EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Chinese Cybercriminals from Salt Typhoon Infiltrate New Telecom Operators
    • Home
    • Cybercrime
    • Chinese Cybercriminals from Salt Typhoon Infiltrate New Telecom Operators

    Chinese Cybercriminals from Salt Typhoon Infiltrate New Telecom Operators

    Written by
    The Editorial Team
    02.21.25
    Cybercrime
    01
    MIN
    Chinese Cybercriminals from Salt Typhoon Infiltrate New Telecom Operators
    Chinese Cybercriminals from Salt Typhoon Infiltrate New Telecom Operators
    Chinese Cybercriminals from Salt Typhoon Infiltrate New Telecom Operators
    Image Europol Coordinates the Takedown of 8Base Ransomware, a Phobos Variant
    Cybercrime
    02.17.25 Cybercrime
    Next article
    Europol Coordinates the Takedown of 8Base Ransomware, a Phobos Variant
    Read
    02
    MIN
    Image A Russian Cybercriminal Accused of Collaborating with the FBI
    Cybercrime
    02.10.25 Cybercrime
    Next article
    A Russian Cybercriminal Accused of Collaborating with the FBI
    Read
    01
    MIN
    Image Europol coordinated the takedown of the cybercriminal forums Cracked and Nulled
    Cybercrime
    02.03.25 Cybercrime
    Next article
    Europol coordinated the takedown of the cybercriminal forums Cracked and Nulled
    Read
    01
    MIN
    Image EU Sanctions Three Russian Agents for Cyberattacks Against Estonia
    Cybercrime
    02.02.25 Cybercrime
    Next article
    EU Sanctions Three Russian Agents for Cyberattacks Against Estonia
    Read
    01
    MIN
    The group affiliated with Beijing attempted to compromise vulnerable Cisco routers across a thousand devices in a hundred countries, with seven confirmed breaches.

    Cybersecurity researchers from Recorded Future’s Insikt division released a report on February 13, 2025, detailing a new campaign by Salt Typhoon against telecom operators. Active since 2019, this cybercriminal group—also known as RedMike—is believed to be affiliated with the Chinese government. It has been linked to the hacking of major U.S. telecom providers Verizon, AT&T, and Lumen Technologies, revealed in late 2024.

    According to Insikt, Salt Typhoon attempted to exploit two vulnerabilities in Cisco routers. These flaws, known for two years, allow attackers to gain initial access to a device and subsequently obtain root access, the highest level of control.

    Salt Typhoon targeted over 1,000 machines across 100 countries, including 154 in the United States, primarily belonging to telecom operators and, to a lesser extent, universities. Insikt identified seven confirmed breaches, affecting a U.S. subsidiary of a British telecom operator, as well as operators in South Africa, the United States, Italy, and Thailand.

    The Editorial Team
    02.21.25
    Articles by the same author:
    1
    02.21.25 Cybersecurity
    The Energy Sector Strengthens its Cyber Vigilance
    Read
    01
    MIN
    2
    02.19.25 Cybercrime
    Russian Intelligence-Linked Hackers Storm-2372 Target Instant Messaging Services
    Read
    01
    MIN
    3
    02.17.25 Cybercrime
    Microsoft Warns About BadPilot, a Unit of Russian State-Sponsored Group Sandworm
    Read
    01
    MIN
    4
    02.17.25 Digital identity
    Identity Security: Israel’s CyberArk Acquires Zilla Security for $175 Million
    Read
    01
    MIN
    Image Europol Coordinates the Takedown of 8Base Ransomware, a Phobos Variant
    Cybercrime
    02.17.25 Cybercrime
    Next article
    Europol Coordinates the Takedown of 8Base Ransomware, a Phobos Variant
    Read
    02
    MIN
    Image A Russian Cybercriminal Accused of Collaborating with the FBI
    Cybercrime
    02.10.25 Cybercrime
    Next article
    A Russian Cybercriminal Accused of Collaborating with the FBI
    Read
    01
    MIN
    Image Europol coordinated the takedown of the cybercriminal forums Cracked and Nulled
    Cybercrime
    02.03.25 Cybercrime
    Next article
    Europol coordinated the takedown of the cybercriminal forums Cracked and Nulled
    Read
    01
    MIN
    Image EU Sanctions Three Russian Agents for Cyberattacks Against Estonia
    Cybercrime
    02.02.25 Cybercrime
    Next article
    EU Sanctions Three Russian Agents for Cyberattacks Against Estonia
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.