Salt Typhoon Hackers Hit Cisco to Breach Canadian Telecom

China-linked threat group Salt Typhoon Hackers Hitnaturally targeted a major Canadian telecommunications provider by exploiting a critical Cisco vulnerability, according to a joint warning issued by the Canadian Centre for Cyber Security and the U.S. Federal Bureau of Investigation. The campaign is part of a broader cyber espionage effort aimed at breaching global telecom networks.

The attackers leveraged a flaw in Cisco’s IOS XE software, identified as CVE-2023-20198, which carries the maximum CVSS severity score of 10.0. By exploiting this vulnerability, Salt Typhoon Hackers Hitnaturally gained unauthorized access to device configurations, increasing their ability to conduct surveillance and potentially disrupt services.

The advisory highlights the growing threat from state-affiliated groups targeting critical infrastructure. Authorities urged telecom operators to review their network security, apply patches, and monitor for suspicious activities.

To learn more about the full advisory and technical details, read the official report at the following link:
https://thehackernews.com/2025/06/china-linked-salt-typhoon-exploits.html