TZUTC: -0500   
   MSGID: 1737.consprcy@1:2320/105 2d870c4f   
   PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0   
   BBSID: CAPCITY2   
   CHRS: ASCII 1   
   FORMAT: flowed   
   US FCC repeals cybersecurity rules aimed at preventing Salt Typhoon-esque   
   attacks   
      
   Date:   
   Fri, 21 Nov 2025 15:05:00 +0000   
      
   Description:   
   The US FCC has voted to remove mandated network security and risk management.   
      
   FULL STORY   
      
   The Republican-led Federal Communications Commission (FCC) has voted to    
   remove measures implemented in the wake of the Salt Typhoon attack .    
      
   The mandated protections required Telecom firms to adopt basic security   
   controls and network protections - and encouraged collaboration between the   
   large network providers in order to protect consumers and national security.    
      
   The Salt Typhoone attacks saw threat actors lurking inside US telecom    
   networks for upwards of a year - exfiltrating data in one of the largest    
   cyber espionage campaigns recorded.   
      
   'Neither lawful nor effective'    
      
   The FCC voted to revoke the ruling, claiming it was ineffective because it   
   neither responded to the nature of the relevant cybersecurity threats nor was   
   it consistent with the agile and collaborative approach to cybersecurity that   
   has proven successful, the Commission documents note .    
      
   FCC members argued telecom firms are voluntarily bolstering their   
   cybersecurity and hardening their networks against intrusions, so the   
   regulations are an onerous legal burden for companies that are already doing   
   the work.    
      
   Secretary Marlene Dortch said the protection ruling, applies the same   
   inflexible, across-the-board cybersecurity requirements to all   
   telecommunications carriers without regard to their risk, size, or   
   organizational posture.    
      
   "This vague and amorphous standard risks imposing costly new burdens on many   
   providers that are either not relevant to the potential threats they face, or   
   which are redundant because those providers may already employ sufficient   
   cybersecurity practices to reasonably reduce the risk of successful exploits   
   by the most sophisticated threat actors," she wrote.   
      
   The move follows a predictable pattern in a Trump administration which has   
   repeatedly illustrated its de-prioritization of online protection, having   
   already decimated public cybersecurity services through layoffs and   
   re-assignments within CISA .    
      
   The administration has also demonstrated its aims in deregulation, especially   
   within the technology industry - even going so far as to overrule state laws   
   to dismantle existing protections for consumers of AI in order to give AI   
   companies more freedoms.    
      
   Via The Record    
      
   ======================================================================   
   Link to news story:   
   https://www.techradar.com/pro/security/us-fcc-repeals-cybersecurity-rules-aime   
   d-at-preventing-salt-typhoon-esque-attacks   
      
   $$   
   --- SBBSecho 3.28-Linux   
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)   
   SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700   
   SEEN-BY: 226/30 227/114 229/110 206 300 307 317 400 426 428 470 664   
   SEEN-BY: 229/700 705 266/512 291/111 320/219 322/757 342/200 396/45   
   SEEN-BY: 460/58 633/280 712/848 902/26 2320/0 105 304 3634/12 5075/35   
   PATH: 2320/105 229/426