Sign up to save your podcasts
Or
Share Beijing's Cyber Buffet: How Dragon Hackers Are Stealing Your Drone Secrets While You Sleep
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Beijing's Cyber Buffet: How Dragon Hackers Are Stealing Your Drone Secrets While You Sleep
This is your Cyber Sentinel: Beijing Watch podcast.
Hey listeners, Ting here on Cyber Sentinel: Beijing Watch, your go-to for the pulse-pounding world of Chinese cyber ops shaking US security. Straight from the wire this weekend—February 14th saw DragonForce ransomware slam Shining Labels in Hong Kong, threatening to dump their apparel secrets unless they negotiate, per DeXpose reports. But that's just the appetizer; the real feast is Chinese APTs like APT5, aka Keyhole Panda or Mulberry Typhoon, UNC3236 known as Volt Typhoon, and UNC6508 feasting on North American defense contractors, per Google's Threat Analysis Group and Mandiant's latest intel.
These Beijing-backed crews are rolling out slick new tricks: INFINITERED custom malware paired with ARCMAZE obfuscation to hide in plain sight, plus Operational Relay Box networks—or ORBs—that mix legit traffic with their sneaky C2 channels, dodging geofencing like pros. They're hitting edge devices in supply chains, research labs like those using REDCap tools, and defense industrial base players in aerospace, semis, and energy. Think persistent espionage, IP theft, and credential grabs aimed at crippling US battlefield tech—tactical wins for stealing drone secrets today, strategic body blows prepping for tomorrow's conflicts.
Attribution? Ironclad from TAG and Mandiant: these overlap with Salt Typhoon, the PRC-linked hackers infiltrating US ISPs since 2019 for law enforcement data snooping, as FortiGuard Labs tracks, and even that Notepad++ backdoor trojan from Chinese state actors Schneier flagged last week. Singapore's Cyber Security Agency just outed UNC3886—China-tied—deep in their telcos like Singtel and StarHub last year, sparking a massive defense op. Internationally, it's a united front: US patching feverishly post-breaches, Brussels Morning noting DC summits on AI threats where Chinese AI scouts vulns in real-time for defense nets.
Tactically, patch now—Microsoft's February Patch Tuesday nailed six zero-days, BeyondTrust's CVE-2026-1731 RCE is live-exploited, so EDR up, segment networks, hunt ORBs. Strategically, audit supply chains, train on AI-phishing like those personalized exec deepfakes, and lock down edge gear. Don't sleep on AI coding assistants funneling code to China, as Schneier's Crypto-Gram warns—1.5 million devs at risk.
Listeners, stay vigilant; Beijing's playing 4D chess while we're still learning the board. Thanks for tuning in—subscribe for more intel drops! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here on Cyber Sentinel: Beijing Watch, your go-to for the pulse-pounding world of Chinese cyber ops shaking US security. Straight from the wire this weekend—February 14th saw DragonForce ransomware slam Shining Labels in Hong Kong, threatening to dump their apparel secrets unless they negotiate, per DeXpose reports. But that's just the appetizer; the real feast is Chinese APTs like APT5, aka Keyhole Panda or Mulberry Typhoon, UNC3236 known as Volt Typhoon, and UNC6508 feasting on North American defense contractors, per Google's Threat Analysis Group and Mandiant's latest intel.
These Beijing-backed crews are rolling out slick new tricks: INFINITERED custom malware paired with ARCMAZE obfuscation to hide in plain sight, plus Operational Relay Box networks—or ORBs—that mix legit traffic with their sneaky C2 channels, dodging geofencing like pros. They're hitting edge devices in supply chains, research labs like those using REDCap tools, and defense industrial base players in aerospace, semis, and energy. Think persistent espionage, IP theft, and credential grabs aimed at crippling US battlefield tech—tactical wins for stealing drone secrets today, strategic body blows prepping for tomorrow's conflicts.
Attribution? Ironclad from TAG and Mandiant: these overlap with Salt Typhoon, the PRC-linked hackers infiltrating US ISPs since 2019 for law enforcement data snooping, as FortiGuard Labs tracks, and even that Notepad++ backdoor trojan from Chinese state actors Schneier flagged last week. Singapore's Cyber Security Agency just outed UNC3886—China-tied—deep in their telcos like Singtel and StarHub last year, sparking a massive defense op. Internationally, it's a united front: US patching feverishly post-breaches, Brussels Morning noting DC summits on AI threats where Chinese AI scouts vulns in real-time for defense nets.
Tactically, patch now—Microsoft's February Patch Tuesday nailed six zero-days, BeyondTrust's CVE-2026-1731 RCE is live-exploited, so EDR up, segment networks, hunt ORBs. Strategically, audit supply chains, train on AI-phishing like those personalized exec deepfakes, and lock down edge gear. Don't sleep on AI coding assistants funneling code to China, as Schneier's Crypto-Gram warns—1.5 million devs at risk.
Listeners, stay vigilant; Beijing's playing 4D chess while we're still learning the board. Thanks for tuning in—subscribe for more intel drops! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
View all episodes
By Inception Point AiThis is your Cyber Sentinel: Beijing Watch podcast.
Hey listeners, Ting here on Cyber Sentinel: Beijing Watch, your go-to for the pulse-pounding world of Chinese cyber ops shaking US security. Straight from the wire this weekend—February 14th saw DragonForce ransomware slam Shining Labels in Hong Kong, threatening to dump their apparel secrets unless they negotiate, per DeXpose reports. But that's just the appetizer; the real feast is Chinese APTs like APT5, aka Keyhole Panda or Mulberry Typhoon, UNC3236 known as Volt Typhoon, and UNC6508 feasting on North American defense contractors, per Google's Threat Analysis Group and Mandiant's latest intel.
These Beijing-backed crews are rolling out slick new tricks: INFINITERED custom malware paired with ARCMAZE obfuscation to hide in plain sight, plus Operational Relay Box networks—or ORBs—that mix legit traffic with their sneaky C2 channels, dodging geofencing like pros. They're hitting edge devices in supply chains, research labs like those using REDCap tools, and defense industrial base players in aerospace, semis, and energy. Think persistent espionage, IP theft, and credential grabs aimed at crippling US battlefield tech—tactical wins for stealing drone secrets today, strategic body blows prepping for tomorrow's conflicts.
Attribution? Ironclad from TAG and Mandiant: these overlap with Salt Typhoon, the PRC-linked hackers infiltrating US ISPs since 2019 for law enforcement data snooping, as FortiGuard Labs tracks, and even that Notepad++ backdoor trojan from Chinese state actors Schneier flagged last week. Singapore's Cyber Security Agency just outed UNC3886—China-tied—deep in their telcos like Singtel and StarHub last year, sparking a massive defense op. Internationally, it's a united front: US patching feverishly post-breaches, Brussels Morning noting DC summits on AI threats where Chinese AI scouts vulns in real-time for defense nets.
Tactically, patch now—Microsoft's February Patch Tuesday nailed six zero-days, BeyondTrust's CVE-2026-1731 RCE is live-exploited, so EDR up, segment networks, hunt ORBs. Strategically, audit supply chains, train on AI-phishing like those personalized exec deepfakes, and lock down edge gear. Don't sleep on AI coding assistants funneling code to China, as Schneier's Crypto-Gram warns—1.5 million devs at risk.
Listeners, stay vigilant; Beijing's playing 4D chess while we're still learning the board. Thanks for tuning in—subscribe for more intel drops! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here on Cyber Sentinel: Beijing Watch, your go-to for the pulse-pounding world of Chinese cyber ops shaking US security. Straight from the wire this weekend—February 14th saw DragonForce ransomware slam Shining Labels in Hong Kong, threatening to dump their apparel secrets unless they negotiate, per DeXpose reports. But that's just the appetizer; the real feast is Chinese APTs like APT5, aka Keyhole Panda or Mulberry Typhoon, UNC3236 known as Volt Typhoon, and UNC6508 feasting on North American defense contractors, per Google's Threat Analysis Group and Mandiant's latest intel.
These Beijing-backed crews are rolling out slick new tricks: INFINITERED custom malware paired with ARCMAZE obfuscation to hide in plain sight, plus Operational Relay Box networks—or ORBs—that mix legit traffic with their sneaky C2 channels, dodging geofencing like pros. They're hitting edge devices in supply chains, research labs like those using REDCap tools, and defense industrial base players in aerospace, semis, and energy. Think persistent espionage, IP theft, and credential grabs aimed at crippling US battlefield tech—tactical wins for stealing drone secrets today, strategic body blows prepping for tomorrow's conflicts.
Attribution? Ironclad from TAG and Mandiant: these overlap with Salt Typhoon, the PRC-linked hackers infiltrating US ISPs since 2019 for law enforcement data snooping, as FortiGuard Labs tracks, and even that Notepad++ backdoor trojan from Chinese state actors Schneier flagged last week. Singapore's Cyber Security Agency just outed UNC3886—China-tied—deep in their telcos like Singtel and StarHub last year, sparking a massive defense op. Internationally, it's a united front: US patching feverishly post-breaches, Brussels Morning noting DC summits on AI threats where Chinese AI scouts vulns in real-time for defense nets.
Tactically, patch now—Microsoft's February Patch Tuesday nailed six zero-days, BeyondTrust's CVE-2026-1731 RCE is live-exploited, so EDR up, segment networks, hunt ORBs. Strategically, audit supply chains, train on AI-phishing like those personalized exec deepfakes, and lock down edge gear. Don't sleep on AI coding assistants funneling code to China, as Schneier's Crypto-Gram warns—1.5 million devs at risk.
Listeners, stay vigilant; Beijing's playing 4D chess while we're still learning the board. Thanks for tuning in—subscribe for more intel drops! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI