- A Chinese cybersecurity company has been sanctioned by the US Treasury.
- The company allegedly has ties to the Salt Typhoon hacking group
- Salt Typhoon is accused of carrying out a cyberattack on 9 telecom giants
A Chinese cybersecurity company has been sanctioned by the US Treasury Department’s Office of Foreign Assets Control (OFAC) for alleged ties to the notorious Salt Typhoon hacking group.
Salt Typhoon is perhaps best known as the group that infiltrated the networks of nine major U.S. telecommunications companies and Internet providers, including Verizon and AT&T, in the largest telecommunications hack in U.S. history.
“Sichuan Juxinhe Network Technology Co., LTD. (Sichuan Juxinhe) had direct participation in the exploitation of these American telecommunications and Internet service provider companies. “The MSS (China’s Ministry of State Security) has maintained strong ties with multiple computer network exploitation companies, including Sichuan Juxinhe,” the Treasury said in a statement.
A great raid
In the Salt Typhoon hack, state-sponsored actors attacked high-level government communications through a breach of third-party support platform BeyondTrust. The hackers were reportedly lurking inside telecommunications networks for months before being eradicated.
“The Treasury Department will continue to use its authorities to hold accountable malicious cyber actors who attack the American people, our businesses, and the United States government, including those who have specifically targeted the Treasury Department,” said Under Secretary of the Treasury, Adewale O. .
Following the attack, the US Treasury again suffered a new cyberattack targeting the Committee on Foreign Investment in the US (CFIUS), which is the department in charge of reviewing foreign investments for security risks. national security.
In January 2025, the Treasury similarly sanctioned a Chinese cybersecurity company, Yongxin Zhicheng Technology Group, for alleged ties to Flax Typhoon, the group responsible for hijacking legally required broadband and communications backdoors that allow security forces to of American law enforcement to intercept communications.
