Salt Typhoon
Coverage of Salt Typhoon in the Nexus archive.
- U.K. spy powers draw U.S. scrutiny over alleged Apple encryption backdoor demand
U.K. surveillance laws face U.S. scrutiny over potential encryption backdoor demands on companies like Apple, raising concerns about privacy, national security, and international trust in intelligence partnerships. Critics warn such measures could create vulnerabilities exploited by adversarial nations like China, Russia, and Iran.
- ShinyHunters adds Charter to trophy shelf after 4.9M customer records leak
ShinyHunters leaked 4.9 million Charter Communications customer records, including names, email addresses, phone numbers, and physical addresses, after the company allegedly refused their extortion demands. Charter confirmed an investigation but claimed no sensitive data was exfiltrated, while the breach is part of a broader pattern of ShinyHunters targeting organizations, including a recent Carnival Corporation data theft.
- Lawmakers from both parties say CISA cuts have gone too far
Bipartisan lawmakers Rep. Don Bacon (R-Neb.) and Rep. James Walkinshaw (D-Va.) expressed concern that budget cuts to the Cybersecurity and Infrastructure Security Agency (CISA) have compromised its ability to defend civilian networks against foreign cyber threats, particularly from China. Both emphasized that most critical infrastructure entities cannot defend themselves against nation-state adversaries without federal support. President Trump's proposed fiscal 2027 budget would cut CISA by $707 million.
- Machine Overmatch: What Salt Typhoon Reveals About China’s Data-Centric Intelligence Strategy
Salt Typhoon's multi-year cyber campaigns against U.S. telecommunications networks reveal China's data-centric intelligence strategy focused on collecting and analyzing vast amounts of digital information at scale. This approach represents a shift from traditional espionage methods and poses a significant intelligence challenge to the United States. The article contrasts China's exhaustive data collection model with America's historical reliance on narrowly sourced, high-confidence intelligence.
- CISA wants critical infrastructure to operate ‘weeks to months’ in isolation during conflict
The Cybersecurity and Infrastructure Security Agency is urging critical infrastructure owners to plan for delivering essential services under emergency conditions, potentially for months at a time, due to threats from state-sponsored hackers. The agency is working with the private sector to protect operational technology from attacks. The initiative, known as CI Fortify, aims to create plans for safe operations while isolated from IT networks and third-party tools.