A China-linked hacking group has compromised email systems used by staff members of key US House committees. The intrusion, attributed to the Salt Typhoon APT group, targeted offices involved in China policy, defense, intelligence, and foreign affairs.
According to the Financial Times, attackers gained access to email systems used by aides serving on the House China committee and panels overseeing foreign affairs, intelligence, and the armed services. The identities of the affected staffers have not been disclosed.
The intrusion was detected in December 2025. It remains unclear whether the attackers accessed the personal email accounts of lawmakers themselves. The FBI declined to comment, while the White House and committee offices did not immediately respond to inquiries.
US lawmakers and their aides have long been high-value targets for cyber espionage, particularly from nation-state actors. In November, the US Senate disclosed a separate cyber incident involving potential access to communications between the Congressional Budget Office and Senate offices.
The Salt Typhoon group has previously alarmed the US intelligence community and is accused of conducting large-scale surveillance operations, including intercepting communications involving senior US officials. Beijing has repeatedly denied any involvement. In 2025, the US imposed sanctions on individuals and companies allegedly linked to the group.
The breach highlights the persistent threat posed by state-sponsored cyber espionage and the ongoing risks facing political institutions. Targeting staff email systems remains a strategic method for intelligence collection without directly breaching senior officials’ accounts.
