A cyberattack allegedly carried out by China targeting the US Congress’s email systems has triggered a major security alert. Behind this quiet intrusion, Washington suspects a strategic espionage operation with potentially serious consequences for the United States.
Mistral’s AI Partnership: The French Military’s New Secret to Victory
Attack Discovered in December 2025 Heightens US-China Tensions
First detected in December 2025, the breach involved the emails of congressional staff members and has reignited growing tensions between China and the US. Available reports suggest that the operation may be linked to a hacker group known as Salt Typhoon, suspected of acting on behalf of Chinese intelligence services.
Congressional Staff Targeted by Chinese Hackers
Revealed in early January 2026, the breach raised immediate alarm in Washington. According to information reported by Reuters, hackers connected to China may have compromised email systems used by aides on several key Congressional committees. These include committees focused on China, foreign affairs, intelligence, and defense, according to US officials.
Despite the seriousness of the breach, American authorities remain cautious. So far, there is no evidence that the personal accounts of lawmakers were directly affected. However, LiveMint reports that the compromised systems contained sensitive communications involving national security, deepening suspicions of a deliberately planned espionage operation.
As expected, Beijing has firmly denied the accusations. A spokesperson for China’s diplomatic mission, quoted by the Financial Times, called the allegations politically motivated disinformation. Still, this official denial has done little to ease concerns in Washington, where authorities have recently faced a series of cybersecurity threats.
Salt Typhoon: A Long-Term Threat to Strategic US Targets
The name Salt Typhoon is at the center of the investigation. The group is believed to be behind a widespread digital espionage campaign attributed to China. The Congress email breach is thought to be just one part of a much broader operation.
According to the Financial Times, US officials believe Salt Typhoon uses tools that can intercept unencrypted communications, including phone calls, text messages, voicemails, and emails within the United States.
The group has reportedly been active since at least 2021, which suggests a long-term, low-profile infiltration strategy rather than flashy or high-impact cyberattacks. A recent international cybersecurity coalition has accused three Chinese tech companies of participating in the Salt Typhoon campaign.
Security Fallout from the Alleged Chinese Cyberattack
The potential fallout from this breach is a major concern for American officials. Cybersecurity experts warn that prolonged access to institutional email systems could give China strategic insight into internal policy discussions, legislative priorities, and diplomatic positioning in the US.
Salt Typhoon is also believed to have infiltrated networks tied to the US National Guard. A report from the Department of Homeland Security refers to an intrusion that lasted nearly a year in at least one US state. This incident raises broader fears about China’s ability to exploit persistent weaknesses in American cybersecurity defenses.
