The telecom industry in North America is struggling to respond to a recent cyberattack orchestrated by Chinese hackers that breached the systems of at least eight major telecom providers. The attackers, identified by U.S. cybersecurity officials as the hacking group Salt Typhoon infiltrated the networks of companies like AT&T, Verizon, and Lumen Technologies.
Although their primary objective is still unclear, hackers reportedly accessed private text messages, phone calls, and sensitive communications transmitted between dozens of countries. This included presumably protected digital data generated by several U.S. government agencies.
Anne Neuberger, Deputy National Security Adviser for Cyber and Emerging Technologies on the U.S. National Security Council, described the campaign last week as a “sprawling” attack that threatened the backbone of global communications. Hackers leveraged legal backdoors that were initially designed for government surveillance.
Text messaging vulnerabilities.
One alarming takeaway from the breach is a heightened risk to text messaging security. Messages sent between users of the same devices can expect an enhanced level of encryption. However, standard SMS messages sent between Apple and Android devices lack cross-platform security measures.
In a release last week, the FBI advised consumers to avoid sending sensitive information through these unprotected text messaging channels. Instead, they recommend only using encrypted same-device messaging—or switching to apps like Signal or WhatsApp, which offer end-to-end encryption for all transmissions.
A long-term outlook.
The Chinese hackers’ infiltration reportedly extended to senior U.S. government officials, although Neuberger confirmed that no classified information was compromised and that stolen communications have not been spotted on the black market. Even so, the breach underscores the ever-present danger of cyberattacks targeting critical infrastructure.
China’s cybersecurity operations are notorious for their scale and ambition. Cybersecurity experts worry that hacked data could be leaked at some point in the future for financial, reputational, or sociopolitical gain. Many suggest that these campaigns fulfill long-term strategic goals more than they satisfy immediate espionage needs. “It isn’t just about stealing data today,” Canadian cybersecurity expert Stephanie Carvin told CBC News. “It’s about preparing for future campaigns.”
The bigger picture.
This attack is a stark reminder of the fragile state of global telecommunications. Many cybersecurity experts were thankful that it pointed out the danger of unencrypted messaging. One equated it to writing an old-fashioned postcard—once it’s sent in the mail, anyone can read it out in the world. This analogy highlights the urgent need for both individuals and institutions to prioritize secure communication practices.
In light of this breach, CMIT Solutions has gathered the following list of recommended actions that businesses and individuals should take to protect themselves:
- Strengthen multi-layered network defenses. Straightforward solutions like multi-factor authentication (MFA) require users to verify their identity using two or more credentials, such as a password and a code sent to their phone. This makes it exponentially harder for attackers to gain unauthorized access to data. Regular updates to software and firmware can also patch known vulnerabilities, while more advanced tools can build extra protections around attack vectors that may appeal to malicious actors.
- Monitor network activity. Strong proactive monitoring and maintenance can make a world of difference for businesses worried about cybersecurity. With a trusted partner like CMIT Solutions, companies can audit their telecom systems for unusual activity like unauthorized access attempts. Our experts analyze traffic patterns for anomalies and indicators, implementing intrusion detection protections when threats are detected. Routine audits should also include third-party reviews to identify blind spots that internal teams might miss. A proactive approach to monitoring can stop potential breaches before they escalate.
- Consider encrypted messaging. Depending on your industry and location, you may want to consider elevated communications platforms for your emails and texts. Sensitive conversations should be shifted away from standard SMS or consumer-grade email and onto powerful solutions like Microsoft Office, which can produce records of all messages for compliance purposes. End-to-end encryption is built into many enterprise tools, ensuring that only the intended recipient can access the message content. This minimizes the risk of data leaks during communication.
- Back up and safely store data. If a breach does happen, one solution can provide immediate relief: a protected backup of critical data that’s executed often (so it’s recent) and stored remotely (so it’s accessible in case of emergency). This kind of robust data backup strategy ensures business continuity in the event of a cyberattack, minimizing downtime and data loss. CMIT Solutions can deploy automated systems to back up data at regular intervals and test restoration processes periodically to confirm reliability.
- Ensure endpoint encryption. Many businesses monitor desktop and laptop computers but neglect to protect portable devices like smartphones and tablets. However, if endpoint encryption extends to those peripheral parts of your network, data can be protected even if a device is stolen or compromised. Centralized device management with a partner like CMIT Solutions allows you to enforce encryption policies across all company-owned devices and monitor compliance in real time.
- Provide cybersecurity education. Comprehensive employee training is critical to reduce human error, which remains one of the most common causes of successful cyberattacks. Teach staff to recognize phishing attempts, use strong passwords, and avoid unsecured Wi-Fi networks for work-related tasks. Regular simulations and refresher courses can help maintain awareness and preparedness.
The recent attack by Chinese hackers is a sobering example of the constantly evolving cyberthreat landscape. It highlights the vulnerabilities in global telecom infrastructure and the importance of proactive defense measures.
In an era when digital communications are central to personal and professional life, securing these channels is not just optional—it’s critical. If you want to protect your business information and prevent cybersecurity threats, CMIT Solutions can help. Contact us today for trusted advice and proactive support.
