The Norwegian government has confirmed that Norwegian organizations were targeted by the China-linked hacker group known as Salt Typhoon, Bank Info Security reports.
The acknowledgment appears in the latest annual threat assessment from Norway’s Police Security Service (PST). In the report, Salt Typhoon is described as a Chinese cyber threat actor connected to private Chinese cybersecurity firms.
According to PST, the group compromised vulnerable network devices within Norwegian organizations. These include internet-connected systems such as routers and servers, which can provide long-term access if exploited. Authorities have not disclosed which entities were affected.
The report highlights what Norwegian officials describe as the central role of private contractors in supporting Chinese security and intelligence services. Such partnerships are said to strengthen China’s operational cyber capacity.
Norwegian authorities warn that Chinese cyber operations are expected to remain one of the country’s most significant intelligence threats in 2026. Cyber tools are described as a primary method used by foreign intelligence services operating in Norway.
Norwegian security officials warn that new AI tools could make cyber espionage faster, more automated and more difficult to detect.
