Sign up to save your podcasts
Or
Share Juicy Hacks: China's Cyber Spies Caught Red-Handed in US Telco and Treasury Breaches!
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Juicy Hacks: China's Cyber Spies Caught Red-Handed in US Telco and Treasury Breaches!
This is your China Hack Report: Daily US Tech Defense podcast.
Hey there, I'm Ting, and welcome to my daily China hack report. It's been a wild ride in the world of cybersecurity, especially with China-linked activities. Let's dive right in.
Over the past 24 hours, we've seen some critical developments. The big story is the ongoing saga of Chinese APTs targeting US interests. Specifically, the Salt Typhoon group has been in the news for breaching multiple US telco providers, including AT&T and Verizon. This gave them the ability to geolocate millions of devices and record communications of high-value targets[1][3].
But that's not all. The US Treasury Department was also compromised due to a vulnerability in BeyondTrust, which was exploited by another Chinese APT, Flax Typhoon. This group has been linked to malicious actions against US critical infrastructure providers in 2022 and 2023. The Office of Foreign Assets Control (OFAC), which administers economic and trade sanctions, was a particular target, providing insight into potential upcoming sanctions[1][2].
In response, the US has sanctioned Beijing-based Integrity Technology Group, Inc., a cybersecurity group linked to Flax Typhoon. CISA has also added the BeyondTrust vulnerabilities to its Known Exploited Vulnerabilities (KEV) list, emphasizing the need for immediate patches[1][2].
National Cyber Director Harry Coker Jr. has called for the US to do more to deter China as a cybersecurity threat, but the specifics of what needs to be done are still unclear. Meanwhile, AT&T and Verizon have reported purging the Salt Typhoon intrusion from their networks and notifying targeted individuals[1][2].
In other news, the Committee on Foreign Investment in the US (CFIUS), which oversees foreign investment, including from China, was also targeted in the Treasury breach. This adds another layer to the tense geopolitical situation[1][2].
So, what can you do? CISA recommends immediate patches for the BeyondTrust vulnerabilities and heightened vigilance against Chinese APTs. It's also crucial to stay informed about these evolving threats. Stay safe out there, and I'll catch you in the next update.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
Hey there, I'm Ting, and welcome to my daily China hack report. It's been a wild ride in the world of cybersecurity, especially with China-linked activities. Let's dive right in.
Over the past 24 hours, we've seen some critical developments. The big story is the ongoing saga of Chinese APTs targeting US interests. Specifically, the Salt Typhoon group has been in the news for breaching multiple US telco providers, including AT&T and Verizon. This gave them the ability to geolocate millions of devices and record communications of high-value targets[1][3].
But that's not all. The US Treasury Department was also compromised due to a vulnerability in BeyondTrust, which was exploited by another Chinese APT, Flax Typhoon. This group has been linked to malicious actions against US critical infrastructure providers in 2022 and 2023. The Office of Foreign Assets Control (OFAC), which administers economic and trade sanctions, was a particular target, providing insight into potential upcoming sanctions[1][2].
In response, the US has sanctioned Beijing-based Integrity Technology Group, Inc., a cybersecurity group linked to Flax Typhoon. CISA has also added the BeyondTrust vulnerabilities to its Known Exploited Vulnerabilities (KEV) list, emphasizing the need for immediate patches[1][2].
National Cyber Director Harry Coker Jr. has called for the US to do more to deter China as a cybersecurity threat, but the specifics of what needs to be done are still unclear. Meanwhile, AT&T and Verizon have reported purging the Salt Typhoon intrusion from their networks and notifying targeted individuals[1][2].
In other news, the Committee on Foreign Investment in the US (CFIUS), which oversees foreign investment, including from China, was also targeted in the Treasury breach. This adds another layer to the tense geopolitical situation[1][2].
So, what can you do? CISA recommends immediate patches for the BeyondTrust vulnerabilities and heightened vigilance against Chinese APTs. It's also crucial to stay informed about these evolving threats. Stay safe out there, and I'll catch you in the next update.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
View all episodes
By Quiet. PleaseThis is your China Hack Report: Daily US Tech Defense podcast.
Hey there, I'm Ting, and welcome to my daily China hack report. It's been a wild ride in the world of cybersecurity, especially with China-linked activities. Let's dive right in.
Over the past 24 hours, we've seen some critical developments. The big story is the ongoing saga of Chinese APTs targeting US interests. Specifically, the Salt Typhoon group has been in the news for breaching multiple US telco providers, including AT&T and Verizon. This gave them the ability to geolocate millions of devices and record communications of high-value targets[1][3].
But that's not all. The US Treasury Department was also compromised due to a vulnerability in BeyondTrust, which was exploited by another Chinese APT, Flax Typhoon. This group has been linked to malicious actions against US critical infrastructure providers in 2022 and 2023. The Office of Foreign Assets Control (OFAC), which administers economic and trade sanctions, was a particular target, providing insight into potential upcoming sanctions[1][2].
In response, the US has sanctioned Beijing-based Integrity Technology Group, Inc., a cybersecurity group linked to Flax Typhoon. CISA has also added the BeyondTrust vulnerabilities to its Known Exploited Vulnerabilities (KEV) list, emphasizing the need for immediate patches[1][2].
National Cyber Director Harry Coker Jr. has called for the US to do more to deter China as a cybersecurity threat, but the specifics of what needs to be done are still unclear. Meanwhile, AT&T and Verizon have reported purging the Salt Typhoon intrusion from their networks and notifying targeted individuals[1][2].
In other news, the Committee on Foreign Investment in the US (CFIUS), which oversees foreign investment, including from China, was also targeted in the Treasury breach. This adds another layer to the tense geopolitical situation[1][2].
So, what can you do? CISA recommends immediate patches for the BeyondTrust vulnerabilities and heightened vigilance against Chinese APTs. It's also crucial to stay informed about these evolving threats. Stay safe out there, and I'll catch you in the next update.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
Hey there, I'm Ting, and welcome to my daily China hack report. It's been a wild ride in the world of cybersecurity, especially with China-linked activities. Let's dive right in.
Over the past 24 hours, we've seen some critical developments. The big story is the ongoing saga of Chinese APTs targeting US interests. Specifically, the Salt Typhoon group has been in the news for breaching multiple US telco providers, including AT&T and Verizon. This gave them the ability to geolocate millions of devices and record communications of high-value targets[1][3].
But that's not all. The US Treasury Department was also compromised due to a vulnerability in BeyondTrust, which was exploited by another Chinese APT, Flax Typhoon. This group has been linked to malicious actions against US critical infrastructure providers in 2022 and 2023. The Office of Foreign Assets Control (OFAC), which administers economic and trade sanctions, was a particular target, providing insight into potential upcoming sanctions[1][2].
In response, the US has sanctioned Beijing-based Integrity Technology Group, Inc., a cybersecurity group linked to Flax Typhoon. CISA has also added the BeyondTrust vulnerabilities to its Known Exploited Vulnerabilities (KEV) list, emphasizing the need for immediate patches[1][2].
National Cyber Director Harry Coker Jr. has called for the US to do more to deter China as a cybersecurity threat, but the specifics of what needs to be done are still unclear. Meanwhile, AT&T and Verizon have reported purging the Salt Typhoon intrusion from their networks and notifying targeted individuals[1][2].
In other news, the Committee on Foreign Investment in the US (CFIUS), which oversees foreign investment, including from China, was also targeted in the Treasury breach. This adds another layer to the tense geopolitical situation[1][2].
So, what can you do? CISA recommends immediate patches for the BeyondTrust vulnerabilities and heightened vigilance against Chinese APTs. It's also crucial to stay informed about these evolving threats. Stay safe out there, and I'll catch you in the next update.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta