The claim has sparked global concern as it suggests that hackers linked to Beijing could have gained valuable skills from legitimate corporate courses.
Chinese State Hackers in Cisco Training
According to SentinelLabs researcher Dakota Cary, two individuals – Yu Yang and Qiu Daibing – were identified as former participants in the Cisco Networking Academy Cup in 2012. This beginner-level program was designed to teach foundational cybersecurity skills.
Records show that Qiu’s team won first prize at their university and later placed third nationally, while Yu’s team secured second place in Sichuan. These competitions attracted thousands of students worldwide, with more than 2 million participants globally since 1997.
Researcher’s Findings and Concerns
Cary stated, “We found evidence that individuals tied to Salt Typhoon were present in Cisco’s programs, learning skills that could later be used against Western targets.”
The revelation raises questions about how open-access training can be exploited. Salt Typhoon has been accused of targeting over 80 telecom operators and carriers in 2024, making this discovery particularly alarming.
Cisco’s Response
Cisco has not confirmed the allegations but emphasized that its training programs are designed to strengthen cybersecurity awareness worldwide.
A spokesperson noted, “Our courses are open to global participants. We take allegations of misuse seriously and are reviewing the matter.” The Cisco Networking Academy, launched in 1997 and expanded into China in 1998, continues to run competitions every few months to test students’ skills.
Global Cybersecurity Implications
The report highlights the growing risks of cyber warfare. U.S. officials have repeatedly accused Chinese groups of stealing sensitive data and intellectual property.
Analysts warn that training programs must balance openness with security. As one expert explained, “Cybersecurity knowledge is powerful. In the wrong hands, it can be weaponized.”
