Salt Typhoon Hacks Haunt Telcos | FCC Rethinks Security | China Cracks Down on Data Skeletons episode artwork

EPISODE · Oct 31, 2025 · 5 MIN

Salt Typhoon Hacks Haunt Telcos | FCC Rethinks Security | China Cracks Down on Data Skeletons

from Digital Dragon Watch: Weekly China Cyber Alert · host Inception Point AI

This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Happy Halloween, listeners! Or as I like to call it, the perfect day for a Digital Dragon cyber scare. I’m Ting and this is your weekly China Cyber Alert, breaking down the past seven days in infosec with just enough wit to keep you awake, even if you stayed up all night patching vulnerabilities. The big headline: Salt Typhoon is giving telecom execs more nightmares than the new reboot of The Ring. This Chinese cyberespionage group has been living rent-free in the servers of Ribbon Communications, not for weeks, but for months. Ribbon is basically the backbone for major phone and internet providers—think AT&T, Verizon, even Lumen and some Canadian outfits. The U.S. government says Salt Typhoon, which reports pin back to the Ministry of State Security, was hunting for phone records and call data on senior officials. Why? Well, if you ask U.S. intelligence, it’s all in prep for any future friction over Taiwan. According to TechCrunch, these hackers were only recently discovered after stealing who-knows-how-much data since December 2024. They’ve targeted more than 200 U.S. companies so far, and the campaign is a global affair[TechCrunch]. The FCC, with Chairman Brendan Carr at the helm, thinks telecom security rules brought in during the closing months of the Biden administration may be a swing and a miss. These rules forced telcos to lock down wiretap request systems—where law enforcement demands data—and required annual security posture check-ins. But Carr argues it’s regulatory overkill that “exceeded the agency’s authority.” So, next month, the FCC might pull back on these requirements[Nextgov]. Some cybersecurity folks think that’s like leaving the candy bowl unattended on Halloween: asking for mischief, given Salt Typhoon’s recent rampage. On the China side, the Ministry of Public Security released six new cases from its “Cybersecurity Protection - 2025” campaign. The focus: corporate data skeletons in the closet. Shanghai CAC, along with several ministries, is clamping down on facial recognition and surveillance, especially in high-traffic commercial zones. The MPS handed out fines to a luxury brand and an AI provider for botching personal information protection—yes, even fancy shopping apps need to worry about data privacy these days. The Cyberspace Administration is rolling out draft provisions to beef up oversight for giant internet platforms, with fresh standards for cross-border personal data[TwoBirds]. Meanwhile, in D.C., the FCC just voted unanimously to close lingering loopholes that let Huawei, ZTE, and other blacklisted Chinese manufacturers sneak gear into the U.S. The updated ban catches components, not just branded boxes. Millions of unauthorized listings have vanished from U.S. websites. Brendan Carr summed it up: foreign adversaries will exploit any digital open window. Still, some on the vendor side say the FCC is going too far, hurting small businesses This content was created in partnership and with the help of Artificial Intelligence AI.

This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Happy Halloween, listeners! Or as I like to call it, the perfect day for a Digital Dragon cyber scare. I’m Ting and this is your weekly China Cyber Alert, breaking down the past seven days in infosec with just enough wit to keep you awake, even if you stayed up all night patching vulnerabilities. The big headline: Salt Typhoon is giving telecom execs more nightmares than the new reboot of The Ring. This Chinese cyberespionage group has been living rent-free in the servers of Ribbon Communications, not for weeks, but for months. Ribbon is basically the backbone for major phone and internet providers—think AT&T, Verizon, even Lumen and some Canadian outfits. The U.S. government says Salt Typhoon, which reports pin back to the Ministry of State Security, was hunting for phone records and call data on senior officials. Why? Well, if you ask U.S. intelligence, it’s all in prep for any future friction over Taiwan. According to TechCrunch, these hackers were only recently discovered after stealing who-knows-how-much data since December 2024. They’ve targeted more than 200 U.S. companies so far, and the campaign is a global affair[TechCrunch]. The FCC, with Chairman Brendan Carr at the helm, thinks telecom security rules brought in during the closing months of the Biden administration may be a swing and a miss. These rules forced telcos to lock down wiretap request systems—where law enforcement demands data—and required annual security posture check-ins. But Carr argues it’s regulatory overkill that “exceeded the agency’s authority.” So, next month, the FCC might pull back on these requirements[Nextgov]. Some cybersecurity folks think that’s like leaving the candy bowl unattended on Halloween: asking for mischief, given Salt Typhoon’s recent rampage. On the China side, the Ministry of Public Security released six new cases from its “Cybersecurity Protection - 2025” campaign. The focus: corporate data skeletons in the closet. Shanghai CAC, along with several ministries, is clamping down on facial recognition and surveillance, especially in high-traffic commercial zones. The MPS handed out fines to a luxury brand and an AI provider for botching personal information protection—yes, even fancy shopping apps need to worry about data privacy these days. The Cyberspace Administration is rolling out draft provisions to beef up oversight for giant internet platforms, with fresh standards for cross-border personal data[TwoBirds]. Meanwhile, in D.C., the FCC just voted unanimously to close lingering loopholes that let Huawei, ZTE, and other blacklisted Chinese manufacturers sneak gear into the U.S. The updated ban catches components, not just branded boxes. Millions of unauthorized listings have vanished from U.S. websites. Brendan Carr summed it up: foreign adversaries will exploit any digital open window. Still, some on the vendor side say the FCC is going too far, hurting small businesses This content was created in partnership and with the help of Artificial Intelligence AI.

NOW PLAYING

Salt Typhoon Hacks Haunt Telcos | FCC Rethinks Security | China Cracks Down on Data Skeletons

0:00 5:12

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

No similar episodes found.

No similar podcasts found.

Frequently Asked Questions

How long is this episode of Digital Dragon Watch: Weekly China Cyber Alert?

This episode is 5 minutes long.

When was this Digital Dragon Watch: Weekly China Cyber Alert episode published?

This episode was published on October 31, 2025.

What is this episode about?

This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Happy Halloween, listeners! Or as I like to call it, the perfect day for a Digital Dragon cyber scare. I’m Ting and this is your weekly China Cyber Alert, breaking down the past...

Can I download this Digital Dragon Watch: Weekly China Cyber Alert episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!