« Reply #373 on: December 13, 2024, 06:46:49 AM »
The US Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) jointly announced that the “Salt Typhoon” breach that infiltrated several telecom providers as well as both the Republican and Democratic presidential campaigns remains unresolved and was greater in scope than officials had previously known. President Biden’s Deputy National Security Adviser for Cyber and Emerging Technology Anne Neuberger said at least eight US telecom providers had been breached, four more than previously known.[60] Moreover, investigators now understand that Salt Typhoon has exploited vulnerabilities and penetrated systems in at least a “couple dozen” countries.[61] The agencies stated that although they had not announced the breach until September this year, Microsoft first detected it in late spring or early summer and likely tipped off the relevant telecom providers.[62] ISW has previously reported that Salt Typhoon could be a campaign by APT40, a highly sophisticated group associated with the Hainan branch of the PRC Ministry of State Security (MSS).[63]
Although officials from the respective agencies have not observed new activity by Salt Typhoon since they last put out an announcement about it on November 13th, they maintained the possibility that the threat group has decided to lie low with the intention to reemerge after the investigation passes.[64] Officials identified three main target types: an unspecified number of victims in the Washington DC area whose call records were taken from telecom companies, a limited group of individuals with political or government connections—each of whom the FBI has notified, and Communications Assistance for Law Enforcement (CALEA) statute program court orders that could contain Foreign Intelligence Surveillance Act (FISA) investigation sources.[65] The official neither confirmed nor denied that Salt Typhoon hackers had uncovered FISA sources, which would pose a dire risk for the latter while helping PRC informants avoid detection.[66] CISA’s Executive Assistant Director Jeff Greene also noted that the extent and method in which each victim was compromised varies significantly, making expulsion of Salt Typhoon all the more complicated.[67] U.S. Senator Mark Warner (D-Virginia) cautioned that eliminating PRC hackers from US networks could necessitate physically replacing thousands of obsolete routers and switches.[68]
CISA and several partnering Five Eyes agencies jointly released an alert warning that PRC threat actors had infiltrated the networks of major telecom providers and a set of guidelines for hardening their infrastructure. Notably, they did not include British agencies, which Greene said operated on “different considerations and timelines.”[69] Greene also recommended that Americans use encrypted messaging apps over SMS to reduce Salt Typhoon’s ability to intercept data in transit.[70]
Telecom providers are among the most valuable targets for a nation state actor interested in espionage to hack. They offer unparalleled visibility into who the providers work with and their customers’ data and metadata, especially where messages are unencrypted.[71] Salt Typhoon has managed to exploit a vast array of outdated network of routers and switches built decades ago by many companies that no longer exist.[72]
The PRC’s export controls on critical minerals will inhibit the United States’ access to materials that are essential to economic and national security. The PRC prohibited exports to the United States of gallium, germanium, antimony, and superhard materials on December 3.[73] The PRC also implemented stricter controls on exports of graphite to the United States.
The US Department of Interior designated antimony, gallium, germanium, and graphite as critical minerals to the economy and national security in 2018.[74] Antimony has a variety of military applications, including night vision goggles, strengthening shielding materials, explosives, flares, nuclear weapons, and infrared sensors.[75] Gallium and germanium have applications in aerospace, military, and telecommunications due to their use in the manufacture of optoelectronic devices and fundamental inputs such as integrated circuits, semiconductors, and transistors.[76] Graphite has extensive industrial and military applications, including the manufacture of missile guidance systems, artillery components, firearms, and military aircraft.[77] Superhard materials, such as diamond, are used for their hardness and durability for precision manufacturing of goods such as semiconductors and electronics.[78]
The PRC is a top producer and source of imports for all of the critical minerals that are subject to new restrictions. The United States has not mined gallium since 1987, antimony since 2001, graphite since the 1950s, and produces minimal germanium.[79] The United States’ annual demand for some of the minerals, such as antimony, exceeds any other single country’s mine production.[80]
The United States’ stockpile of antimony amounted to 1,100 tons in 2023, compared to its consumption of 23,000 tons, according to the Center for Strategic and International Studies.[81] A Department of Defense spokesperson stated in July 2023 that the United States has a strategic stockpile of germanium but did not specify the size. The spokesperson stated that the United States does not have a stockpile of gallium.[82] The United States also does not have a stockpile of graphite.[83]
The export restrictions follow a pattern of the PRC’s increasing securitization of critical minerals. The PRC previously implemented export controls for gallium and germanium in August 2023, high-grade graphite in December 2023, and antimony in September 2024.[84] A PRC Ministry of Commerce (MOFCOM) spokesperson accused the United States on December 3 of “politicizing and weaponizing economic, trade, and technological issues, abusing export control measures, and arbitrarily restricting the export of relevant products to China.”[85] The PRC announced the measures a day after the United States Bureau of Industry and Security (BIS) implemented new export control measures to restrict the PRC’s ability to produce semiconductors.[86]
https://www.understandingwar.org/backgrounder/china-taiwan-weekly-update-december-12-2024
« Last Edit: December 13, 2024, 06:54:38 AM by BridgeTroll »
Logged
In a boat at sea one of the men began to bore a hole in the bottom of the boat. On being remonstrating with, he answered, "I am only boring under my own seat." "Yes," said his companions, "but when the sea rushes in we shall all be drowned with you."