Top Canadian telecom companies may have been affected by Chinese salt tymphonhackers
- Advertisement -
Related Posts
- Advertisement -
- Canadian telecom companies are affected with a cyber attack
- Chinese threat actor Salt Typhoon is probably behind the attacks
- Hackers operated an existing Cisco error to gain access
The Canadian Center for Cyber Security, in addition to the FBI, has confirmed that hackers could gain access to three network devices that are registered with a Canadian telecommunication company.
“The cyber center is aware of malignant cyber activities that are currently focused Stelling.
This is not an unknown territory for salt typhoon, such as The group compromised at least eight American telco giants Earlier in 2025, with the hackers reportedly access to these networks for months in a massive surveillance campaign that affects dozens of countries and aimed at various high-level officials.
A long -term campaign
The hackers, apparently used a high Cisco error with high seriousness, followed as CVE-2023-20198 to gain access, allowing them to collect current configuration files from the compromised devices, which were subsequently changed to create a GRE tunnel, allowing traffic collection to be connected.
A patch for this error has been available since October 2023, which indicates a serious security overview in the Canadian telecomcyber security.
The threat factors have probably focused on these devices to “collect information from the victim’s internal network, or to use the victim’s device to make the compromise of further victims possible,” which could explain how Salt Typhoon was so successful in the compromise of large organizations.
“Although our understanding of this activity continues to evolve, we assess that PRC cyber factors will almost certainly continue to focus on Canadian organizations as part of this espionage campaign, including telecommunications service providers and their customers, in the next two years,” the statement confirms.
Telecommunication companies are a high priority for threat factors because they store large amounts of customer data and have useful intelligence value for cyber-spionage campaigns.
Via: Arstechnica
Maybe you like it too
- Advertisement -
