News
The ongoing cyber-attack was first reported in October
The US Federal Communications Commission (FCC) is pushing for stricter cybersecurity rules for telecom providers after what experts are calling the worst hack in US telecommunications history.
FCC Chairwoman Jessica Rosenworcel unveiled plans to require carriers to bolster their defenses against cyberattacks, responding to an incident allegedly tied to Chinese state-tied hackers last month
The attack, linked to a group known as “Salt Typhoon,” exploited vulnerabilities in systems used for lawful surveillance, potentially exposing sensitive communications.
Senate Intelligence Committee Chairman Mark Warner called it “the worst telecom hack in our nation’s history – by far.”
Rosenworcel has proposed a new framework that would make it mandatory changes to for telecom providers to secure their networks from unauthorised access. If adopted, the FCC would immediately enforce these requirements under the Communications Assistance for Law Enforcement Act (CALEA).
To ensure their compliance, telecom providers would need to submit annual certifications confirming they have up to date cybersecurity risk management plans in place. These measures are designed to address weaknesses exposed by the recent breach and prevent future incidents.
“The cybersecurity of our nation’s communications critical infrastructure is essential to promoting national security, public safety, and economic security,” said Rosenworcel. “As adversaries grow more sophisticated, we need to modernise our defenses.”
The FCC will also seek feedback on additional cybersecurity requirements for a broader range of communications providers, aiming to strengthen protections across the industry.
The proposed rules come as the US grapples with the fallout of the recent Salt Typhoon cyberattack. Hackers reportedly gained access to confidential data by exploiting wiretap requests sent to telecom companies by federal agencies. The breach has raised questions about the adequacy of current security standards and whether telecom providers are prepared to fend off sophisticated cyber threats.
Last month, senators met with telecom executives and federal officials to discuss the attack, emphasising the need for better collaboration between the government and private sector.
A government statement described the meeting as a chance to “share intelligence and discuss the People’s Republic of China’s significant cyber espionage campaign targeting the sector.”
While the names of the companies involved were not disclosed, it’s believed that major players like AT&T, Verizon, and Lumen were affected.
China has strongly denied the allegations, with embassy spokesperson Liu Pengyu calling them a “distortion of fact” and accusing the US of spreading disinformation for geopolitical purposes.
Join us at next year’s Connected America, 11-12 March in Texas. Get discounted tickets here!
Also in the news:
Cubic Telecom and Skylo partner for satellite capabilities for vehicles
TFL announces full 4G coverage on London’s Elizabeth Line
CMA finally approves Vodafone–Three merger