FBI Warns of Chinese Text Message Interception, Urges Encrypted Apps After ‘Salt Typhoon’ Attack

The Federal Bureau of Investigation has issued an advisory to American citizens regarding potential text message interception by foreign hackers, following a significant cyberattack dubbed “Salt Typhoon”. The attack has reportedly compromised major telecommunications providers including AT&T, Verizon, and Lumen Technologies, marking one of the most extensive telecommunications breaches in recent years.

According to federal officials, the cyber espionage campaign has enabled hackers affiliated with China to target specific individuals and organizations for intelligence gathering purposes. The compromise affects both iPhone and Android devices, with officials noting that even encrypted services like Apple iMessages and Google Messages may not provide complete protection against interception when network infrastructure itself is compromised.

The FBI and Cybersecurity and Infrastructure Security Agency (CISA) recommend that users adopt encrypted messaging applications such as WhatsApp and Signal for more secure communications. These platforms offer end-to-end encryption, which creates a secure channel between sender and receiver devices, ensuring that messages remain encrypted throughout transmission and cannot be decrypted even if intercepted at the network level.

“Our suggestion, which we’ve communicated internally, isn’t new here: encryption is your friend, whether for text messages or if you have the ability to use encrypted voice communication,” said Jeff Greene, Executive Assistant Director for Cybersecurity at CISA. “Even if the adversary intercepts the data, if it’s encrypted, it will be useless.”

Additional security recommendations include using mobile devices that receive regular operating system updates, implementing encryption protocols, and enabling phishing-resistant two-factor authentication for personal accounts. This guidance aligns with CISA’s ongoing efforts to strengthen public-private cybersecurity partnerships and enhance national digital infrastructure protection.

The Salt Typhoon attack represents an escalation in sophisticated state-sponsored cyber operations targeting telecommunications infrastructure, highlighting the growing importance of end-to-end encryption in protecting sensitive communications. The incident follows several other major telecommunications breaches in recent years, though its scale and targeting capabilities make it particularly concerning to security experts.

Federal authorities have established multiple channels for reporting suspicious activity, including local FBI field offices, the FBI’s Internet Crime Complaint Center (IC3), and CISA’s dedicated hotline at 1-844-729-2472. Organizations can also submit reports via email to report@cisa.dhs.gov or through CISA’s online reporting portal.

Sources: GovTech, CBS News, Merca20

–

December 11, 2024 – by Ali Nassar-Smith