Sign up to save your podcasts
Or
Share China's Hacking Spree: Backdoors, Blind Spots, and Body Blows - Ting Dishes the Deets on Digital Dragon Watch
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
China's Hacking Spree: Backdoors, Blind Spots, and Body Blows - Ting Dishes the Deets on Digital Dragon Watch
This is your Digital Dragon Watch: Weekly China Cyber Alert podcast.
Hey listeners, Ting here with your Digital Dragon Watch weekly China cyber alert. Let's dive straight into what's been heating up in the past seven days because trust me, it's been absolutely wild out there.
So here's the thing that's got everyone's attention right now. According to the House Committee on Homeland Security, China-linked threat actors just pulled off something absolutely audacious in July. Three PRC-associated groups, Storm-2603, Linen Typhoon, and Violet Typhoon, compromised over four hundred organizations through Microsoft SharePoint, and we're talking about some serious targets here. The Department of Energy, the Department of Homeland Security, and the Department of Health and Human Services all got hit. This wasn't some random targeting either. These actors were basically doing a masterclass in supply chain infiltration.
But here's where it gets even spicier. The U.S. National Security Agency director recently warned that China is actively hacking into American electrical infrastructure. We're not talking about probing or testing anymore. These guys are pre-positioning backdoors in power grid control systems. They're essentially laying groundwork that could let them disrupt or degrade services if things escalate, especially around Taiwan scenarios. Think of it like they're installing pressure valves that they could turn whenever they feel like it.
Moving to this week specifically, the Chinese hacker group Bronze Butler just exploited a zero-day vulnerability in Lanscope Endpoint Manager from Motex. According to Sophos and Thailand's CERT, these attacks started in mid-2025, way before Motex even patched it on October twentieth. They deployed something called GoKC P Door malware to steal data. That's the kind of precision timing that shows these aren't amateur hour operations.
Meanwhile, UNC5221, another China-linked threat actor cluster, straight up stole source code and internal vulnerability data from F5's BIG-IP development environment. They grabbed actual CVE information before patches even existed. It's like they're getting shopping lists of future vulnerabilities.
The manufacturing sector's been taking absolute body blows. The Homeland Security Committee snapshot shows manufacturing experienced twenty-six percent of all cyberattacks this year, with finance and insurance at twenty-three percent. So far in twenty twenty-five, major cyberattacks on state and local governments have been recorded in at least forty-four U.S. states.
What's particularly concerning is that Chinese cyber espionage efforts rose one hundred fifty percent in twenty twenty-four compared to the previous year according to CrowdStrike. Their targeted attacks on financial services, media, manufacturing, and industrial sectors jumped three hundred percent. That's not gradual escalation, that's a sprint.
The real problem right now is that the federal government shutdown coupled with the lapse of the Cybersecurity Information Sharing Act of twenty fifteen is seriously hampering defensive coordination. The House Homeland Security Committee chairman Andrew Garbarino literally said we're creating blind spots in our networks when we need visibility most.
For protection, experts recommend treating Chinese cyber and supply chain exposure as a standing threat in your overall strategic planning. This is about whole-of-society resilience now.
Thanks for tuning in to Digital Dragon Watch. Don't forget to subscribe for next week's update. This has been a Quiet Please production. For more, check out quietplease dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here with your Digital Dragon Watch weekly China cyber alert. Let's dive straight into what's been heating up in the past seven days because trust me, it's been absolutely wild out there.
So here's the thing that's got everyone's attention right now. According to the House Committee on Homeland Security, China-linked threat actors just pulled off something absolutely audacious in July. Three PRC-associated groups, Storm-2603, Linen Typhoon, and Violet Typhoon, compromised over four hundred organizations through Microsoft SharePoint, and we're talking about some serious targets here. The Department of Energy, the Department of Homeland Security, and the Department of Health and Human Services all got hit. This wasn't some random targeting either. These actors were basically doing a masterclass in supply chain infiltration.
But here's where it gets even spicier. The U.S. National Security Agency director recently warned that China is actively hacking into American electrical infrastructure. We're not talking about probing or testing anymore. These guys are pre-positioning backdoors in power grid control systems. They're essentially laying groundwork that could let them disrupt or degrade services if things escalate, especially around Taiwan scenarios. Think of it like they're installing pressure valves that they could turn whenever they feel like it.
Moving to this week specifically, the Chinese hacker group Bronze Butler just exploited a zero-day vulnerability in Lanscope Endpoint Manager from Motex. According to Sophos and Thailand's CERT, these attacks started in mid-2025, way before Motex even patched it on October twentieth. They deployed something called GoKC P Door malware to steal data. That's the kind of precision timing that shows these aren't amateur hour operations.
Meanwhile, UNC5221, another China-linked threat actor cluster, straight up stole source code and internal vulnerability data from F5's BIG-IP development environment. They grabbed actual CVE information before patches even existed. It's like they're getting shopping lists of future vulnerabilities.
The manufacturing sector's been taking absolute body blows. The Homeland Security Committee snapshot shows manufacturing experienced twenty-six percent of all cyberattacks this year, with finance and insurance at twenty-three percent. So far in twenty twenty-five, major cyberattacks on state and local governments have been recorded in at least forty-four U.S. states.
What's particularly concerning is that Chinese cyber espionage efforts rose one hundred fifty percent in twenty twenty-four compared to the previous year according to CrowdStrike. Their targeted attacks on financial services, media, manufacturing, and industrial sectors jumped three hundred percent. That's not gradual escalation, that's a sprint.
The real problem right now is that the federal government shutdown coupled with the lapse of the Cybersecurity Information Sharing Act of twenty fifteen is seriously hampering defensive coordination. The House Homeland Security Committee chairman Andrew Garbarino literally said we're creating blind spots in our networks when we need visibility most.
For protection, experts recommend treating Chinese cyber and supply chain exposure as a standing threat in your overall strategic planning. This is about whole-of-society resilience now.
Thanks for tuning in to Digital Dragon Watch. Don't forget to subscribe for next week's update. This has been a Quiet Please production. For more, check out quietplease dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
View all episodes
By Inception Point AiThis is your Digital Dragon Watch: Weekly China Cyber Alert podcast.
Hey listeners, Ting here with your Digital Dragon Watch weekly China cyber alert. Let's dive straight into what's been heating up in the past seven days because trust me, it's been absolutely wild out there.
So here's the thing that's got everyone's attention right now. According to the House Committee on Homeland Security, China-linked threat actors just pulled off something absolutely audacious in July. Three PRC-associated groups, Storm-2603, Linen Typhoon, and Violet Typhoon, compromised over four hundred organizations through Microsoft SharePoint, and we're talking about some serious targets here. The Department of Energy, the Department of Homeland Security, and the Department of Health and Human Services all got hit. This wasn't some random targeting either. These actors were basically doing a masterclass in supply chain infiltration.
But here's where it gets even spicier. The U.S. National Security Agency director recently warned that China is actively hacking into American electrical infrastructure. We're not talking about probing or testing anymore. These guys are pre-positioning backdoors in power grid control systems. They're essentially laying groundwork that could let them disrupt or degrade services if things escalate, especially around Taiwan scenarios. Think of it like they're installing pressure valves that they could turn whenever they feel like it.
Moving to this week specifically, the Chinese hacker group Bronze Butler just exploited a zero-day vulnerability in Lanscope Endpoint Manager from Motex. According to Sophos and Thailand's CERT, these attacks started in mid-2025, way before Motex even patched it on October twentieth. They deployed something called GoKC P Door malware to steal data. That's the kind of precision timing that shows these aren't amateur hour operations.
Meanwhile, UNC5221, another China-linked threat actor cluster, straight up stole source code and internal vulnerability data from F5's BIG-IP development environment. They grabbed actual CVE information before patches even existed. It's like they're getting shopping lists of future vulnerabilities.
The manufacturing sector's been taking absolute body blows. The Homeland Security Committee snapshot shows manufacturing experienced twenty-six percent of all cyberattacks this year, with finance and insurance at twenty-three percent. So far in twenty twenty-five, major cyberattacks on state and local governments have been recorded in at least forty-four U.S. states.
What's particularly concerning is that Chinese cyber espionage efforts rose one hundred fifty percent in twenty twenty-four compared to the previous year according to CrowdStrike. Their targeted attacks on financial services, media, manufacturing, and industrial sectors jumped three hundred percent. That's not gradual escalation, that's a sprint.
The real problem right now is that the federal government shutdown coupled with the lapse of the Cybersecurity Information Sharing Act of twenty fifteen is seriously hampering defensive coordination. The House Homeland Security Committee chairman Andrew Garbarino literally said we're creating blind spots in our networks when we need visibility most.
For protection, experts recommend treating Chinese cyber and supply chain exposure as a standing threat in your overall strategic planning. This is about whole-of-society resilience now.
Thanks for tuning in to Digital Dragon Watch. Don't forget to subscribe for next week's update. This has been a Quiet Please production. For more, check out quietplease dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here with your Digital Dragon Watch weekly China cyber alert. Let's dive straight into what's been heating up in the past seven days because trust me, it's been absolutely wild out there.
So here's the thing that's got everyone's attention right now. According to the House Committee on Homeland Security, China-linked threat actors just pulled off something absolutely audacious in July. Three PRC-associated groups, Storm-2603, Linen Typhoon, and Violet Typhoon, compromised over four hundred organizations through Microsoft SharePoint, and we're talking about some serious targets here. The Department of Energy, the Department of Homeland Security, and the Department of Health and Human Services all got hit. This wasn't some random targeting either. These actors were basically doing a masterclass in supply chain infiltration.
But here's where it gets even spicier. The U.S. National Security Agency director recently warned that China is actively hacking into American electrical infrastructure. We're not talking about probing or testing anymore. These guys are pre-positioning backdoors in power grid control systems. They're essentially laying groundwork that could let them disrupt or degrade services if things escalate, especially around Taiwan scenarios. Think of it like they're installing pressure valves that they could turn whenever they feel like it.
Moving to this week specifically, the Chinese hacker group Bronze Butler just exploited a zero-day vulnerability in Lanscope Endpoint Manager from Motex. According to Sophos and Thailand's CERT, these attacks started in mid-2025, way before Motex even patched it on October twentieth. They deployed something called GoKC P Door malware to steal data. That's the kind of precision timing that shows these aren't amateur hour operations.
Meanwhile, UNC5221, another China-linked threat actor cluster, straight up stole source code and internal vulnerability data from F5's BIG-IP development environment. They grabbed actual CVE information before patches even existed. It's like they're getting shopping lists of future vulnerabilities.
The manufacturing sector's been taking absolute body blows. The Homeland Security Committee snapshot shows manufacturing experienced twenty-six percent of all cyberattacks this year, with finance and insurance at twenty-three percent. So far in twenty twenty-five, major cyberattacks on state and local governments have been recorded in at least forty-four U.S. states.
What's particularly concerning is that Chinese cyber espionage efforts rose one hundred fifty percent in twenty twenty-four compared to the previous year according to CrowdStrike. Their targeted attacks on financial services, media, manufacturing, and industrial sectors jumped three hundred percent. That's not gradual escalation, that's a sprint.
The real problem right now is that the federal government shutdown coupled with the lapse of the Cybersecurity Information Sharing Act of twenty fifteen is seriously hampering defensive coordination. The House Homeland Security Committee chairman Andrew Garbarino literally said we're creating blind spots in our networks when we need visibility most.
For protection, experts recommend treating Chinese cyber and supply chain exposure as a standing threat in your overall strategic planning. This is about whole-of-society resilience now.
Thanks for tuning in to Digital Dragon Watch. Don't forget to subscribe for next week's update. This has been a Quiet Please production. For more, check out quietplease dot ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI