Federal authorities have uncovered a sophisticated cyber operation believed to be backed by China, targeting prominent figures in American politics. Former President Donald Trump, Senator JD Vance, and members of Vice President Kamala Harris’ presidential campaign were among the targets of this cyberattack, as confirmed by multiple sources familiar with the matter.
The extent of the cyber operation and the information that may have been compromised by the alleged hackers remain unclear. Sources revealed that the campaign was recently made aware that phones used by the candidates may have been targeted in this cyber campaign. The news was initially reported by The New York Times.
The Justice Department and the FBI have refrained from commenting on the ongoing investigation. However, a source familiar with the matter disclosed that the potential targeting of Trump and Vance was part of a broader cyberattack that aimed at officials from both major political parties. Law enforcement has notified potential victims, treating the hack as an act of espionage rather than an attempt at influencing the campaign.
In a joint statement issued by the FBI and the Cybersecurity and Infrastructure Security Agency, it was stated that the U.S. Government is investigating the unauthorized access to commercial telecommunications infrastructure by actors affiliated with the People’s Republic of China. The statement also emphasized the agencies’ prompt response in notifying affected companies, providing technical assistance, and sharing information to assist other potential victims.
A spokesman for the Trump campaign attempted to shift blame towards Democrats for the cyber hack, alleging that it was a deliberate attempt to prevent President Trump from returning to the White House. This accusation comes amidst growing concerns over the increasing cyber threats posed by foreign actors, particularly China.
For several weeks, federal investigators have been delving into a potential China-backed hack of major U.S. telecommunications companies. It is suspected that the cybercriminals may have exploited their access to gather information on key government intelligence collection capabilities. The hacking group known as “Salt Typhoon” targeted several major U.S. companies, including Verizon, AT&T, and Lumen Technologies.
The severity and depth of the hack are still being assessed, with concerns raised about the breach of systems used by U.S. intelligence for wiretapping purposes. Both government agencies and the affected private companies are working diligently to determine the extent of information that may have been compromised by the hackers.
Verizon confirmed that a highly sophisticated nation-state actor had targeted multiple U.S. telecommunications providers to gather intelligence. The company, along with federal law enforcement and industry peers, is actively engaged in investigating and mitigating any potential impact of the cyber intrusion. Similarly, Lumen Technologies and AT&T declined to provide any comments on the matter.
FBI Director Christopher Wray and other top U.S. officials have consistently warned about the cyber threats posed by China. Recent incidents, including the targeting of U.S. water treatment plants and electrical grids, underscore the strategic positioning of hackers within critical infrastructure systems to cause real-world harm to American citizens and communities.
The Salt Typhoon hack is not an isolated incident, as other cyber operations have also targeted individuals associated with the 2024 presidential election. Last month, the Justice Department charged three Iranian hackers for allegedly targeting members of former President Donald Trump’s presidential campaign as part of a malicious cyber scheme.
Charging documents revealed that the Iranian hackers executed a wide-ranging hacking campaign using spearphishing and social engineering techniques to compromise the accounts of government officials, media personnel, and individuals associated with U.S. political campaigns. While the campaign targeted by the defendants was not explicitly named, U.S. officials have consistently pointed to Iran’s efforts to undermine Trump’s presidential bid.
The ongoing investigation into these cyberattacks underscores the growing threat posed by foreign adversaries in cyberspace. With the potential compromise of sensitive information and critical infrastructure systems, the need for robust cybersecurity measures and international cooperation has become more pressing than ever. As the investigation continues, authorities are working tirelessly to identify and mitigate the impact of these cyber operations on national security and democratic processes.
