Thu Sep 26 14:13:00 UTC 2024: ## Chinese Hackers Target US Internet Service Providers in “Salt Typhoon” Campaign

**Washington, D.C.** – A suspected Chinese hacking group known as “Salt Typhoon” has infiltrated multiple internet service providers (ISPs) in the United States, according to a report by the Wall Street Journal. While the names of the affected ISPs remain undisclosed, the group is believed to be using its access to steal sensitive data and potentially lay the groundwork for future cyberattacks.

“Salt Typhoon” is linked to other Chinese state-sponsored hacking groups with similar tactics, all bearing the “typhoon” moniker, such as Flax Typhoon, Volt Typhoon, and Brass Typhoon. These groups, though focusing on different targets and objectives, share the common goal of stealing sensitive information and disrupting critical infrastructure organizations in the US. Their activities are reportedly coordinated to serve the Chinese government’s geopolitical interests, including a potential invasion of Taiwan.

While acknowledging the reports of compromised ISPs, the US Cybersecurity and Infrastructure Security Agency (CISA) has emphasized that this activity is not unusual, as China is known for engaging in such cyber espionage.

CISA’s Executive Assistant Director for Cybersecurity, Jeff Greene, stated, “CISA and our partners continue to emphasize the risk posed by PRC state-sponsored cyber actors, who have compromised the IT environments across multiple critical infrastructure sectors and organizations.” He urged organizations to review CISA’s advisories and guidance to mitigate potential threats.

The Salt Typhoon campaign underscores the ongoing threat posed by state-sponsored cyberattacks, particularly from China, which continues to target critical infrastructure and sensitive information in the United States.

Read More