Cyber Threats

Chinese hackers used a ‘range of sophisticated methods’ to breach US telecom providers, insider says

Salt Typhoon deployed various methods to break into telecommunications firms that went far beyond a singular run-of-the-mill credential-stealing attempt, according to a person familiar.

White House convened telecom leaders as details of Chinese espionage hack unfold

Many of the breached systems were not properly equipped with tools that recorded network activity, making it harder to quickly trace the origins of the hack, a person familiar said.

FCC leaders skirt call for wiretap security reform, hope to ‘go deeper’ on telecom breach briefings

Lawmakers have called on the agency to take up a rulemaking to rethink wiretapping laws amid the hacks that have ensnared several telecom companies, but top FCC officials have not signaled any forthcoming action yet.

New TSA cyber rules leave lawmakers, industry hopeful for happy medium regulations

The agency argues its Nov. 8 proposed rulemaking will dually address the transportation industry’s regulation concerns while ensuring they’re suitably protected from hackers. Others want to wait and see.

Hackers nabbed emails between congressional staff and Library of Congress 

Affected staff were notified Friday afternoon, according to an internal email. Capitol Hill communications with the Congressional Research Service frequently involve confidential legislative drafts or policies still in the brainstorming stage.

US still backs UN cyber pact, but final approval awaits human rights safeguards

Some fear the convention would help legitimize authoritarian nations’ surveillance policies. The U.S. won’t formally ratify it until it sees human rights assurances.

Exclusive

DHS issues internal comms guidance amid telecom breach investigation

The DHS Cyber Safety Review Board is already slated to investigate the hacking collective, dubbed Salt Typhoon, and its intrusion into telecommunications firms and wiretap infrastructure.

Intelligence community briefed Congress on Chinese telecom intrusions

It’s believed the hackers, dubbed Salt Typhoon, accessed call records on numerous Americans, including officials and staff affiliated with President-elect Trump.

DHS cyber review board to investigate Chinese hack of US telecoms as victim net widens

U.S. government officials and staff on both major presidential campaigns were targeted. One former intelligence official called the breaches “really concerning.”

DOJ, Microsoft disrupt Russian hackers targeting civil society orgs

The group, likely linked to Russia’s Federal Security Service, has focused on stealing credentials from NGOs and think tanks around the world.

Russia-backed disinfo groups target Harris-Walz campaign, Microsoft says

A recent video that fabricated false claims of Harris paralyzing a girl in a 2011 car accident was produced and propagated by one of the collectives.

Compromised DNC credentials found on Telegram bot, cyber firm says

Security researchers with ZeroFox identified stolen login information from Democratic-aligned accounts ahead of the party’s presidential nominating convention, but noted that some records “were previously observed in private threat actor-operated repositories.”

DARPA edges closer to using AI to expose cyber vulnerabilities

Next year, seven teams will compete to polish off a best-case model that meshes AI and cybersecurity to detect and fix open-source vulnerabilities in critical infrastructure.

How the White House cyber czar is working to breathe new life into America’s cybersecurity workforce

The national cyber director wants to prepare the next generation of cyber warriors. It starts with touring schools.

Former NSA chief wants academia to play larger role in national security

Paul Nakasone is pushing for new initiatives to bolster national security research and workforce recruitment. It begins with a new institute at Vanderbilt University next month.

Trump campaign allegedly hacked, blames Iran for stealing internal communications

Iranian hacking activities are aligning more with legacy Russian cyber operations, a former top CISA official said.

Iran is accelerating US election influence operations, Microsoft research says

One Iran-linked disinformation collective staged covert news websites that focused on politically divisive topics. Another group breached a low-level account in a county-level swing state.