Yazılar

Hacker Breach of TeleMessage Exposes Communications Across U.S. Government

/in /tarafından

A hacker who breached TeleMessage, a secure communications platform used by U.S. officials — including former Trump national security adviser Mike Waltz — accessed a broad range of messages from multiple government agencies, according to a Reuters investigation. The breach has significantly expanded the scope of concern over data security in the Trump administration and beyond.

The leaked data, obtained by nonprofit transparency group Distributed Denial of Secrets, revealed intercepted communications involving over 60 unique U.S. government users, including:

  • Disaster responders

  • Customs and Border Protection officials

  • U.S. diplomats

  • Secret Service members

  • A White House staffer

  • FEMA and financial sector personnel

The messages, spanning a roughly 24-hour period ending May 4, included discussions related to travel logistics for senior U.S. officials, such as a group labeled “POTUS | ROME-VATICAN | PRESS GC,” likely linked to preparations for a presidential visit. Another appeared to discuss a trip to Jordan involving U.S. personnel.

While Reuters did not identify any classified or overtly sensitive information, experts caution that the metadata alone — including who was talking to whom, when, and in what context — poses a serious counterintelligence risk.

“Even if you don’t have the content, that is a top-tier intelligence access,” said Jake Williams, a former NSA cyber expert, now at Hunter Strategy.

Waltz and Previous Signal Controversy

The breach of TeleMessage, which modifies secure apps like Signal to meet federal archiving requirements, drew attention after Mike Waltz was photographed using the platform during a Cabinet meeting on April 30. While no messages directly linked to Waltz have surfaced in the leak, his previous misuse of Signal — including inadvertently adding a journalist to a chat discussing real-time air raids on Yemen — led to his removal as national security adviser. He was later nominated to serve as U.S. ambassador to the United Nations.

Unclear Scope, Ongoing Investigations

The extent of the breach remains under investigation. The platform, owned by Smarsh, a Portland, Oregon-based digital communications firm, was taken offline on May 5 “out of an abundance of caution.” Smarsh has not responded to media inquiries.

Affected agencies include:

  • Department of Homeland Security

  • State Department

  • Centers for Disease Control and Prevention (CDC)

  • Federal Emergency Management Agency (FEMA)

  • Customs and Border Protection (CBP)

While some agencies downplayed the risk or claimed no confirmed compromise, others are still conducting internal reviews. The Cybersecurity and Infrastructure Security Agency (CISA) has since advised all users to cease use of the platform unless further mitigation steps are provided.

Key Questions Unanswered

Neither Waltz nor the White House has publicly addressed how or why TeleMessage was used or whether any guidelines were breached. The use of such platforms — designed to balance privacy, security, and legal compliance — now faces renewed scrutiny amid the apparent ease with which the hacker penetrated multiple layers of sensitive communications.

The incident adds to a growing list of cyber breaches targeting U.S. institutions in recent years, raising alarm about the resilience of federal communications systems in a time of heightened geopolitical risk and digital espionage.

Unexplained Electronic Components Found in Denmark’s Energy Equipment Imports, Investigation Underway

/in /tarafından

Unidentified electronic components have been discovered in imported energy infrastructure equipment in Denmark, raising concerns over potential security vulnerabilities in the country’s critical power systems, according to industry group Green Power Denmark.

The components were found during a routine inspection of printed circuit boards intended for use in Denmark’s energy supply network. The discovery has prompted an internal investigation to assess the nature and intent behind the components’ inclusion.

“We don’t know how critical it is or whether there are bad intentions behind it,” said Jorgen Christensen, technical director at Green Power Denmark, in a statement to Reuters. “But these components should not be present in infrastructure equipment.”

Christensen did not disclose the origin of the equipment, the specific technology it was intended for (such as solar power systems), or which parties are conducting the investigation.

The Danish Ministry for Preparedness and Resilience declined to comment on the situation, and no responses were received from the Justice Ministry, Energy Ministry, or national intelligence services regarding whether a formal government-led inquiry had been initiated.

The incident comes at a time of heightened international attention on supply chain risks and cybersecurity threats to critical infrastructure, including power grids and renewable energy assets.

“This is highly concerning. It is important that an investigation is underway,” said Walburga Hemetsberger, CEO of SolarPower Europe, who emphasized the broader implications for the continent’s energy security.

Christensen noted that while the components could have been included for benign reasons — such as being part of a multi-purpose circuit board design — their unexplained presence in systems designated for energy infrastructure is unacceptable.

“It’s possible the supplier had no malicious intent. We can’t say at this point, but that doesn’t change the fact that these components shouldn’t be there,” he said.

The development follows a separate report by Reuters last week, which revealed that U.S. energy officials had found unauthorized communication devices in Chinese-made solar inverters and batteries, capable of bypassing cybersecurity firewalls and threatening grid stability.

The Danish case, first reported by local media outlet Berlingske, adds to growing scrutiny of imported technologies used in national infrastructure projects, particularly from unknown or sensitive origin sources.

U.S. May Add More Chinese Tech Firms to Export Blacklist, Including CXMT

/in /tarafından

The U.S. Commerce Department is considering expanding its Entity List to include additional Chinese technology firms, including ChangXin Memory Technologies (CXMT) and subsidiaries of Semiconductor Manufacturing International Corporation (SMIC) and Yangtze Memory Technologies Co. (YMTC), a source familiar with the matter told Reuters.

The potential move is under review by the Bureau of Industry and Security (BIS), which oversees export controls on sensitive technologies. Companies added to the Entity List are effectively banned from receiving U.S. goods, software, and technology without a special license — one that is typically denied.

Strategic and Political Context:

  • The timing of the decision is reportedly complicated by a recent U.S.–China trade deal, according to the Financial Times, which first reported the news.

  • Inclusion on the list is reserved for entities deemed to be acting contrary to U.S. national security or foreign policy interests.”

Recent Escalations:

  • In January, the Biden administration added over two dozen Chinese entities, including:

    • Zhipu AI, a large language model developer

    • Sophgo, linked to chips produced by TSMC and allegedly incorporated into Huawei AI processors in violation of U.S. export rules

  • Those actions were accompanied by tighter controls to restrict chip flows that could indirectly support Huawei and other blacklisted firms.

Implications:

  • CXMT is a leading Chinese DRAM memory chipmaker and considered a strategic rival to U.S. memory firms such as Micron. Blacklisting CXMT would further strain U.S.–China tech relations.

  • Adding SMIC and YMTC subsidiaries would intensify U.S. efforts to curb China’s progress in semiconductor self-sufficiency and advanced chip production.

While no final decision has been announced, the move would signal a continued hardline stance on Chinese tech development, particularly in areas with potential military or surveillance applications.