Security researchers say that the group of piracy related to the Chinese government, Salt Tefip, continues to settle the wireless and wireless communications providers, despite the recent sanctions imposed by the US government on the group.
In a joint report with Techcrunch, Intelligence Recorded Future said it has noticed Salt Typhoon – the company tracked as “Redmike” – penetrates five communications companies between December 2024 and January 2025.
Solt Tefive occupied the headlines last September after it was revealed that the group had infiltrated many phone and Internet giants in the United States, including AT & T and Verizon, to reach private communications for senior US government officials and political numbers.
Salt Tefip has also hacked the systems used by law enforcement agencies to collect customer data that was licensed to the court, which may reach sensitive data such as Chinese goals of American monitoring.
The registered future refused to name the latest victims of Salt TV, but he said that they include a US -based affiliate for a communications provider in the prominent UK; Internet service provider, telecom companies in Italy, South Africa and Thailand.
The infiltrators also conducted the poll-practicing and collecting information about the system-on multiple infrastructure assets managed by the Myanmar Communications provider, Mytel, according to the registered future.
To carry out these attacks, SALT TYPHON took advantage of weaknesses (tracked as CVE-20232-0198 and Cve-2023-20273) to settle the non-distorted Cisco devices that operate the Cisco iOS XE program. The piracy group has tried to give up more than 1,000 CISCO devices worldwide, with a special focus on devices associated with the networks of wireless and wireless communications.
The registered future said it also noticed the SALT Typhoon -related targeting devices, including the University of California and Utta Tech. The researchers said that the piracy group “may have targeted these universities to reach research in the fields related to communications, engineering and technology.”
The US government has imposed the group -related companies. In January, the US Treasury-which was targeted by Chinese government infiltrators recently-said that it was punished for the Chinese-based cyber security company known as the technology of Sichuan Goxsin, which says it is directly linked to Salphoon.
The registered future researchers say despite this procedure, it expects Solt Hurricane to continue targeting communications providers in the United States and other places.
