US government agency warns workers of possible Chinese cellphone hacks

US federal agency issues warning against cellphone usage for work calls
Warning comes in the aftermath of the breach of several US telecoms providers
Attack has been attributed to Salt Typhoon, who also breached a number of ISPs

The Consumer Financial Protection Bureau (CFPB) has issued a warning to its workers that personal mobile devices should not be used for sensitive work calls due to the recent Chinese probing of US telecommunications networks.

The email sent by the CFPB acknowledges that “While there is no evidence that CFPB has been targeted by this unauthorized access, I ask for your compliance with these directives so we reduce the risk that we will be compromised.”

The warning also extends to contractors working for the CFB, and highlights the scale of the attack against US telecoms by the China-related group tracked as Salt Typhoon.

Telecoms attack worries federal agencies

There is no indication on exactly what data may have been exfiltrated from the telecoms providers, but initial reports suggest that call logs, unencrypted texts and some phone audio was exfiltrated by the attackers, including audio from a number of high-profile individuals related to the Harris and Trump campaigns alongside potentially hundreds of thousands of US citizens.

US officials are also cutting down on their phone use in response to the hack, with a former US official who spoke to the Wall Street Journal (WSJ) stating, “There is a general reticence to use their cellphones.”

Salt Typhoon also managed to breach several internet service providers (ISP) in early October, including Verizon, AT&T, and Lumen, with the attackers also gaining access to a lawful wiretap used for surveillance by US authorities.

As the WSJ notes, a federal agency issuing a specific warning against the use of personal mobile phones indicates the depth and breadth of the attacks.

“Do NOT conduct CFPB work using mobile voice calls or text messages,” the CFPB email recommended. The email also stated that staff should only use authorized online collaboration platforms such as Cisco WebEx and Microsoft Teams to make calls and send messages that contain non-public data.

https://cdn.mos.cms.futurecdn.net/u5BCk8KjuS7e2k4L6HFTdY-1200-80.jpg

Source link
benedict.collins@futurenet.com (Benedict Collins)

This super-cheap HP Victus 15 gaming laptop just dropped to its lowest price yet

Philips Hue vs Govee: choose the right smart lights for you

How to watch England vs Australia live stream Autumn Nations

12 Steps to Address Australia’s Skills Shortage

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

People are driving through flames to escape this California wildfire

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

‘Heathers’ is still the best dark comedy about high school hell

Trump vs. Harris: How the election will affect EV adoption

Lumwana’s Super Pit Expansion Officially Launched By Investing.com

How Biden could use a 1947 law to suspend the dockworkers’ strike

Why your Roth IRA conversions could have ‘unintended’ tax consequences

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

US government agency warns workers of possible Chinese cellphone hacks

This super-cheap HP Victus 15 gaming laptop just dropped to its lowest price yet

Philips Hue vs Govee: choose the right smart lights for you

How to watch England vs Australia live stream Autumn Nations

12 Steps to Address Australia’s Skills Shortage

Leave a reply Cancel reply