Sign up to save your podcasts
Or
Share China's Cyber Tentacles: Hacking Your Coffee, Calls & Utilities! đ±đđ»
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
China's Cyber Tentacles: Hacking Your Coffee, Calls & Utilities! đ±đđ»
This is your Digital Dragon Watch: Weekly China Cyber Alert podcast.
Hey listeners, Ting here! Buckle up for the Digital Dragon Watch, because this week in China cyber-land, the dragons have been busy breathing digital fire. Letâs get right to it. If youâve had trouble buying a cup of coffee or making a call recently, odds are good some Chinese malware was lurking behind the scenes. The most jaw-dropping news comes straight from a CBS investigation, where Tim Haugh, retired head of NSA and U.S. Cyber Command, spelled out just how far the tentacles have reached. Chinaâs hackers are no longer satisfied with just poking at the militaryâtheyâre in your utilities, your local water plant, even Littleton, Massachusetts, where the general manager Nick Lawler had to rebuild his network after the FBI caught the Chinese lurking and siphoning logins. These attackers werenât on a smash-and-grabâno ransomware, no fancy malware. They just grabbed credentials and posed as employees, staying dormant until they need to flip the switch. That stealthy âwait and watchâ mode is the new show in town.
According to Googleâs Mandiant unit, the BRICKSTORM malware campaign, run by the notorious UNC5221 team, isnât just poking; itâs embedding itself deep and staying undetected for an average of 400 days. This crew targets law firms, SaaS providersâyou name itâlaying the groundwork for larger exploits or to pounce when tensions rise. The vectors? Unpatched firewalls and network appliances, often exploiting zero-day vulnerabilities. The PLA has a cyber force of 60,000, and unlike the U.S., a much higher percentage is focused on offense. They even use âpseudo-privateâ contractors to mask state involvement. Imagine hackers-for-hire, but funded by Beijing.
Itâs not all cloak-and-dagger. Hong Kong just wrapped its massive Cybersecurity Attack and Defence Drill with 15 Red Teams and 34 government departments sparring for three days. Tony Wong, Hong Kongâs Commissioner for Digital Policy, was all smiles at the closing. The drill inspected everything from ticketing systems to legislative databases, stress-testing these defenses ahead of the upcoming National Games and elections, with teams swapping attack techniques and defense strategies in real-time.
Back home, government response is ramping up. The Protecting America from Cyber Threats Act just hit the Senate. Championed by Senators Gary Peters and Mike Rounds, this bill renews the vital information sharing law, letting private firms flag threats like the infamous Salt Typhoon attacks, and giving the feds more ammo to respond. And yes, after that DOJ indictment of twelve Chinese operativesâincluding two Ministry of Public Security officialsâfor hacking everything from dissident laptops to Treasury servers, the administration is pushing to hardwire cybersecurity into trade deals.
Expert advice is clear: patch your network equipment, force regular credential rotations, and share threat info with both the government and other at-risk firms. Silence benefits only the attackers. If youâre a CIS admin or just someone who wants their lights to stay on, double-check your systemâs firmware and read up on zero-day bulletins. China isnât playing by the old rules, and neither can we.
Thatâs your pulse check from Digital Dragon Watch this week. Subscribe to stay updated, and protect those endpoints! Thanks for tuning in. This has been a quiet please production, for more check out quiet please dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here! Buckle up for the Digital Dragon Watch, because this week in China cyber-land, the dragons have been busy breathing digital fire. Letâs get right to it. If youâve had trouble buying a cup of coffee or making a call recently, odds are good some Chinese malware was lurking behind the scenes. The most jaw-dropping news comes straight from a CBS investigation, where Tim Haugh, retired head of NSA and U.S. Cyber Command, spelled out just how far the tentacles have reached. Chinaâs hackers are no longer satisfied with just poking at the militaryâtheyâre in your utilities, your local water plant, even Littleton, Massachusetts, where the general manager Nick Lawler had to rebuild his network after the FBI caught the Chinese lurking and siphoning logins. These attackers werenât on a smash-and-grabâno ransomware, no fancy malware. They just grabbed credentials and posed as employees, staying dormant until they need to flip the switch. That stealthy âwait and watchâ mode is the new show in town.
According to Googleâs Mandiant unit, the BRICKSTORM malware campaign, run by the notorious UNC5221 team, isnât just poking; itâs embedding itself deep and staying undetected for an average of 400 days. This crew targets law firms, SaaS providersâyou name itâlaying the groundwork for larger exploits or to pounce when tensions rise. The vectors? Unpatched firewalls and network appliances, often exploiting zero-day vulnerabilities. The PLA has a cyber force of 60,000, and unlike the U.S., a much higher percentage is focused on offense. They even use âpseudo-privateâ contractors to mask state involvement. Imagine hackers-for-hire, but funded by Beijing.
Itâs not all cloak-and-dagger. Hong Kong just wrapped its massive Cybersecurity Attack and Defence Drill with 15 Red Teams and 34 government departments sparring for three days. Tony Wong, Hong Kongâs Commissioner for Digital Policy, was all smiles at the closing. The drill inspected everything from ticketing systems to legislative databases, stress-testing these defenses ahead of the upcoming National Games and elections, with teams swapping attack techniques and defense strategies in real-time.
Back home, government response is ramping up. The Protecting America from Cyber Threats Act just hit the Senate. Championed by Senators Gary Peters and Mike Rounds, this bill renews the vital information sharing law, letting private firms flag threats like the infamous Salt Typhoon attacks, and giving the feds more ammo to respond. And yes, after that DOJ indictment of twelve Chinese operativesâincluding two Ministry of Public Security officialsâfor hacking everything from dissident laptops to Treasury servers, the administration is pushing to hardwire cybersecurity into trade deals.
Expert advice is clear: patch your network equipment, force regular credential rotations, and share threat info with both the government and other at-risk firms. Silence benefits only the attackers. If youâre a CIS admin or just someone who wants their lights to stay on, double-check your systemâs firmware and read up on zero-day bulletins. China isnât playing by the old rules, and neither can we.
Thatâs your pulse check from Digital Dragon Watch this week. Subscribe to stay updated, and protect those endpoints! Thanks for tuning in. This has been a quiet please production, for more check out quiet please dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
View all episodes
By Inception Point AiThis is your Digital Dragon Watch: Weekly China Cyber Alert podcast.
Hey listeners, Ting here! Buckle up for the Digital Dragon Watch, because this week in China cyber-land, the dragons have been busy breathing digital fire. Letâs get right to it. If youâve had trouble buying a cup of coffee or making a call recently, odds are good some Chinese malware was lurking behind the scenes. The most jaw-dropping news comes straight from a CBS investigation, where Tim Haugh, retired head of NSA and U.S. Cyber Command, spelled out just how far the tentacles have reached. Chinaâs hackers are no longer satisfied with just poking at the militaryâtheyâre in your utilities, your local water plant, even Littleton, Massachusetts, where the general manager Nick Lawler had to rebuild his network after the FBI caught the Chinese lurking and siphoning logins. These attackers werenât on a smash-and-grabâno ransomware, no fancy malware. They just grabbed credentials and posed as employees, staying dormant until they need to flip the switch. That stealthy âwait and watchâ mode is the new show in town.
According to Googleâs Mandiant unit, the BRICKSTORM malware campaign, run by the notorious UNC5221 team, isnât just poking; itâs embedding itself deep and staying undetected for an average of 400 days. This crew targets law firms, SaaS providersâyou name itâlaying the groundwork for larger exploits or to pounce when tensions rise. The vectors? Unpatched firewalls and network appliances, often exploiting zero-day vulnerabilities. The PLA has a cyber force of 60,000, and unlike the U.S., a much higher percentage is focused on offense. They even use âpseudo-privateâ contractors to mask state involvement. Imagine hackers-for-hire, but funded by Beijing.
Itâs not all cloak-and-dagger. Hong Kong just wrapped its massive Cybersecurity Attack and Defence Drill with 15 Red Teams and 34 government departments sparring for three days. Tony Wong, Hong Kongâs Commissioner for Digital Policy, was all smiles at the closing. The drill inspected everything from ticketing systems to legislative databases, stress-testing these defenses ahead of the upcoming National Games and elections, with teams swapping attack techniques and defense strategies in real-time.
Back home, government response is ramping up. The Protecting America from Cyber Threats Act just hit the Senate. Championed by Senators Gary Peters and Mike Rounds, this bill renews the vital information sharing law, letting private firms flag threats like the infamous Salt Typhoon attacks, and giving the feds more ammo to respond. And yes, after that DOJ indictment of twelve Chinese operativesâincluding two Ministry of Public Security officialsâfor hacking everything from dissident laptops to Treasury servers, the administration is pushing to hardwire cybersecurity into trade deals.
Expert advice is clear: patch your network equipment, force regular credential rotations, and share threat info with both the government and other at-risk firms. Silence benefits only the attackers. If youâre a CIS admin or just someone who wants their lights to stay on, double-check your systemâs firmware and read up on zero-day bulletins. China isnât playing by the old rules, and neither can we.
Thatâs your pulse check from Digital Dragon Watch this week. Subscribe to stay updated, and protect those endpoints! Thanks for tuning in. This has been a quiet please production, for more check out quiet please dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here! Buckle up for the Digital Dragon Watch, because this week in China cyber-land, the dragons have been busy breathing digital fire. Letâs get right to it. If youâve had trouble buying a cup of coffee or making a call recently, odds are good some Chinese malware was lurking behind the scenes. The most jaw-dropping news comes straight from a CBS investigation, where Tim Haugh, retired head of NSA and U.S. Cyber Command, spelled out just how far the tentacles have reached. Chinaâs hackers are no longer satisfied with just poking at the militaryâtheyâre in your utilities, your local water plant, even Littleton, Massachusetts, where the general manager Nick Lawler had to rebuild his network after the FBI caught the Chinese lurking and siphoning logins. These attackers werenât on a smash-and-grabâno ransomware, no fancy malware. They just grabbed credentials and posed as employees, staying dormant until they need to flip the switch. That stealthy âwait and watchâ mode is the new show in town.
According to Googleâs Mandiant unit, the BRICKSTORM malware campaign, run by the notorious UNC5221 team, isnât just poking; itâs embedding itself deep and staying undetected for an average of 400 days. This crew targets law firms, SaaS providersâyou name itâlaying the groundwork for larger exploits or to pounce when tensions rise. The vectors? Unpatched firewalls and network appliances, often exploiting zero-day vulnerabilities. The PLA has a cyber force of 60,000, and unlike the U.S., a much higher percentage is focused on offense. They even use âpseudo-privateâ contractors to mask state involvement. Imagine hackers-for-hire, but funded by Beijing.
Itâs not all cloak-and-dagger. Hong Kong just wrapped its massive Cybersecurity Attack and Defence Drill with 15 Red Teams and 34 government departments sparring for three days. Tony Wong, Hong Kongâs Commissioner for Digital Policy, was all smiles at the closing. The drill inspected everything from ticketing systems to legislative databases, stress-testing these defenses ahead of the upcoming National Games and elections, with teams swapping attack techniques and defense strategies in real-time.
Back home, government response is ramping up. The Protecting America from Cyber Threats Act just hit the Senate. Championed by Senators Gary Peters and Mike Rounds, this bill renews the vital information sharing law, letting private firms flag threats like the infamous Salt Typhoon attacks, and giving the feds more ammo to respond. And yes, after that DOJ indictment of twelve Chinese operativesâincluding two Ministry of Public Security officialsâfor hacking everything from dissident laptops to Treasury servers, the administration is pushing to hardwire cybersecurity into trade deals.
Expert advice is clear: patch your network equipment, force regular credential rotations, and share threat info with both the government and other at-risk firms. Silence benefits only the attackers. If youâre a CIS admin or just someone who wants their lights to stay on, double-check your systemâs firmware and read up on zero-day bulletins. China isnât playing by the old rules, and neither can we.
Thatâs your pulse check from Digital Dragon Watch this week. Subscribe to stay updated, and protect those endpoints! Thanks for tuning in. This has been a quiet please production, for more check out quiet please dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI