Salt Typhoon: What Happened and Why Does it Matter?
Salt Typhoon was the “Worst telecom hack in our nation’s history,” Senator Mark Warner, Chair of the US Senate Intelligence Committee.
Salt Typhoon, a Chinese affiliated hacker group, compromised at least 8 U.S. telecom providers – stealing a large amount of data, including records of government officials and political figures.
The attack was unprecedented in scope and began in 2022.
The extent of the breach is still unknown, with Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) saying it would be impossible to predict when the hackers would be fully removed from the systems.
Watch our take on the events below:
Downstream Supply Chain Impact
Jessica Rosenworcel, Chairwoman of the Federal Communications Commission announced the need for “a modern framework to help companies secure their networks and better prevent and respond to cyberattacks in the future.”
In our interconnected world, this extends to vulnerabilities in your supply chain.
Using interos.ai’s data, we see the Salt Typhoon attack impact could ripple out to 3.3 million distinct companies in the extended supply chain of 4 of the largest telecom companies in the US.
We estimate that the affected telecom companies represent a significant portion of the U.S. economy, serving over 350 million wireless customers collectively and generating more than $334 billion in annual revenue.
If even a fraction of these systems remains compromised, the downstream impact on businesses reliant on secure communications could reach into the tens of billions in economic losses.
Ted Krantz, interos.ai’s CEO Discusses New Era of Cybersecurity
“Beyond the immediate blast radius, we must consider the future ramifications. Cyberattacks like this can fuel cascading effects we aren’t yet prepared for—whether that’s enabling more sophisticated surveillance of private citizens or jeopardizing critical infrastructure. Each stolen record costs the economy an average of $169, according to industry data. Multiplied by the potential number of affected individuals, the total economic cost could exceed $15 billion in direct and indirect damages within the next year alone.”
– Ted Krantz, CEO, interos.ai discusses.
“The FCC’s proposed clarifications and certification requirements are steps in the right direction, but we must also prioritize collaboration between the private sector, regulators, and intelligence agencies to build a modern cybersecurity framework.”
“This includes leveraging advanced technologies like AI to improve threat detection and response, increasing transparency across supply chains, and fostering global partnerships to address cross-border cyber threats.”
“The Salt Typhoon attack may be unprecedented in scope, but it is not surprising. We’re in a new era of attacks targeting critical infrastructure.”
“This is a battle we’ve been preparing for, and one we must pre-empt with innovation and data-fueled risk intelligence.”
Defend Against Digital Threats
Before disaster hits, Interos’s critical risk intelligence platform helps companies mitigate the financial impacts of multi-tier risks like cyber attacks by continuously mapping and monitoring extended supply chains at speed and scale.
Learn how you defend against digital threats.