Salt Typhoon’s Cyber Espionage: Applying the Diamond Model and Assessing Policy Governance

Bardsley, Mitchell

Salt Typhoon’s Cyber Espionage: Applying the Diamond Model and Assessing Policy Governance

Files

Term Paper -- Applying Diamond Model and Policy Assessment.pdf (385.68 KB)

Author(s)

Bardsley, Mitchell

Associated Organization(s)

Organizational Unit

Professional Education

Collections

Research Publications

Permanent Link

https://hdl.handle.net/1853/80190

Abstract

The People’s Republic of China (PRC)–sponsored advanced persistent threat (APT) known as Salt Typhoon conducted a sustained cyber campaign against United States telecommunications providers from 2023 to 2024, resulting in widespread compromise of critical infrastructure and exposure of sensitive communications metadata and law enforcement systems (Miller et al., 2024). This paper applies the Diamond Model to analyze the intrusion, systematically identifying the adversary, capabilities, infrastructure, and victims, extending the framework through social-political and technological meta-features. Living-off-the-land techniques, exploitation of unpatched Cisco vulnerabilities, and abuse of native network protocols enabled covert, long-term persistence and data exfiltration with minimal detection. Evaluating organizational, national, and transnational policy responses, this paper concludes that enforceable national-level centered upon vulnerability disclosure, supply chain accountability, and coordinated federal oversight are the most effective means to mitigate future nation-state campaigns.

Date

2026

Resource Type

Text

Rights Statement

Unless otherwise noted, all materials are protected under U.S. Copyright Law and all rights are reserved

Rights URI

https://rightsstatements.org/page/InC/1.0/?language=en

Full item page