Ethical Hacking News
The FCC has issued a formal ruling that makes it clear to US telcos: they must secure their networks from foreign spies. This directive is part of the government's efforts to strengthen cybersecurity measures and prevent similar breaches in the future, following the recent Salt Typhoon operation.
The FCC has issued a formal ruling requiring telcos to secure their networks from foreign spies. The directive is a clarification of existing laws and regulations, including the CALEA, which requires wiretapping compliance with law enforcement requests. The recent Salt Typhoon operation highlighted the need for stronger cybersecurity measures after several major telcos were compromised. The breach allowed attackers to gather intelligence on FBI agents and compromised months' worth of their calls and text logs. Telcos must develop comprehensive cybersecurity plans, including supply chain risk management, effective controls, and annual certifications. The FCC has proposed updates to the CALEA law to require stronger cybersecurity measures and greater transparency about security practices.
The Federal Communications Commission (FCC) has issued a formal ruling that makes it clear to telecommunications carriers: they must secure their networks from foreign spies. This directive is not a new development, but rather a long-overdue clarification of the laws and regulations that have been in place for decades.
The Communications Assistance for Law Enforcement Act (CALEA), which was enacted in 1994, requires telcos to design their systems to comply with wiretapping requests from law enforcement. While this provision has been in place for over two decades, it has not been enforced as vigorously as it should have been. The recent breaches of US telco networks by Chinese spies, known as the Salt Typhoon operation, have brought attention to the need for stronger cybersecurity measures.
The Salt Typhoon operation was a sophisticated attack that compromised several major telcos, including AT&T and Verizon. The attackers were able to gain access to these companies' networks and use them to steal sensitive information, including customer data and communications records. This breach was particularly egregious because it allowed the attackers to geo-locate millions of subscribers, monitor their internet traffic, and record their phone calls.
The FBI has estimated that the Salt Typhoon operation compromised months' worth of its agents' calls and text logs. The attackers were able to use this information to gather intelligence on FBI agents themselves, highlighting the vulnerability of US law enforcement networks to cyber threats.
In response to the Salt Typhoon breach, the FCC has issued a formal ruling that makes it clear that telcos have a statutory obligation to secure their networks from foreign spies. This ruling is effective immediately and requires telcos to develop and implement comprehensive cybersecurity and supply chain risk management plans.
These plans must identify potential cyber threats, detail the controls in place or planned to mitigate these risks, and explain how these controls are effectively applied to operations. The FCC has also proposed a new rule that would require telcos to submit an annual certification to the commission confirming that their cybersecurity plans have been created, updated, and implemented.
The proposed plan is designed to ensure that telcos take responsibility for securing their networks and preventing similar breaches in the future. However, some experts have expressed concerns that this approach may not be sufficient on its own, and that more stringent measures may be needed to prevent a repeat of the Salt Typhoon breach.
The FCC has also taken steps to address the root cause of the breach, which was a result of weaknesses in the CALEA law. The commission has called for updates to the law to require telcos to implement stronger cybersecurity measures and provide greater transparency about their security practices.
In addition to the new directive, the US Treasury Department has imposed sanctions on several individuals and companies suspected of being involved in the Salt Typhoon operation. These sanctions are aimed at disrupting the activities of Chinese hackers and cyber spies who have been using the US financial system to carry out their operations.
The recent breaches of US telco networks by Chinese spies have brought attention to the growing threat of cyber espionage. As more and more sensitive information is transmitted over the internet, the risk of data breaches and cybersecurity attacks increases. The FCC's new directive and other steps being taken by the government aim to strengthen cybersecurity measures and prevent similar breaches in the future.
In conclusion, the FCC's new directive on securing US telco networks from foreign spies marks a significant step forward in addressing the growing threat of cyber espionage. While more work needs to be done to strengthen cybersecurity measures and update laws to reflect the changing landscape of global security threats, this ruling represents an important milestone in the ongoing effort to protect the nation's critical infrastructure.
Related Information:
https://go.theregister.com/feed/www.theregister.com/2025/01/17/fcc_telcos_calea/
https://www.theregister.com/2025/01/17/fcc_telcos_calea/
https://www.cybersecuritydive.com/news/fcc-telecom-cyber-rules/737689/
Published: Fri Jan 17 19:15:42 2025 by llama3.2 3B Q4_K_M
