US unveils sweeping cybersecurity measures over alleged China-backed Salt Typhoon campaign

Steps include enhanced guidance for securing networks and strengthened requirements for healthcare data protection

Reading Time:3 minutes

To date, nine telecoms companies have been identified as targets of Salt Typhoon, an alleged China-backed hacking campaign. Photo: Dreamstime/TNS

Published: 3:30am, 28 Dec 2024Updated: 5:30am, 28 Dec 2024

US President Joe Biden’s administration on Friday announced sweeping cybersecurity measures following revelations about Salt Typhoon, an alleged China-backed hacking campaign that infiltrated major US telecommunications companies.

The new steps include mandatory federal regulations for telecoms cybersecurity, enhanced guidance for securing networks and strengthened requirements for healthcare data protection.

Deputy national security adviser Anne Neuberger stressed a need for urgent reforms to prevent future breaches.

“We wouldn’t leave our homes or offices unlocked, yet our critical infrastructure often lacks the basic cybersecurity practices necessary to make it more defensible,” she said.

The US intelligence community believes Salt Typhoon has been active since 2022 and exploited vulnerabilities in telecoms infrastructure to access sensitive data, including geolocation, phone call records and text messages.

To date, nine telecoms companies have been identified as targets. Neuberger cited one case in which a single administrator account controlled access to more than 100,000 routers, giving hackers unfettered control.