On January 17, 2025, the U.S. Treasury Department announced sanctions against Yin Kecheng, a Chinese hacker, and Sichuan Juxinhe Network Technology Co. The entities are accused of orchestrating the “Salt Typhoon” cyberattacks targeting U.S. telecommunications companies. These breaches compromised sensitive call records, including communications between U.S. government officials and prominent figures, marking a significant cybersecurity incident.
Sichuan Juxinhe Network Technology Co. is alleged to have strong ties with China’s Ministry of State Security (MSS), while Yin Kecheng, a Shanghai-based hacker with over a decade of experience, is linked to the hacking of the Treasury Department itself.
In response, the U.S. has stepped up efforts to counter cyber threats. Cyber Command Executive Morgan Adamski warned that Chinese hackers are positioning themselves within critical infrastructure networks, potentially to gain a strategic edge in the event of conflict. Additionally, the Justice Department recently dismantled the “PlugX” malware installed via USB devices by Chinese-backed hacker groups such as “Mustang Panda.”
A December 2024 breach at the U.S. Treasury Department revealed vulnerabilities exploited through a third-party cybersecurity vendor. This incident added to growing tensions between the U.S. and China over state-sponsored cyber espionage.
While U.S. officials have emphasized the need for stronger defenses and international collaboration, China has denied involvement, reiterating opposition to hacking activities. These developments highlight the ongoing cyber conflict between nations and the critical need for robust cybersecurity measures.
