The U.S. government is urging senior government officials and politicians to ditch phone calls and text messages following intrusions at major American telecommunications companies blamed on Chinese hackers. Right now.

In written guidance released on Wednesday, the Cybersecurity and Infrastructure Security Agency said “individuals who are in senior government or senior political positions” should “immediately review and apply” a series of best practices around the use of mobile devices. The first recommendation: “Use only end-to-end encrypted communications.”

End-to-end encryption – a data protection technique that aims to make data unreadable by anyone except its sender and its recipient – is baked into various chat apps, including Meta Platforms’ WhatsApp, Apple’s iMessage, and the privacy-focused app Signal. Corporate offerings that allow end-to-end encryption also include Microsoft’s Teams and Zoom Communications’ online meetings.


Advertisement


Neither regular phone calls nor text messages are end-to-end encrypted, which means they can be monitored, either by telephone companies, law enforcement, or – potentially – hackers who’ve broken into the phone companies’ infrastructure.

That’s what happened in the case of the cyberspies dubbed “Salt Typhoon,” a group that U.S. officials have said is being run by the Chinese government.

Beijing routinely denies allegations of cyber espionage.

Speaking earlier this month, a senior U.S. official said that “at least” eight telecommunications and telecom infrastructure firms in the United States were compromised by the Salt Typhoon hackers and that “a large number of Americans’ metadata” had been stolen in the surveillance sweep.

Last week, Democratic Senator Ben Ray Lujan said the wave of intrusions “likely represents the largest telecommunications hack in our nation’s history” and it’s not clear that American officials have figured out how to defeat the hackers’ spy campaign.

Jeff Greene, CISA’s executive assistant director for cybersecurity, told reporters Wednesday that the investigation remains ongoing and various targeted agencies and people are at different stages of their response.

The Salt Typhoon compromise “is part of a broader pattern of PRC activity directed at critical infrastructure,” Greene said, referring to Chinese-linked cyber operations focused on utilities and other sensitive networks and tracked under the nickname “Volt Typhoon.”

“This is ongoing PRC activity that we need to both prepare for and defend against for the long term,” Greene said.

Communicating only via end-to-end encryption has long been a recommendation pushed by digital safety experts like those at the Electronic Frontier Foundation, whose senior staff technologist Cooper Quintin welcomed the guidance. Still, he said the idea that the government was steering its own officials away from the regular phone network was worrying.

Author

  • End Time Headlines

    End Time Headlines is a Ministry that provides News and Headlines from a "Prophetic Perspective" as well as weekly podcasts to inform and equip believers of the Signs and Seasons that we are living in today.

    View all posts