The U.S. government has officially confirmed that state-linked Chinese hackers successfully breached major American telecommunications providers. The intrusion granted unauthorized access to sensitive wiretap systems utilized by law enforcement agencies to conduct legal surveillance on citizens.
A Massive Cyber Espionage Campaign
In a joint statement released this Monday, the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) revealed they have uncovered a “broad and significant” cyber espionage operation. The hackers, identified as having ties to the People’s Republic of China (PRC), compromised the internal networks of multiple U.S. telecom companies.
While federal agencies have refrained from naming the specific victims, reports from The Wall Street Journal indicate that industry giants such as AT&T, Verizon, and Lumen are among those affected by the breach.
Data Theft and Political Targeting
Investigations suggest the actors, known as “Salt Typhoon,” maintained access to these critical networks for months. This deep infiltration allowed the group to intercept internet traffic flowing through providers that serve millions of Americans and countless businesses.
The agencies confirmed that the breach resulted in the theft of customer call records and the unauthorized exposure of private communications. Although the specific targets remain classified, officials noted that the individuals compromised are primarily involved in government or political activities. Recent reports have linked this campaign to attempts to access the phone data of high-profile political figures, including Donald Trump and Senator JD Vance.
Access to Court-Ordered Surveillance
A particularly alarming aspect of the intrusion is that the hackers successfully copied information subject to U.S. law enforcement requests under court orders. This effectively allowed a foreign power to mirror the surveillance capabilities of the U.S. government.
Previously, the FBI and CISA had acknowledged investigations into China-backed groups within the telecommunications sector but stopped short of confirming the theft of wiretap-specific data. The current confirmation marks a significant escalation in the public assessment of the threat.
Strengthening National Cyber Defenses
“The FBI and CISA continue to render technical assistance, rapidly share information to assist other potential victims, and work to strengthen cyber defenses across the commercial communications sector,” the agencies stated. Federal authorities are urging any organizations that suspect they may have been compromised to contact their local FBI Field Office or CISA immediately to mitigate further risks.