Salt Typhoon
-
Australia warns of ongoing BADCANDY attacks on unpatched Cisco IOS XE devices
The Australian Signals Directorate warned of ongoing attacks using a Lua-based web shell called BADCANDY that exploits CVE-2023-20198 in unpatched Cisco IOS XE devices, estimated to have affected about 400 devices in Australia since July 2025 and urging patching and hardening measures.
-
Ribbon Communications says nation-state hackers breached its network; initial access traced to December 2024
Ribbon Communications disclosed a nation-state-associated breach of its IT network, detected in September 2025 with preliminary evidence of initial access in December 2024. The company is working with outside cybersecurity experts and federal law enforcement, has found customer files on two laptops outside its main network, and said it has not found evidence of theft…
-
China-linked Salt Typhoon exploited Citrix to target European telecom, Darktrace says
Security firm Darktrace reported that a European telecommunications organisation was targeted in July 2025 by a China-linked group known as Salt Typhoon, which exploited a Citrix NetScaler Gateway to gain access and deployed Snappybee via DLL side-loading; the activity was detected and remediated and the victim was not named.
-
Orange Telecom Confirms Cyberattack Disrupting Services for Customers
Orange, a major telecommunications provider, reported a cyberattack affecting French customers, prompting immediate isolation of impacted systems. As the investigation continues, no evidence of data theft has been found, but disruptions to services remain.
-
Chinese Hackers Breach U.S. National Guard Network, Compromise Sensitive Data
The Chinese hacking group Salt Typhoon has breached a U.S. Army National Guard network, compromising sensitive data and raising alarms over national cybersecurity.
-
China-Linked Cyber Espionage Campaign Targets Global Telecoms
A cyber espionage campaign linked to China is targeting global telecommunications providers, exploiting critical vulnerabilities in Cisco software to gain unauthorized access to sensitive information. Authorities are warning that the implications of these attacks extend beyond the telecommunications sector.
-
Viasat Falls Victim to Chinese Salt Typhoon Hackers Amid Ongoing Cyber Threats
Satellite communications company Viasat has been targeted by the cyber-espionage group Salt Typhoon. The company is collaborating with federal authorities to investigate the breach, which has raised concerns about ongoing cybersecurity threats faced by telecom providers.
