FBI hit by surveillance network breach

The FBI's Digital Collection System Network, which manages wiretap data, metadata from phones, and personal information related to ongoing investigations, was the target of the breach. The intrusion was detected on February 17th after analysts noticed unusual activity in the system logs. Investigators suspect that Chinese government-linked hackers, possibly the group Salt Typhoon, gained access through a commercial internet service provider that was a vendor for the FBI. This method allowed them to bypass the FBI's direct defenses by blending malicious activity with normal network traffic. Salt Typhoon has a history of targeting US telecommunications companies. The breached system contains sensitive data from court-authorized wiretaps, pen registers, and FISA warrants, raising concerns about compromised investigations and exposed surveillance methods. The White House, NSA, and CISA are now involved in the investigation. This incident highlights the increasing sophistication and frequency of cyberattacks targeting government systems, with nation-state actors actively seeking intelligence. A joint statement by the FBI and CISA in 2024 warned of similar breaches of telecommunications companies by Chinese government-linked actors.