Threat Intelligence, Critical Infrastructure Security

Easterly: US federal networks initially targeted by Salt Typhoon

CISA Director Jen Easterly has been out front promoting MFA, but today’s columnist, Stu Sjouwerman of KnowBe4, writes that it will take a combination of efforts by CISA and the private sector along with very strong security awareness training to make organizations safer. (Photo by Kevin Dietsch/Getty Images)

Chinese state-sponsored threat group Salt Typhoon was noted by Cybersecurity and Infrastructure Security Agency Director Jen Easterly to have infiltrated federal networks prior to its extensive cyberespionage operation against U.S. telecommunications providers, reports The Register.

Identification of Salt Typhoon's exploits in federal networks has enabled the FBI and other law enforcement agencies to infiltrate the hacking group's virtual private servers, resulting in the discovery of its sweeping attack against telcos, noted Easterly at a Foundation for Defense of Democracies event. Despite the extent of Salt Typhoon's attacks, China's potentially deep infiltration of the U.S.'s critical infrastructure remains a more significant worry for Easterly. "What I've been more concerned about are the efforts to burrow deeply into our most sensitive critical infrastructure, whether that's water or transportation or power or communications, for the purposes of launching disruptive or destructive attacks in the event of a major crisis in the Taiwan Strait," Easterly added.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds