The Federal Communications Commission (FCC) is proposing a new rule to strengthen security within US telecom networks. This comes after revelations that foreign hackers may still have access to sensitive systems. Under the rule, telecom companies would need to take specific measures to protect their networks from unauthorised access or the interception of communications. Additionally, providers would be required to submit an annual certification to the FCC, confirming that they have implemented robust plans to counter cybersecurity threats.
Officials advise encrypted apps amid hacking concerns
On Wednesday, US officials warned about ongoing infiltrations of telecom networks, urging Americans to use encrypted apps for calls and messages. This advice follows reports linking the breaches to Salt Typhoon, a Chinese hacking group. According to Deputy National Security Advisor Anne Neuberger, at least eight telecom providers have been impacted by these attacks, which are believed to have persisted for one to two years.
Neuberger noted the ongoing challenges in addressing the issue at a press briefing. “We cannot say with certainty that the adversary has been evicted because we still don’t know the scope of what they’re doing,” she said, as reported by Bleeping Computer. She added that the government remains vigilant while there is no evidence of compromised classified communications.
The threat has also drawn attention to previous breaches. In October, The Wall Street Journal revealed that Chinese hackers had infiltrated major US telecom providers, including AT&T, Verizon, and Lumen. The breaches reportedly targeted members of President-Elect Donald Trump and Vice President Kamala Harris’s campaigns during the election.
Senators urge investigation into security failures
Senators Eric Schmitt (R-MO) and Ron Wyden (D-OR) sent a letter to Department of Defense Inspector General Robert Storch in response to the breaches. The letter called for an investigation of the department’s failure to secure its unclassified telephone communications from foreign espionage and expressed concern that inadequate safeguards could leave critical information vulnerable to hackers.
If adopted, the FCC’s new rule would take effect immediately, providing a framework for telecom companies to improve their cybersecurity measures. FCC Chair Jessica Rosenworcel emphasised the need for action in a press release, stating, “While the Commission’s counterparts in the intelligence community are determining the scope and impact of the Salt Typhoon attack, we need to put in place a modern framework to help companies secure their networks and better prevent and respond to cyberattacks in the future.”
The proposed rule is necessary to address the vulnerabilities in US telecom infrastructure. By holding providers accountable for maintaining stronger defences, officials hope to reduce the risks posed by foreign cyber threats and prevent future breaches.
