The United States faces a growing threat from cyber espionage activities linked to the People’s Republic of China (PRC). These activities target critical infrastructure sectors, including telecommunications, transportation, and energy, posing significant national security and public safety risks. As custodians of substantial portions of this infrastructure, state governments play a pivotal role in implementing measures to safeguard against these threats.
Recent Incidents Highlighting the Threat
In December 2024, a cyber espionage operation called “Salt Typhoon,” attributed to Chinese state-sponsored actors, compromised multiple U.S. telecommunications providers. This breach granted attackers extensive access to sensitive data, enabling the geolocation of individuals and unauthorized recording of phone calls. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) advised officials to use end-to-end encrypted communication methods to mitigate potential risks. (Politico)
Additionally, concerns have been raised about Chinese-manufactured equipment used in U.S. infrastructure. A congressional report revealed that cranes produced by Shanghai-based ZPMC, prevalent in American seaports, were equipped with unauthorized cellular modems. These devices could facilitate remote access and data collection, potentially allowing espionage activities and operational disruptions. (New York Post)
Legislative Actions and Recommendations
In response to these threats, the U.S. House of Representatives passed legislation to bolster cyber defenses against state-sponsored threats, particularly from the PRC. This includes establishing interagency task forces and mandating comprehensive reports on the targeting of the nation’s critical infrastructure by Chinese cyber actors. (Industrial Cyber)
Furthermore, federal agencies such as CISA, the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have issued joint advisories detailing the tactics employed by Chinese state-sponsored cyber actors. These advisories guide detection and mitigation strategies to assist organizations in defending against such intrusions. (CISA)
The Role of State Governments
State governments are integral to the nation’s defense against cyber threats, given their jurisdiction over critical infrastructure components. To enhance security, states should consider the following measures:
-
Conduct Comprehensive Risk Assessments: Evaluate existing infrastructure to identify vulnerabilities related to foreign-manufactured equipment and software.
-
Implement Robust Cybersecurity Protocols: Adopt and enforce stringent cybersecurity standards, including regular system updates, employee training, and incident response planning.
-
Collaborate with Federal Agencies: Engage in information-sharing initiatives with federal entities like CISA and the FBI to stay informed about emerging threats and effective countermeasures.
-
Legislate Protective Measures: Consider enacting laws that restrict procuring high-risk foreign-made equipment for critical infrastructure projects.
The escalating cyber espionage activities attributed to Chinese state-sponsored actors necessitate a proactive and coordinated response from U.S. state governments. By implementing comprehensive security measures and collaborating with federal agencies, states can strengthen the resilience of their critical infrastructure against foreign threats, thereby safeguarding national security and public welfare.
