Multiple U.S. broadband providers, including Verizon, AT&T, and Lumen Technologies, have been breached by a Chinese hacking group known as Salt Typhoon, aiming for intelligence collection. The hackers might have accessed systems used for U.S. government network wiretapping requests. Other cybersecurity companies are tracking this threat actor under different names. The hackers likely obtained initial access through vulnerabilities like ProxyLogon in Microsoft Exchange Server. Interestingly, investigators are exploring gaining access to Cisco routers as a possible initial access method. Chinese APT groups have been targeting U.S. and European networking devices in cyberespionage attacks, displaying a concerning trend of sophisticated attacks.
https://www.bleepingcomputer.com/news/security/atandt-verizon-reportedly-hacked-to-target-us-govt-wiretapping-platform/