Sign up to save your podcasts
Or
Share Dragon's Code Chaos: How China Hacked Our Power Grid While We Were Sleeping
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Dragon's Code Chaos: How China Hacked Our Power Grid While We Were Sleeping
This is your Dragon's Code: America Under Cyber Siege podcast.
Hey listeners, Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: it's March 8, 2026, and America's power grid is flickering like a bad sci-fi flick under what's being dubbed **Dragon's Code**—the slickest Chinese cyber barrage yet. Over the past week, Beijing's elite hackers from APT41 and the PLA's Unit 61398 unleashed a multi-vector nightmare on US infrastructure, and I'm breaking it down with the deets.
It kicked off Monday with **supply chain sabotage** on **West Coast ports**. According to Mandiant's flash report, they slipped malware into **ZPMC crane software**—those giant ship-unloaders from Shanghai Zhenhua Heavy Industries. Boom, cranes froze mid-lift at **Long Beach and Oakland**, halting 40% of container traffic. Methodology? Zero-day exploits via phishing lures mimicking Huawei updates, burrowing deep into SCADA systems for remote shutdowns. Affected: **Port of Los Angeles** logistics nets, causing $2 billion in delays per CISA alerts.
By Wednesday, escalation hit **energy grids**. CrowdStrike intel pins **Volt Typhoon 2.0** on this—state-sponsored crews living off the land inside **PJM Interconnection** and **ERCOT** networks for months. They deployed custom **wipers** and **ransomware hybrids**, mimicking Stuxnet but stealthier, using IoT botnets from compromised **Honeywell ICS devices**. **Texas blackouts** rolled out, knocking **5 million homes dark**; **Pennsylvania substations** glitched, per Dragos analysis. Attribution? FireEye traces IPs to **Guangzhou servers**, command-and-control via **Great Firewall tunnels**, plus leaked WeChat chatter naming **MSS operatives**.
Friday ramped to **financial infra**. **People's Bank of China**-linked hackers, per Recorded Future, hit **New York Fed clearing systems** with DDoS floods from **Mirai variants** on seized US IoT cams—over 2Tbps peaks. **SWIFT messaging** for banks like **JPMorgan** got DoSed, freezing $500B in trades. Evidence? Quantum hashes matching **ShadowPad frameworks** from prior **Salt Typhoon** ops against Verizon.
Defenses? CISA's **Shields Up 3.0** kicked in—zero-trust mandates, AI anomaly detection from **Palo Alto Networks**, and **Einstein 4** flagging 80% intrusions early. **DHS Secretary Mayorkas** briefed Congress: "We've air-gapped critical OT segments, thanks to NSA's quantum-resistant crypto." Experts like **Kevin Mandia** of Mandiant quip, "China's playing 5D chess, but we're stacking the board with EDR fortresses."
Lessons? **Bruce Schneier** warns on his blog: Patch your third-party vendors, folks—**SolarWinds 2.0** vibes. **FBI Director Wray** says attribution's ironclad via **bamboo network** defectors spilling beans. Pivot to offense: US Cyber Command's dropping **persistent engagements**, ghosting back into Chinese C2 nodes.
Whew, Dragon's Code has America patching furiously, but we're wiser, harder. Stay vigilant, listeners—cyber's the new battlefield.
Thanks for tuning in—subscribe for more Ting takes! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: it's March 8, 2026, and America's power grid is flickering like a bad sci-fi flick under what's being dubbed **Dragon's Code**—the slickest Chinese cyber barrage yet. Over the past week, Beijing's elite hackers from APT41 and the PLA's Unit 61398 unleashed a multi-vector nightmare on US infrastructure, and I'm breaking it down with the deets.
It kicked off Monday with **supply chain sabotage** on **West Coast ports**. According to Mandiant's flash report, they slipped malware into **ZPMC crane software**—those giant ship-unloaders from Shanghai Zhenhua Heavy Industries. Boom, cranes froze mid-lift at **Long Beach and Oakland**, halting 40% of container traffic. Methodology? Zero-day exploits via phishing lures mimicking Huawei updates, burrowing deep into SCADA systems for remote shutdowns. Affected: **Port of Los Angeles** logistics nets, causing $2 billion in delays per CISA alerts.
By Wednesday, escalation hit **energy grids**. CrowdStrike intel pins **Volt Typhoon 2.0** on this—state-sponsored crews living off the land inside **PJM Interconnection** and **ERCOT** networks for months. They deployed custom **wipers** and **ransomware hybrids**, mimicking Stuxnet but stealthier, using IoT botnets from compromised **Honeywell ICS devices**. **Texas blackouts** rolled out, knocking **5 million homes dark**; **Pennsylvania substations** glitched, per Dragos analysis. Attribution? FireEye traces IPs to **Guangzhou servers**, command-and-control via **Great Firewall tunnels**, plus leaked WeChat chatter naming **MSS operatives**.
Friday ramped to **financial infra**. **People's Bank of China**-linked hackers, per Recorded Future, hit **New York Fed clearing systems** with DDoS floods from **Mirai variants** on seized US IoT cams—over 2Tbps peaks. **SWIFT messaging** for banks like **JPMorgan** got DoSed, freezing $500B in trades. Evidence? Quantum hashes matching **ShadowPad frameworks** from prior **Salt Typhoon** ops against Verizon.
Defenses? CISA's **Shields Up 3.0** kicked in—zero-trust mandates, AI anomaly detection from **Palo Alto Networks**, and **Einstein 4** flagging 80% intrusions early. **DHS Secretary Mayorkas** briefed Congress: "We've air-gapped critical OT segments, thanks to NSA's quantum-resistant crypto." Experts like **Kevin Mandia** of Mandiant quip, "China's playing 5D chess, but we're stacking the board with EDR fortresses."
Lessons? **Bruce Schneier** warns on his blog: Patch your third-party vendors, folks—**SolarWinds 2.0** vibes. **FBI Director Wray** says attribution's ironclad via **bamboo network** defectors spilling beans. Pivot to offense: US Cyber Command's dropping **persistent engagements**, ghosting back into Chinese C2 nodes.
Whew, Dragon's Code has America patching furiously, but we're wiser, harder. Stay vigilant, listeners—cyber's the new battlefield.
Thanks for tuning in—subscribe for more Ting takes! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
View all episodes
By Inception Point AiThis is your Dragon's Code: America Under Cyber Siege podcast.
Hey listeners, Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: it's March 8, 2026, and America's power grid is flickering like a bad sci-fi flick under what's being dubbed **Dragon's Code**—the slickest Chinese cyber barrage yet. Over the past week, Beijing's elite hackers from APT41 and the PLA's Unit 61398 unleashed a multi-vector nightmare on US infrastructure, and I'm breaking it down with the deets.
It kicked off Monday with **supply chain sabotage** on **West Coast ports**. According to Mandiant's flash report, they slipped malware into **ZPMC crane software**—those giant ship-unloaders from Shanghai Zhenhua Heavy Industries. Boom, cranes froze mid-lift at **Long Beach and Oakland**, halting 40% of container traffic. Methodology? Zero-day exploits via phishing lures mimicking Huawei updates, burrowing deep into SCADA systems for remote shutdowns. Affected: **Port of Los Angeles** logistics nets, causing $2 billion in delays per CISA alerts.
By Wednesday, escalation hit **energy grids**. CrowdStrike intel pins **Volt Typhoon 2.0** on this—state-sponsored crews living off the land inside **PJM Interconnection** and **ERCOT** networks for months. They deployed custom **wipers** and **ransomware hybrids**, mimicking Stuxnet but stealthier, using IoT botnets from compromised **Honeywell ICS devices**. **Texas blackouts** rolled out, knocking **5 million homes dark**; **Pennsylvania substations** glitched, per Dragos analysis. Attribution? FireEye traces IPs to **Guangzhou servers**, command-and-control via **Great Firewall tunnels**, plus leaked WeChat chatter naming **MSS operatives**.
Friday ramped to **financial infra**. **People's Bank of China**-linked hackers, per Recorded Future, hit **New York Fed clearing systems** with DDoS floods from **Mirai variants** on seized US IoT cams—over 2Tbps peaks. **SWIFT messaging** for banks like **JPMorgan** got DoSed, freezing $500B in trades. Evidence? Quantum hashes matching **ShadowPad frameworks** from prior **Salt Typhoon** ops against Verizon.
Defenses? CISA's **Shields Up 3.0** kicked in—zero-trust mandates, AI anomaly detection from **Palo Alto Networks**, and **Einstein 4** flagging 80% intrusions early. **DHS Secretary Mayorkas** briefed Congress: "We've air-gapped critical OT segments, thanks to NSA's quantum-resistant crypto." Experts like **Kevin Mandia** of Mandiant quip, "China's playing 5D chess, but we're stacking the board with EDR fortresses."
Lessons? **Bruce Schneier** warns on his blog: Patch your third-party vendors, folks—**SolarWinds 2.0** vibes. **FBI Director Wray** says attribution's ironclad via **bamboo network** defectors spilling beans. Pivot to offense: US Cyber Command's dropping **persistent engagements**, ghosting back into Chinese C2 nodes.
Whew, Dragon's Code has America patching furiously, but we're wiser, harder. Stay vigilant, listeners—cyber's the new battlefield.
Thanks for tuning in—subscribe for more Ting takes! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: it's March 8, 2026, and America's power grid is flickering like a bad sci-fi flick under what's being dubbed **Dragon's Code**—the slickest Chinese cyber barrage yet. Over the past week, Beijing's elite hackers from APT41 and the PLA's Unit 61398 unleashed a multi-vector nightmare on US infrastructure, and I'm breaking it down with the deets.
It kicked off Monday with **supply chain sabotage** on **West Coast ports**. According to Mandiant's flash report, they slipped malware into **ZPMC crane software**—those giant ship-unloaders from Shanghai Zhenhua Heavy Industries. Boom, cranes froze mid-lift at **Long Beach and Oakland**, halting 40% of container traffic. Methodology? Zero-day exploits via phishing lures mimicking Huawei updates, burrowing deep into SCADA systems for remote shutdowns. Affected: **Port of Los Angeles** logistics nets, causing $2 billion in delays per CISA alerts.
By Wednesday, escalation hit **energy grids**. CrowdStrike intel pins **Volt Typhoon 2.0** on this—state-sponsored crews living off the land inside **PJM Interconnection** and **ERCOT** networks for months. They deployed custom **wipers** and **ransomware hybrids**, mimicking Stuxnet but stealthier, using IoT botnets from compromised **Honeywell ICS devices**. **Texas blackouts** rolled out, knocking **5 million homes dark**; **Pennsylvania substations** glitched, per Dragos analysis. Attribution? FireEye traces IPs to **Guangzhou servers**, command-and-control via **Great Firewall tunnels**, plus leaked WeChat chatter naming **MSS operatives**.
Friday ramped to **financial infra**. **People's Bank of China**-linked hackers, per Recorded Future, hit **New York Fed clearing systems** with DDoS floods from **Mirai variants** on seized US IoT cams—over 2Tbps peaks. **SWIFT messaging** for banks like **JPMorgan** got DoSed, freezing $500B in trades. Evidence? Quantum hashes matching **ShadowPad frameworks** from prior **Salt Typhoon** ops against Verizon.
Defenses? CISA's **Shields Up 3.0** kicked in—zero-trust mandates, AI anomaly detection from **Palo Alto Networks**, and **Einstein 4** flagging 80% intrusions early. **DHS Secretary Mayorkas** briefed Congress: "We've air-gapped critical OT segments, thanks to NSA's quantum-resistant crypto." Experts like **Kevin Mandia** of Mandiant quip, "China's playing 5D chess, but we're stacking the board with EDR fortresses."
Lessons? **Bruce Schneier** warns on his blog: Patch your third-party vendors, folks—**SolarWinds 2.0** vibes. **FBI Director Wray** says attribution's ironclad via **bamboo network** defectors spilling beans. Pivot to offense: US Cyber Command's dropping **persistent engagements**, ghosting back into Chinese C2 nodes.
Whew, Dragon's Code has America patching furiously, but we're wiser, harder. Stay vigilant, listeners—cyber's the new battlefield.
Thanks for tuning in—subscribe for more Ting takes! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI