CoreTechDaily

US Congressional Staff Emails Compromised in Salt Typhoon Cyberattack

Emails of staff members from key US House committees were reportedly hacked by the Salt Typhoon group, a state-sponsored Chinese threat actor.

Published Jan 8, 2026
Tags:Salt Typhooncybersecurityemail breachChina
US Congressional Staff Emails Compromised in Salt Typhoon Cyberattack
  • Salt Typhoon allegedly compromised emails of US House committee staffers on China, foreign affairs, and defense
  • Scope of intrusion remains unclear; FBI and White House have not commented publicly
  • Group is part of China’s “Typhoon” nexus, known for telecom breaches

Salt Typhoon, a notorious Chinese state-sponsored hacking group recognized for its attacks on Western telecommunications companies, has reportedly been found infiltrating Western communications once again.

Recent reports indicate that they compromised emails belonging to staff members of influential committees in the US House of Representatives. According to the Financial Times, the attackers accessed email systems utilized by staffers on the House China committee.

Additionally, aides on panels related to foreign affairs, intelligence, and the armed forces were also targeted, although specific names have not been disclosed.

Who are Salt Typhoon?

The extent of the breach and how deeply the attackers penetrated the systems remains uncertain. It is unclear whether they accessed emails of elected officials or only those of their staff.

As of now, the FBI and the White House have not issued any public statements regarding the incident, while Liu Pengyu, a spokesperson for the Chinese Embassy, dismissed the claims as “unfounded speculation and accusations.”

Salt Typhoon is part of a broader network of Chinese state-sponsored groups known as “Typhoon,” which includes Brass Typhoon, Volt Typhoon, and Flax Typhoon. These groups are involved in cyber-espionage, data theft, and maintaining persistent access to critical infrastructure.

Last October, cybersecurity firm Darktrace reported that Salt Typhoon was targeting communications networks in Europe. Prior to that, they were linked to breaches affecting at least eight US telecommunications companies, including T-Mobile, Verizon, AT&T, and Lumen Technologies. Officials noted that Salt Typhoon's victims span numerous countries, employing stealthy techniques such as DLL sideloading and zero-day exploits.

Whenever similar incidents arise, Chinese officials vehemently deny the allegations and often accuse the US of being the world's biggest cyberbully.

Via Financial Times

Related Posts

Asus Launches NUC 16 Pro: Aiming for the Fastest Mini PC with Panther Lake Technology

Jan 10, 2026

Asus Launches NUC 16 Pro: Aiming for the Fastest Mini PC with Panther Lake Technology

The Panther Lake-based Asus NUC 16 Pro combines impressive integrated graphics with top-tier AI capabilities, targeting creators and developers.

Nvidia's Rubin DGX SuperPOD: A New Era of AI Computing with 28.8 Exaflops

Jan 9, 2026

Nvidia's Rubin DGX SuperPOD: A New Era of AI Computing with 28.8 Exaflops

Nvidia's Rubin DGX SuperPOD achieves 28.8 Exaflops using 576 GPUs, merging advanced compute, memory, and software to compete with Huawei's SuperPOD.

Acer Unveils Veriton RA100 Mini PC with Ryzen AI Max+ 395 for Creators

Jan 9, 2026

Acer Unveils Veriton RA100 Mini PC with Ryzen AI Max+ 395 for Creators

Acer targets creators and developers building and running local models with its Veriton RA100 Ryzen AI Max+ 395 mini PC.

FBI Warns of North Korean Hackers Exploiting QR Codes for Phishing Attacks

Jan 9, 2026

FBI Warns of North Korean Hackers Exploiting QR Codes for Phishing Attacks

Kimsuky's latest attacks can bypass email protections and MFA to steal M365 and VPN accounts.