Chinese Hackers May Have Stolen Data From Nearly All Americans, Officials Say

A shocking revelation has emerged about a massive cyberattack operation by a China-aligned hacker group called Salt Typhoon, which may have stolen data from nearly every American, according to FBI officials and other anonymous sources.

The campaign, described as years-long in scope, targeted over 80 nations and could have stolen almost every U.S. citizen's information. This alarming claim comes at a time when Chinese state-sponsored cyber threat actors are targeting global networks at unprecedented levels, seeking to maintain persistent, long-term access to networks.

Millions of Americans May Have Been Affected

FBI Assistant Director Michael Machtinger described the operation as a significant threat to national security. In an interview with The Register, he stated that "there's a good chance this espionage campaign has stolen information from nearly every American." This means that millions of people residing in the U.S. may have been affected by the hacking operation.

A Long-Lasting Campaign

The Salt Typhoon campaign is believed to be one of the most extensive cyberattacks ever carried out, with experts warning that it could have stolen sensitive information from foreign telecommunications and internet service providers, as well as lodging and transportation companies. The campaign's scope was so vast that it raised concerns about the potential for Chinese intelligence services to identify and track their targets' communications and movements around the world.

Indiscriminate Targeting of Critical Infrastructure

FBI Assistant Director Brett Leatherman warned that these actors have moved beyond standard spying, targeting major communication carriers to secure call records and law enforcement orders to construct a map of calls and individuals suspected of being spies. This level of access to critical infrastructure across the globe is unprecedented and has struck fear into the hearts of cybersecurity experts.

Prominent Politicians Fall Victim

Not only U.S. citizens but also prominent politicians have fallen victim to these hacks. President Donald Trump and Vice President JD Vance were both reportedly victims of similar hacking during the 2024 campaign, highlighting the widespread nature of this cyberattack.

The Role of Advanced Persistent Threat Actors

The hacking is allegedly being carried out by hacking groups known as "Advanced Persistent Threat (APT) actors," with Salt Typhoon being named by the advisory. These groups have been linked to at least three private Chinese companies that provide cyber-related products and services to China's intelligence services.

Reducing the Threat

The Cybersecurity and Infrastructure Security Agency has released a joint advisory, offering guidance on what methods organizations can enact to reduce the threat. Acting Director of the agency Madhu Gottumukkala stated that "by exposing the tactics used by [Chinese] state-sponsored actors and providing actionable guidance, we are helping organizations strengthen their defenses and protect the systems that underpin our national and economic security."

No Evidence of CALEA as Entry Point

An FBI spokesperson verified Leatherman's statements and assured the Daily Caller that through their investigation, "the FBI has no evidence that [Communications Assistance for Law Enforcement Act] was the intrusion vector," or entry point for hackers to breach the network infrastructure.