Wed Dec 11 18:00:00 UTC 2024: **Massive Cyberattack on US Telecoms Prompts Encryption Advice**
WASHINGTON — U.S. officials are urging Americans to utilize encrypted messaging apps following a massive cyberattack on major telecommunications companies, including AT&T and Verizon. Dubbed “Salt Typhoon” by Microsoft, the hacking campaign, attributed to China by U.S. officials but denied by the Chinese Embassy, is one of the largest intelligence compromises in U.S. history.
The attack compromised call records, live phone calls of specific targets, and systems used for law enforcement access to communications (CALEA systems). While the FBI confirmed that some political figures were targeted, it declined to specify the number of individuals alerted or whether classified information was accessed. The agency also stated it will not be proactively notifying individuals whose phone metadata was obtained.
The FBI and Cybersecurity and Infrastructure Security Agency (CISA) recommend using encrypted messaging apps like Signal or WhatsApp to protect communications. They also advise using phones with automatic operating system updates and robust multi-factor authentication. Officials admit the extent of the breach makes a complete remediation timeline impossible to predict.
Senator Ron Wyden criticized the vulnerability inherent in the Communications Assistance for Law Enforcement Act (CALEA), arguing that unencrypted data stored by telecommunication companies presents a significant security risk. U.S. officials maintain that the attack, while extensive, was primarily a traditional espionage operation, not an attempt to interfere with the recent election. The situation underscores ongoing concerns about cybersecurity vulnerabilities and the importance of strong encryption practices.
First Piper 