Mashable 2024年12月14日
Was your phone targeted by Chinas Salt Typhoon hack? Your provider might not tell you.
index_new5.html
../../../zaker_core/zaker_tpl_static/wap/tpl_guoji1.html

 

据NBC报道,中国支持的黑客活动影响近百万美国人,电信巨头未全面通知受害者。FBI称尚未完全驱逐黑客,已提醒部分高价值目标。该活动利用APT攻击入侵电信公司,被称为美国史上最严重电信黑客事件,部分公司对 breach 情况守口如瓶。

📱中国支持的黑客活动利用APT攻击入侵至少八家电信公司,暴露个人通信

👨‍✈️FBI过去数月提醒包括特朗普和哈里斯竞选团队等“高价值情报目标”

📞电信公司未明确通知客户的计划,多数受影响的普通美国人未被通知

📱T-Mobile虽告知网络被渗透,但称黑客被驱逐且无客户数据被访问

Telecommunications giants AT&T and Verizon haven't addressed the full scope of victims of an ongoing Chinese phone data hacking campaign, according to a new NBC report.

In a media call last week, the FBI told the press that they have yet to fully evict Chinese state-sponsored hackers from U.S. networks and that the agency has spent the past months alerting "high-value intelligence targets" — including the campaigns of Donald Trump and Kamala Harris — to the extent of the hack, mainly those of interest to the U.S. government.

But the vast majority of the near-million people affected are most likely average Americans, and most of them have yet to be notified that they're victims. According to NBC, the telecom companies haven't clarified plans to notify customers, either.

The China-backed espionage campaign, labelled Salt Typhoon by Microsoft threat detectors, has utilized what is known as advanced persistent threat (APT) attacks to invade at least eight telecommunications companies for the purposes of exposing personal, individual communications. Recent investigations unearthed the years-long initiative involved the hacking of Americans' data in addition to the monitoring of political targets' communications. It's been called the "worst telecom hack in [U.S.] history by far," by Senate Intelligence Committee chairman Senator Mark R. Warner.

According to NBC, Salt Typhoon also accessed device metadata for non-intelligence targets mainly in the Washington D.C. area, which could have been used to track movements and personal communications although does not provide the content of said communications.

The FCC mandates telecom companies notify customers only when its been established that customers have been or could be harmed by the breach. This includes "financial harm, physical harm, identity theft, theft of services, potential for blackmail, the disclosure of private facts, the disclosure of contact information for victims of abuse, and other similar types of dangers." But definitions and the scope of the breach's harm is up to the discretion of companies themselves.

So far, most of the affected telecom networks have remained tight-lipped over the breach. T-Mobile has alerted customers that an infiltration of their network happened, but have retained that hackers were evicted and no customer data was actually accessed.

Fish AI Reader

Fish AI Reader

AI辅助创作,多种专业模板,深度分析,高质量内容生成。从观点提取到深度思考,FishAI为您提供全方位的创作支持。新版本引入自定义参数,让您的创作更加个性化和精准。

FishAI

FishAI

鱼阅,AI 时代的下一个智能信息助手,助你摆脱信息焦虑

联系邮箱 441953276@qq.com

相关标签

电话数据黑客 电信公司 APT攻击 信息安全
相关文章