CRITICALApt
Verified
United States

Salt Typhoon Compromises Three Additional US Telecom Providers

·Source: CISA / FBI Joint Advisory

Updated:

Executive Summary

CISA and FBI confirm Salt Typhoon has compromised three additional US telecom providers, totaling twelve. Lawful intercept systems accessed.

Analysis

Chinese state-sponsored group Salt Typhoon has expanded its campaign to twelve US telecom companies. Investigators confirmed access to lawful intercept systems, call detail records, and metadata for senior government officials. Remediation complicated by firmware-level implants on core routing infrastructure.

Timeline

Discovered
Sep 1, 2024
Exploitation Detected
Sep 1, 2024
Published
Mar 30, 2026
Source Attribution

Originally published by CISA / FBI Joint Advisory on Mar 30, 2026. Verified by: CISA, FBI, NSA.

Related Threats

CRITICALApt

7 tips for accelerating cyber incident recovery

Despite strong and redundant defenses, enterprises remain vulnerable to a wide range of cyberattacks. And because attacks — and cyber incidents — are inevitable, developing an incident response and recovery process that’s quick, comprehensive, and coordinated is essential. Expediting incident recovery time is critical because the longer an outage persists, the more costs, risk, and business disrup

CSO Online
LOWApt

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

Many employees already use shadow AI tools at work without security review. Adaptive Security breaks down how teams can build practical AI governance without adding friction for employees. [...]

BleepingComputer
MEDIUMApt

Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

The Russian state-sponsored hacking group known as Turla has transformed its custom backdoor Kazuar into a modular peer-to-peer (P2P) botnet that's engineered for stealth and persistent access to compromised hosts. Turla, per the U.S. Cybersecurity and Infrastructure Security Agency (CISA), is assessed to be affiliated with Center 16 of Russia's Federal Security Service (FSB)

The Hacker News