Chinese hackers breach U.S. internet firms via startup, Lumen reports

Lumen Technologies has disclosed that four major U.S. internet firms have been compromised by a sophisticated cyberattack linked to a Chinese hacking group. The breach, orchestrated through a U.S.-based startup, has reignited concerns over the security of critical infrastructure in the face of escalating cyber threats from state-sponsored actors.

The attackers, identified as part of the notorious Volt Typhoon group, reportedly infiltrated the systems of the targeted companies using advanced malware. Lumen, a leading telecommunications firm, has been closely monitoring the situation and confirmed the breach after conducting a thorough investigation. The hackers exploited vulnerabilities within the startup’s software to gain unauthorized access to the networks of these internet giants, enabling them to collect sensitive data and potentially disrupt operations.

The U.S. government has long accused China of engaging in cyber espionage, targeting key infrastructure sectors, including telecommunications, energy, and transportation. This latest breach underscores the growing sophistication and persistence of such threats. The Volt Typhoon group, believed to operate under the direction of Chinese state entities, has a history of targeting entities linked to U.S. critical infrastructure, with the intention of gathering intelligence and laying the groundwork for future cyber operations.

Lumen has not disclosed the identities of the compromised firms but emphasized that it is working closely with federal authorities to mitigate the damage and prevent further intrusions. The incident has prompted renewed calls for enhanced cybersecurity measures, particularly in sectors that form the backbone of national security.

The breach highlights the vulnerability of even the most secure networks to state-sponsored cyberattacks, raising questions about the adequacy of existing defenses against such sophisticated threats. As investigations continue, the U.S. government is expected to take further action to counter this ongoing cyber espionage campaign.