Chinese state-sponsored hackers, suspected to be Salt Typhoon (APT41), breached the FBI's Digital Collection System Network (DSCNet) in an intrusion first detected on February 17, 2026. The attackers targeted DCS-3000 (Red Hook), a system managing pen register and trap-and-trace surveillance metadata including warrant information and PII of individuals under investigation. Rather than attacking FBI systems directly, the hackers exploited a commercial ISP connected to the surveillance network, blending malicious traffic through a trusted vendor pathway. The breach did not compromise intercepted communication content (handled by a separate system, Digital Storm), but the metadata exposed can reveal communication patterns and relationships in criminal and national security investigations. The FBI has notified Congress and mobilized response teams, though exfiltration of data has not been confirmed.
Sort: