Senator Demands AT&T, Verizon CEOs Testify Over Salt

Congressional Pressure Mounts

Senate Commerce Committee Chair Maria Cantwell (D-WA) has publicly accused AT&T and Verizon of deliberately blocking the release of Mandiant security assessment reports related to the Salt Typhoon Chinese state-sponsored cyber espionage campaign. In a sharply worded letter, Cantwell demanded that both telecom CEOs appear before the committee to testify under oath.

"The American people deserve to know how deeply their communications networks were compromised, and why these companies have stonewalled congressional oversight for months."

The senator called Salt Typhoon "one of the worst telecom hacks in U.S. history" and accused both carriers of prioritizing corporate reputation over national security transparency.

What Is Salt Typhoon?

Salt Typhoon is a Chinese state-sponsored advanced persistent threat (APT) group that conducted a sweeping espionage campaign targeting global telecommunications infrastructure. The FBI's assessment reveals the staggering scale of the operation:

What Was Accessed

According to federal investigators, Salt Typhoon operators gained access to:

1. Call detail records (CDRs) — Metadata showing who called whom, when, and for how long
2. Lawful intercept systems — Wiretap infrastructure used by law enforcement
3. Senior government communications — Calls and texts of high-ranking officials
4. Network routing data — Infrastructure topology of major U.S. carriers

Timeline of the Salt Typhoon Campaign

Congressional Action

The Transparency Dispute

At the center of this fight are Mandiant security assessment reports — detailed forensic analyses commissioned by AT&T and Verizon after the breach was discovered. Cantwell argues these reports should be shared with congressional oversight committees. Both carriers have claimed the reports are protected by attorney-client privilege and contain proprietary security information.

What Congress Is Demanding

• CEO testimony — AT&T CEO John Stankey and Verizon CEO Hans Vestberg ordered to appear
• Mandiant report release — Full disclosure of breach scope and remediation status
• Remediation timeline — Detailed plans for securing compromised infrastructure
• Legislative proposals — New mandatory breach disclosure requirements for telecom providers

Bipartisan Support

The demand for transparency has drawn bipartisan backing, with members from both sides of the aisle expressing alarm at the scale of Chinese penetration into U.S. communications infrastructure.

Why This Matters

Salt Typhoon represents a fundamental compromise of the infrastructure Americans rely on for private communications. The implications extend beyond the telecom sector:

• National security — Foreign adversaries accessed systems designed for lawful surveillance
• Public trust — Carriers' refusal to disclose findings erodes confidence in the telecom industry
• Policy precedent — Congressional response will shape future breach disclosure requirements
• Allied concerns — With 80+ countries affected, this is a global intelligence failure

For IT and security professionals, this case underscores the critical importance of network infrastructure security, supply chain transparency, and incident response accountability at the highest levels of corporate leadership.

Sources

• U.S. Senate Commerce Committee — Cantwell Demands Telecom CEO Testimony
• Nextgov/FCW — Senator Accuses AT&T, Verizon of Blocking Salt Typhoon Reports
• CyberNews — Salt Typhoon: FBI Says 80+ Countries Targeted in Telecom Hack

Related Reading

• China-Linked UNC3886 Breaches All Four Singapore Telecom
• UNC3886 Zero-Day Campaign: Singapore Telecom Operators
• Google: 90 Zero-Days Exploited in 2025 — Enterprise Tech