Senator Wyden advocates for stronger security regulations on telecom companies, as proposed by the FCC.
In the wake of a series of cyber attacks on U.S. telecom companies, which have been traced back to China-sponsored threat groups, the regulatory landscape for telecom cybersecurity is undergoing significant changes.
Sen. Ron Wyden, D-Ore., has proposed the Secure American Communications Act, a legislative initiative aimed at strengthening cybersecurity rules for telecom operators. The bill calls for telecom companies to adhere to specific security requirements to prevent interceptions of communications and intrusions on network infrastructure.
However, the current status of the Secure American Communications Act is not explicitly detailed in the latest FCC and legislative updates. The FCC, led by a 2-1 Republican majority, has been active in proposing rulemakings related to internet routing security and updates to telecommunications services, reflecting broader efforts to improve infrastructure security in line with national security objectives.
On June 30, 2025, the FCC issued an order temporarily waiving deadlines for compliance with certain telecom service rules adopted in 2024. This delay aims to ensure "sufficient funding for safety and security tools" and address challenges in implementing new requirements. The compliance deadline has been extended to April 1, 2027, indicating ongoing reconsideration and adaptation of telecom regulations related to safety and security.
The Secure American Communications Act requires telecom network operators to conduct annual tests to evaluate system integrity and work with an independent auditor to assess compliance with FCC cybersecurity rules. The bill also mandates that the CEO and CISO of telecom carriers sign a statement affirming compliance with FCC's cybersecurity rules.
The China-government sponsored attacks on U.S. telecom companies have been ongoing for up to two years. Anne Neuberger, deputy national security advisor for cyber and emerging technology, has stated that at least eight telecommunications providers or telecom infrastructure companies in the U.S. have been compromised by one of the China-sponsored threat groups.
Cybersecurity remains a bipartisan issue, and Wyden has shown a special interest in security pitfalls and policies. His bill follows FCC Chair Jessica Rosenworcel's proposed rule changes that aim to secure telecom networks and manage cybersecurity risks.
The full extent of damages caused by these attacks and what remains at risk is still unknown to U.S. officials. However, the proposed legislation and the FCC's ongoing rulemaking activities suggest a cautious and evolving regulatory environment concerning telecom security and service rules, which may encompass elements of Sen. Wyden’s proposals or similar initiatives to guard against foreign cybersecurity risks, including those from China-sponsored attacks.
Stay tuned for updates on the progress of the Secure American Communications Act and the FCC's response to these cyber threats.
- In light of the ongoing China-sponsored cyber attacks on U.S. telecom companies and the proposed Secure American Communications Act, the legislation aims to strengthen cybersecurity rules for telecom operators, implementing rigorous risk management measures and adherence to FCC cybersecurity compliance regulations.
- The Secure American Communications Act underscores the importance of cybersecurity, technology, and risk management in the telecom sector, mandating annual system integrity tests, independent audits, and top-level sign-offs, reflecting a bipartisan effort to improve cybersecurity and address increasing threats from foreign entities such as China.
