Ethical Hacking News
Despite growing concerns over the rollback of stricter cybersecurity rules for U.S. telecom carriers following the Salt Typhoon breach, the FCC has now deemed the prior rule inflexible and withdrawn it. Critics argue that this decision leaves Americans less protected than before, while ongoing threats from state-sponsored actors underscore the need for robust security measures.
The FCC has rolled back a previous ruling requiring telecom carriers to implement stricter cybersecurity measures after the Salt Typhoon breach.The rollback of the rule was intended to address the theft of sensitive information from government officials by the Chinese threat group.The original ruling included more stringent security measures, but the FCC deemed them inflexible and retracting them following lobbying efforts from telecom firms.Senator Maria Cantwell had initially expressed concerns over the proposed rules being too cumbersome, but later acknowledged that stronger security measures were necessary to protect against similar threats.The FCC's new approach has been criticized for not providing a comprehensive cybersecurity strategy and leaving Americans less protected than before.Experts and lawmakers have emphasized the need for stronger security protocols in telecommunications networks due to the evolving threat landscape and ongoing concerns over state-sponsored hacking campaigns.
The Federal Communications Commission (FCC) has recently rolled back a previous ruling that required U.S. telecom carriers to implement stricter cybersecurity measures following the massive hack from the Chinese threat group known as Salt Typhoon. The decision, made in January 2025 and taking effect immediately under the Communications Assistance for Law Enforcement Act (CALEA), was intended to address the breach of multiple carriers by the Salt Typhoon group, which resulted in the theft of sensitive information up to the level of government officials.
The original ruling, part of Section 105 of the CALEA, included a Notice of Proposed Rulemaking (NPRM) for telecom companies to enhance their cybersecurity posture. The NPRM called for telecom providers to implement more stringent security measures, including the use of robust threat intelligence and incident response protocols. The goal was to reduce risks to national security and protect private communications from unauthorized access.
However, following lobbying efforts from telecommunications firms, the FCC has now deemed the prior rule inflexible and retracting it. Senator Maria Cantwell had initially expressed concerns over the proposed rules being too cumbersome for telecom operations, but after the Salt Typhoon breach, the agency acknowledged that stronger security measures were necessary to protect against similar threats.
In a statement released by Commissioner Anna M. Gomez, who was one of only two commissioners voting against the decision, expressed frustration about relying on telecom providers for self-evaluating their cybersecurity stance and effectiveness of protective measures. She argued that the proposed rollback was not a comprehensive cybersecurity strategy but merely a hope and dream to leave Americans less protected than they were before the Salt Typhoon breach.
Furthermore, Gomez warned that similar reconnaissance and exploitation attempts are ongoing today, with telecommunications networks remaining high-value targets for foreign adversaries. This raises concerns about the effectiveness of the FCC's new approach in safeguarding national security.
The FCC has also recognized the importance of telecommunications networks to U.S. federal government operations for court-authorized network wiretapping requests, as well as the risks associated with these breaches. In light of the ongoing threat landscape, experts and lawmakers alike have criticized the decision to roll back the stricter cybersecurity rules, emphasizing that such measures were essential in enhancing protection against state-sponsored hacking.
In response to growing concerns over the rollback, several senators, including Maria Cantwell and Gary Peters, sent letters to the FCC urging the agency to maintain its cybersecurity safeguards. These efforts reflect a broader recognition of the need for stronger security protocols in telecommunications networks, particularly given the evolving threat landscape and ongoing concerns over state-sponsored hacking campaigns.
In light of these developments, it is essential for policymakers and regulators to reassess their approach to addressing cybersecurity risks within telecommunications networks. Stronger measures are required to safeguard against increasingly sophisticated threats from hostile actors, including foreign governments.
Related Information:
https://www.ethicalhackingnews.com/articles/FCC-Rolls-Back-Cybersecurity-Rules-for-Telecoms-Amid-State-Hacking-Risks-ehn.shtml
https://www.bleepingcomputer.com/news/security/fcc-rolls-back-cybersecurity-rules-for-telcos-despite-state-hacking-risks/
Published: Fri Nov 21 10:21:34 2025 by llama3.2 3B Q4_K_M
