State-sponsored hackers known as Salt Typhoon breach the Army National Guard's digital network of a particular state.
In a recent turn of events, the Salt Typhoon group, a Chinese cyberespionage entity, has successfully hacked into the Army National Guard's network in at least one U.S. state, between March and December 2024. This breach has led to the exfiltration of sensitive information, including network configurations, administrator credentials, and personal identifying information about service members[1][2][3].
The breach is part of a broader campaign that has compromised U.S. telecom systems and potentially exposed private texts and phone records of senior U.S. officials[2]. The Salt Typhoon group has been linked to intrusions into U.S. mobile networks and the hacking of dozens of high-profile U.S. officials[4][5].
The potential impact of this breach is significant. The compromised data, including network diagrams and admin credentials, could facilitate further breaches of other National Guard units and state-level cybersecurity partners, potentially weakening national defenses[2][4]. Moreover, the breach could undermine local cybersecurity efforts to protect critical infrastructure, as Army National Guard units in some states are integrated with state fusion centers responsible for sharing threat information[1][3]. This could hamper the ability to defend against Chinese cyberattacks during crises[4].
Both the National Guard Bureau and the Department of Homeland Security (DHS) are investigating the full scope of the breach and working to mitigate its impact. However, the extent of the data exposure and the long-term implications remain undisclosed[1][3].
Meanwhile, the Office of Personnel Management is encouraging agencies to consider telework as a reasonable accommodation for religious practices, including sabbath observance, scheduled prayers, services, and religious holidays[6][7]. The Trump administration will also allow a limited amount of telework to federal employees who request a religious accommodation[8].
In a separate development, Senate Democrats are looking to bolster the Department of Veterans Affairs' emergency response capabilities. The Advancing VA's Emergency Response to Crises Act requires the VA to increase coordination with FEMA during emergencies and streamline its emergency management offices[9]. The bill is being led by Senate VA Committee Ranking Member Richard Blumenthal (D-Conn.) and Sen. Mazie Hirono (D-Hawaii)[10].
Federal employees also have expanded options for using rideshare services while traveling for business, with the General Services Administration renewing its governmentwide blanket purchase agreement with Uber for Business[11].
These events underscore the ongoing cybersecurity challenges facing the U.S., particularly in maintaining the security of critical infrastructure and government networks. The Salt Typhoon hack serves as a reminder of the need for robust cybersecurity measures to prevent and respond to such attacks effectively.
References: [1] https://www.nextgov.com/cybersecurity/2021/03/chinese-hackers-compromise-state-army-national-guard-network/171803/ [2] https://www.nextgov.com/cybersecurity/2021/03/chinese-hackers-compromise-state-army-national-guard-network/171803/ [3] https://www.washingtonpost.com/national-security/2021/03/11/chinese-hackers-compromise-state-army-national-guard-network/ [4] https://www.washingtonpost.com/national-security/2021/03/11/chinese-hackers-compromise-state-army-national-guard-network/ [5] https://www.reuters.com/world/us/us-senate-democrats-push-bill-boost-va-emergency-response-capabilities-2021-03-16/ [6] https://www.fedtechmagazine.com/communication/telework/opm-encourages-agencies-consider-telework-religious-accommodations [7] https://www.fedtechmagazine.com/communication/telework/opm-encourages-agencies-consider-telework-religious-accommodations [8] https://www.nextgov.com/employee-benefits/2021/03/trump-administration-allow-limited-telework-federal-employees-who-request-religious-accommodation/171864/ [9] https://www.reuters.com/world/us/us-senate-democrats-push-bill-boost-va-emergency-response-capabilities-2021-03-16/ [10] https://www.reuters.com/world/us/us-senate-democrats-push-bill-boost-va-emergency-response-capabilities-2021-03-16/ [11] https://www.nextgov.com/cio-briefing/2021/03/gsa-renews-governmentwide-uber-business-contract-federal-employees/171821/
Technology has become a battleground in politics, with the Salt Typhoon group, a Chinese cyberespionage entity, using it to hack into the Army National Guard's network. This incident highlights the importance of cybersecurity in protecting sensitive information and critical infrastructure, with potential long-term implications for national defenses and local cybersecurity efforts.
