Salt Typhoon Sizzle: China Cyber Spies Scorch US Telcos in Massive Breach Bonanza episode artwork

EPISODE · Aug 29, 2025 · 4 MIN

Salt Typhoon Sizzle: China Cyber Spies Scorch US Telcos in Massive Breach Bonanza

from Digital Dragon Watch: Weekly China Cyber Alert · host Inception Point AI

This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Hey listeners, it’s Ting here on Digital Dragon Watch: Weekly China Cyber Alert, straight into the pulse of this week’s cyber crossfire. Forget slow news cycles—these past seven days have been a full-on breach bonanza, so let’s jack in. Biggest story is the Salt Typhoon wave—yes, that’s the not-so-cuddly code name for a Chinese cyber-espionage group whose tentacles, according to FBI cyber chief Michael Machtinger, have slithered into data belonging to nearly every American. This campaign rooted deep into telecommunications networks as far back as 2019 and, get this, was only uncovered last fall. Their operation plowed through more than nine US telcos, name-dropping giants like Verizon and AT&T, and expanded into military, transportation, and even hotel systems across at least 80 countries. It’s not just top government honchos in the crosshairs: Machtinger warns “the public can’t assume safety just because they’re not a spy.” Salt Typhoon had the capacity to geolocate millions of phones, monitor traffic, and in a few cases, eavesdrop on calls—yes, rumors say even folks like Donald Trump and VP JD Vance hit the victim list. The FBI, NSA, and agencies from 12 other countries have now outed three enabling Chinese tech firms, including Sichuan Juxinhe Network Technology, for supporting this operation. These companies develop tools for China’s Ministry of State Security and the People’s Liberation Army. Jason Bilnoski from the FBI called China’s heavy dependence on these domestic vendors a strategic own-goal, since it leaves a tantalizing paper trail for Western investigators. Now for the new attack vectors. The latest CISA advisory maps a playbook of Chinese threat tactics: targeted router compromises, clever persistence exploits, and a toolkit based on high-profile bugs like CVE-2024-21887 and CVE-2024-3400. The actors are securing long-term footholds in telecom core devices—think backbone and edge routers—and then pivoting into adjacent networks, making detection a nightmare. The initial access vector still stumps CISA’s best, so if anyone out there sniffs out that zero-day, there’s probably a medal in your future. How’s Uncle Sam fighting back? After that Pentagon bombshell about Chinese engineers working on Defense cloud systems via Microsoft, Secretary Pete Hegseth has barred China nationals from anything remotely sensitive, slapped Microsoft with a formal warning, and ordered a full audit of their digital escort program. Expect the software supply chain in defense to get scrutinized like never before. And if you’re a tech vendor with federal dreams—tighten those controls, double-check your overseas personnel, and invest in serious code audits. Meanwhile, on the home front, China’s own Cyber Emergency Response Center flagged 70 domestic apps for flouting data privacy laws—violations included missing consent pop-ups, impossible opt-outs, and failing kids’ privacy. So compli This content was created in partnership and with the help of Artificial Intelligence AI.

This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Hey listeners, it’s Ting here on Digital Dragon Watch: Weekly China Cyber Alert, straight into the pulse of this week’s cyber crossfire. Forget slow news cycles—these past seven days have been a full-on breach bonanza, so let’s jack in. Biggest story is the Salt Typhoon wave—yes, that’s the not-so-cuddly code name for a Chinese cyber-espionage group whose tentacles, according to FBI cyber chief Michael Machtinger, have slithered into data belonging to nearly every American. This campaign rooted deep into telecommunications networks as far back as 2019 and, get this, was only uncovered last fall. Their operation plowed through more than nine US telcos, name-dropping giants like Verizon and AT&T, and expanded into military, transportation, and even hotel systems across at least 80 countries. It’s not just top government honchos in the crosshairs: Machtinger warns “the public can’t assume safety just because they’re not a spy.” Salt Typhoon had the capacity to geolocate millions of phones, monitor traffic, and in a few cases, eavesdrop on calls—yes, rumors say even folks like Donald Trump and VP JD Vance hit the victim list. The FBI, NSA, and agencies from 12 other countries have now outed three enabling Chinese tech firms, including Sichuan Juxinhe Network Technology, for supporting this operation. These companies develop tools for China’s Ministry of State Security and the People’s Liberation Army. Jason Bilnoski from the FBI called China’s heavy dependence on these domestic vendors a strategic own-goal, since it leaves a tantalizing paper trail for Western investigators. Now for the new attack vectors. The latest CISA advisory maps a playbook of Chinese threat tactics: targeted router compromises, clever persistence exploits, and a toolkit based on high-profile bugs like CVE-2024-21887 and CVE-2024-3400. The actors are securing long-term footholds in telecom core devices—think backbone and edge routers—and then pivoting into adjacent networks, making detection a nightmare. The initial access vector still stumps CISA’s best, so if anyone out there sniffs out that zero-day, there’s probably a medal in your future. How’s Uncle Sam fighting back? After that Pentagon bombshell about Chinese engineers working on Defense cloud systems via Microsoft, Secretary Pete Hegseth has barred China nationals from anything remotely sensitive, slapped Microsoft with a formal warning, and ordered a full audit of their digital escort program. Expect the software supply chain in defense to get scrutinized like never before. And if you’re a tech vendor with federal dreams—tighten those controls, double-check your overseas personnel, and invest in serious code audits. Meanwhile, on the home front, China’s own Cyber Emergency Response Center flagged 70 domestic apps for flouting data privacy laws—violations included missing consent pop-ups, impossible opt-outs, and failing kids’ privacy. So compli This content was created in partnership and with the help of Artificial Intelligence AI.

NOW PLAYING

Salt Typhoon Sizzle: China Cyber Spies Scorch US Telcos in Massive Breach Bonanza

0:00 4:14

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

No similar episodes found.

No similar podcasts found.

Frequently Asked Questions

How long is this episode of Digital Dragon Watch: Weekly China Cyber Alert?

This episode is 4 minutes long.

When was this Digital Dragon Watch: Weekly China Cyber Alert episode published?

This episode was published on August 29, 2025.

What is this episode about?

This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Hey listeners, it’s Ting here on Digital Dragon Watch: Weekly China Cyber Alert, straight into the pulse of this week’s cyber crossfire. Forget slow news cycles—these past seven...

Can I download this Digital Dragon Watch: Weekly China Cyber Alert episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!