targets of American surveillance. US government officials confirmed that the FBI, intelligence agencies, and the Department of Homeland Security are investigating the breach, although the investigation remains in its early stages. The attack has raised concerns about the involvement of China’s Ministry of State Security.

Verizon Collaborates with FBI Amid Security Concerns

In response to the breach, Verizon has set up a “war room” at its Ashburn, Virginia facility, where it is collaborating with the FBI, Microsoft, and Google subsidiary Mandiant to assess the damage and secure their systems. The Post reported that the hackers exfiltrated data by reconfiguring Cisco routers within Verizon’s network, raising questions about the company’s security posture. Analysts emphasized the sophisticated nature of the attack, suggesting that Verizon’s defenses may not have been sufficient to detect such breaches in time.

Both the WSJ and The Washington Post pointed out that while it remains unclear if the hackers accessed wiretap systems, there are indicators that those systems may have been targeted. However, it has not yet been confirmed whether federal surveillance targets or their communications were compromised. Officials are still investigating whether the breach involved domestic criminal investigations, national security cases, or other areas of interest like espionage or terrorism.

US officials, including President Joe Biden, have been briefed on the situation, and efforts to mitigate the consequences of the attack are ongoing. AT&T, Lumen, and Verizon have declined to comment publicly on the matter, while the investigation continues.

Chinese Embassy Denies Involvement, Labels Claims as Disinformation

In response to these allegations, the Chinese Embassy in Washington denied any involvement in the cyberattacks. A spokesperson for the embassy issued a statement accusing the US intelligence community and cybersecurity firms of collaborating to create false evidence and spread disinformation regarding China’s role in cyberattacks on American infrastructure.

While some details of the hacking campaign were first reported on September 26, the involvement of specific internet service providers and the potential wiretap systems aspect were not revealed until these recent reports. The investigation remains active, and further details may emerge as US authorities continue their probe into the breach.