EPISODE · Sep 1, 2025 · 4 MIN
Salt Typhoon Strikes: Chinese Hackers Unleash Telecom Tempest as US Hunts the Dragon
from Digital Dragon Watch: Weekly China Cyber Alert · host Inception Point AI
This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Welcome back, cyber sleuths—Ting here, charting the dragon’s digital footprints for this week’s Digital Dragon Watch. There’s no time for tea: the biggest cybersecurity story is the Salt Typhoon storm unleashed by Chinese state-sponsored hackers. Let’s break it down. According to an unprecedented joint advisory from the US Cybersecurity and Infrastructure Security Agency, the FBI, and partners from Germany, the UK, and Japan, Salt Typhoon is actively compromising global telecoms infrastructure—the backbone of our internet and phone systems. These guys aren’t after your grandma’s email. We’re talking real-time surveillance, siphoning off call records, texts, and metadata from millions—not just in the US, but across 80 countries. Brett Leatherman, the FBI’s cyber deputy director, flat-out called it a national defense crisis and reminded everyone that Beijing’s cyber playbook is broad—private sector, military, even hotel Wi-Fi if it moves information, it’s fair game. Here’s the twist: These attacks aren’t pure smash-and-grab. Salt Typhoon was detected burrowing deep into routers and edge devices, sometimes using commercial products developed by specific Chinese tech firms. The scale? Major US telecoms, including heavyweights like AT&T, T-Mobile, and Verizon, have all been impacted. Dutch authorities just confirmed assault on their small telcos, and similar stories are trickling out across Europe. The FBI’s counterpunch includes ramped-up takedowns of related botnets and a $10 million bounty for tips, which could buy a lot of firewalls—and maybe some spicy hotpot. Digging further, the US government is taking systemic action. Microsoft announced it’s replacing Chinese engineers on Pentagon cloud projects, a move that’s more about resilience to foreign coercion than finger-pointing. The Department of Defense wants “defense-grade cloud,” which now means vetting not just code but also coders. Microsoft says this is about aligning with evolving threat landscapes to keep Cloud Command secure for Uncle Sam. So what sectors are in the dragon’s crosshairs? In the past week, government, telecoms, transportation, defense contracting, and even cloud providers have reported either ongoing attacks or issued high-priority vulnerabilities. Cisco, Microsoft, and VMware have all raced out emergency patches—especially for SharePoint and on-premises cloud resources. Google Threat Intelligence and Mandiant also linked massive token theft and botnet operations back to Chinese groups. Ransomware and supply chain threats weren’t absent either: Nx, a key developer tool, was hijacked to distribute AI-enabled malware, marking the first confirmed supply-chain hack to leverage developer AI assistants. So what are the experts pushing this week? Triple down on network segmentation, real-time monitoring, and MFA everywhere—especially for edge devices and VPNs. U.S. authorities urge telecom and infrastructure This content was created in partnership and with the help of Artificial Intelligence AI.
What this episode covers
This is your Digital Dragon Watch: Weekly China Cyber Alert podcast. Welcome back, cyber sleuths—Ting here, charting the dragon’s digital footprints for this week’s Digital Dragon Watch. There’s no time for tea: the biggest cybersecurity story is the Salt Typhoon storm unleashed by Chinese state-sponsored hackers. Let’s break it down. According to an unprecedented joint advisory from the US Cybersecurity and Infrastructure Security Agency, the FBI, and partners from Germany, the UK, and Japan, Salt Typhoon is actively compromising global telecoms infrastructure—the backbone of our internet and phone systems. These guys aren’t after your grandma’s email. We’re talking real-time surveillance, siphoning off call records, texts, and metadata from millions—not just in the US, but across 80 countries. Brett Leatherman, the FBI’s cyber deputy director, flat-out called it a national defense crisis and reminded everyone that Beijing’s cyber playbook is broad—private sector, military, even hotel Wi-Fi if it moves information, it’s fair game. Here’s the twist: These attacks aren’t pure smash-and-grab. Salt Typhoon was detected burrowing deep into routers and edge devices, sometimes using commercial products developed by specific Chinese tech firms. The scale? Major US telecoms, including heavyweights like AT&T, T-Mobile, and Verizon, have all been impacted. Dutch authorities just confirmed assault on their small telcos, and similar stories are trickling out across Europe. The FBI’s counterpunch includes ramped-up takedowns of related botnets and a $10 million bounty for tips, which could buy a lot of firewalls—and maybe some spicy hotpot. Digging further, the US government is taking systemic action. Microsoft announced it’s replacing Chinese engineers on Pentagon cloud projects, a move that’s more about resilience to foreign coercion than finger-pointing. The Department of Defense wants “defense-grade cloud,” which now means vetting not just code but also coders. Microsoft says this is about aligning with evolving threat landscapes to keep Cloud Command secure for Uncle Sam. So what sectors are in the dragon’s crosshairs? In the past week, government, telecoms, transportation, defense contracting, and even cloud providers have reported either ongoing attacks or issued high-priority vulnerabilities. Cisco, Microsoft, and VMware have all raced out emergency patches—especially for SharePoint and on-premises cloud resources. Google Threat Intelligence and Mandiant also linked massive token theft and botnet operations back to Chinese groups. Ransomware and supply chain threats weren’t absent either: Nx, a key developer tool, was hijacked to distribute AI-enabled malware, marking the first confirmed supply-chain hack to leverage developer AI assistants. So what are the experts pushing this week? Triple down on network segmentation, real-time monitoring, and MFA everywhere—especially for edge devices and VPNs. U.S. authorities urge telecom and infrastructure This content was created in partnership and with the help of Artificial Intelligence AI.
NOW PLAYING
Salt Typhoon Strikes: Chinese Hackers Unleash Telecom Tempest as US Hunts the Dragon
No transcript for this episode yet
Similar Episodes
No similar episodes found.
Similar Podcasts
No similar podcasts found.