Sign up to save your podcasts
Or
Share Ooh, Juicy! Chinese Backdoors in US Hospitals, Sneaky RedSilk Malware, and a Cityworks Hacking Bonanza
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Ooh, Juicy! Chinese Backdoors in US Hospitals, Sneaky RedSilk Malware, and a Cityworks Hacking Bonanza
This is your China Hack Report: Daily US Tech Defense podcast.
Good evening, cyber sleuths and defense buffs. Ting here—your digital detective with a penchant for dumplings and DDoS drama—bringing you the pulse of China-linked cyber activity from the last 24 hours, all wrapped in today’s edition of China Hack Report: Daily US Tech Defense.
Let’s cut straight to the action. The biggest headline this cycle? CISA has intensified its warnings to all health sector operators after critical revelations about compromised medical devices. Here’s why. Following the Masimo attack disruption in April, researchers have now flagged two popular patient monitors by a Chinese manufacturer. These monitors didn’t just fumble security best practices—they had a backdoor deliberately embedded in their firmware, quietly siphoning off sensitive patient data straight to a Chinese university. The intent appears crystal clear: sustained espionage and data gathering on American health infrastructure. CISA’s latest bulletin is urging every hospital and clinic to audit their connected devices, patch where possible, and immediately segment all Chinese-made tech from their primary networks.
But healthcare’s not the only front. Municipal governments across the US are getting pounded. Chinese-speaking threat actors are actively exploiting a vulnerability in Cityworks—a platform powering everything from water utilities to emergency response. If your town runs on Cityworks, chances are the attacker is already prowling your network. At least two dozen midsize city IT departments scrambled to deploy emergency patches overnight, often with CISA’s guidance on rapid isolation and forensics. The key advice? Update all Cityworks modules, monitor for suspicious east-west traffic, and rehearse manual fallback procedures in case digital municipal services go dark.
Now, let’s talk about the newly discovered malicious tools. Yesterday, analysts at FireEye broke news on "RedSilk," a modular remote access trojan found lurking in compromised city networks—a Swiss Army knife of cyber-espionage, able to exfiltrate credentials, pivot laterally, and deploy ransomware as a diversion. RedSilk leverages phishing lures tailored to government HR portals—so if you received an urgent payroll adjustment email, check your links twice and call IT before clicking.
The Treasury Department is still feeling last winter's aftershock from that brazen CCP-backed incursion. While no major new breaches were reported today, the department released a joint statement with CISA, reminding everyone that Beijing's long game isn't just disruption—it’s pre-positioning inside critical networks. Their aim: readiness for coordinated shutdowns, especially as political tensions rise over Taiwan.
So, what’s the 24-hour firewall checklist? If you run health sector tech, pull every Chinese-connected device for a firmware check and apply emergency patches. If your municipality relies on Cityworks, review your access logs, patch all endpoints, and update your disaster recovery playbooks. Stay vigilant for RedSilk phishing. And, above all, treat every “routine” update from China-linked vendors with zero trust.
That’s the cyber state of play, straight from Ting’s terminal. Stay sharp, stay patched, and don’t let your heart—or your city—get hacked.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
Good evening, cyber sleuths and defense buffs. Ting here—your digital detective with a penchant for dumplings and DDoS drama—bringing you the pulse of China-linked cyber activity from the last 24 hours, all wrapped in today’s edition of China Hack Report: Daily US Tech Defense.
Let’s cut straight to the action. The biggest headline this cycle? CISA has intensified its warnings to all health sector operators after critical revelations about compromised medical devices. Here’s why. Following the Masimo attack disruption in April, researchers have now flagged two popular patient monitors by a Chinese manufacturer. These monitors didn’t just fumble security best practices—they had a backdoor deliberately embedded in their firmware, quietly siphoning off sensitive patient data straight to a Chinese university. The intent appears crystal clear: sustained espionage and data gathering on American health infrastructure. CISA’s latest bulletin is urging every hospital and clinic to audit their connected devices, patch where possible, and immediately segment all Chinese-made tech from their primary networks.
But healthcare’s not the only front. Municipal governments across the US are getting pounded. Chinese-speaking threat actors are actively exploiting a vulnerability in Cityworks—a platform powering everything from water utilities to emergency response. If your town runs on Cityworks, chances are the attacker is already prowling your network. At least two dozen midsize city IT departments scrambled to deploy emergency patches overnight, often with CISA’s guidance on rapid isolation and forensics. The key advice? Update all Cityworks modules, monitor for suspicious east-west traffic, and rehearse manual fallback procedures in case digital municipal services go dark.
Now, let’s talk about the newly discovered malicious tools. Yesterday, analysts at FireEye broke news on "RedSilk," a modular remote access trojan found lurking in compromised city networks—a Swiss Army knife of cyber-espionage, able to exfiltrate credentials, pivot laterally, and deploy ransomware as a diversion. RedSilk leverages phishing lures tailored to government HR portals—so if you received an urgent payroll adjustment email, check your links twice and call IT before clicking.
The Treasury Department is still feeling last winter's aftershock from that brazen CCP-backed incursion. While no major new breaches were reported today, the department released a joint statement with CISA, reminding everyone that Beijing's long game isn't just disruption—it’s pre-positioning inside critical networks. Their aim: readiness for coordinated shutdowns, especially as political tensions rise over Taiwan.
So, what’s the 24-hour firewall checklist? If you run health sector tech, pull every Chinese-connected device for a firmware check and apply emergency patches. If your municipality relies on Cityworks, review your access logs, patch all endpoints, and update your disaster recovery playbooks. Stay vigilant for RedSilk phishing. And, above all, treat every “routine” update from China-linked vendors with zero trust.
That’s the cyber state of play, straight from Ting’s terminal. Stay sharp, stay patched, and don’t let your heart—or your city—get hacked.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
View all episodes
By Quiet. PleaseThis is your China Hack Report: Daily US Tech Defense podcast.
Good evening, cyber sleuths and defense buffs. Ting here—your digital detective with a penchant for dumplings and DDoS drama—bringing you the pulse of China-linked cyber activity from the last 24 hours, all wrapped in today’s edition of China Hack Report: Daily US Tech Defense.
Let’s cut straight to the action. The biggest headline this cycle? CISA has intensified its warnings to all health sector operators after critical revelations about compromised medical devices. Here’s why. Following the Masimo attack disruption in April, researchers have now flagged two popular patient monitors by a Chinese manufacturer. These monitors didn’t just fumble security best practices—they had a backdoor deliberately embedded in their firmware, quietly siphoning off sensitive patient data straight to a Chinese university. The intent appears crystal clear: sustained espionage and data gathering on American health infrastructure. CISA’s latest bulletin is urging every hospital and clinic to audit their connected devices, patch where possible, and immediately segment all Chinese-made tech from their primary networks.
But healthcare’s not the only front. Municipal governments across the US are getting pounded. Chinese-speaking threat actors are actively exploiting a vulnerability in Cityworks—a platform powering everything from water utilities to emergency response. If your town runs on Cityworks, chances are the attacker is already prowling your network. At least two dozen midsize city IT departments scrambled to deploy emergency patches overnight, often with CISA’s guidance on rapid isolation and forensics. The key advice? Update all Cityworks modules, monitor for suspicious east-west traffic, and rehearse manual fallback procedures in case digital municipal services go dark.
Now, let’s talk about the newly discovered malicious tools. Yesterday, analysts at FireEye broke news on "RedSilk," a modular remote access trojan found lurking in compromised city networks—a Swiss Army knife of cyber-espionage, able to exfiltrate credentials, pivot laterally, and deploy ransomware as a diversion. RedSilk leverages phishing lures tailored to government HR portals—so if you received an urgent payroll adjustment email, check your links twice and call IT before clicking.
The Treasury Department is still feeling last winter's aftershock from that brazen CCP-backed incursion. While no major new breaches were reported today, the department released a joint statement with CISA, reminding everyone that Beijing's long game isn't just disruption—it’s pre-positioning inside critical networks. Their aim: readiness for coordinated shutdowns, especially as political tensions rise over Taiwan.
So, what’s the 24-hour firewall checklist? If you run health sector tech, pull every Chinese-connected device for a firmware check and apply emergency patches. If your municipality relies on Cityworks, review your access logs, patch all endpoints, and update your disaster recovery playbooks. Stay vigilant for RedSilk phishing. And, above all, treat every “routine” update from China-linked vendors with zero trust.
That’s the cyber state of play, straight from Ting’s terminal. Stay sharp, stay patched, and don’t let your heart—or your city—get hacked.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
Good evening, cyber sleuths and defense buffs. Ting here—your digital detective with a penchant for dumplings and DDoS drama—bringing you the pulse of China-linked cyber activity from the last 24 hours, all wrapped in today’s edition of China Hack Report: Daily US Tech Defense.
Let’s cut straight to the action. The biggest headline this cycle? CISA has intensified its warnings to all health sector operators after critical revelations about compromised medical devices. Here’s why. Following the Masimo attack disruption in April, researchers have now flagged two popular patient monitors by a Chinese manufacturer. These monitors didn’t just fumble security best practices—they had a backdoor deliberately embedded in their firmware, quietly siphoning off sensitive patient data straight to a Chinese university. The intent appears crystal clear: sustained espionage and data gathering on American health infrastructure. CISA’s latest bulletin is urging every hospital and clinic to audit their connected devices, patch where possible, and immediately segment all Chinese-made tech from their primary networks.
But healthcare’s not the only front. Municipal governments across the US are getting pounded. Chinese-speaking threat actors are actively exploiting a vulnerability in Cityworks—a platform powering everything from water utilities to emergency response. If your town runs on Cityworks, chances are the attacker is already prowling your network. At least two dozen midsize city IT departments scrambled to deploy emergency patches overnight, often with CISA’s guidance on rapid isolation and forensics. The key advice? Update all Cityworks modules, monitor for suspicious east-west traffic, and rehearse manual fallback procedures in case digital municipal services go dark.
Now, let’s talk about the newly discovered malicious tools. Yesterday, analysts at FireEye broke news on "RedSilk," a modular remote access trojan found lurking in compromised city networks—a Swiss Army knife of cyber-espionage, able to exfiltrate credentials, pivot laterally, and deploy ransomware as a diversion. RedSilk leverages phishing lures tailored to government HR portals—so if you received an urgent payroll adjustment email, check your links twice and call IT before clicking.
The Treasury Department is still feeling last winter's aftershock from that brazen CCP-backed incursion. While no major new breaches were reported today, the department released a joint statement with CISA, reminding everyone that Beijing's long game isn't just disruption—it’s pre-positioning inside critical networks. Their aim: readiness for coordinated shutdowns, especially as political tensions rise over Taiwan.
So, what’s the 24-hour firewall checklist? If you run health sector tech, pull every Chinese-connected device for a firmware check and apply emergency patches. If your municipality relies on Cityworks, review your access logs, patch all endpoints, and update your disaster recovery playbooks. Stay vigilant for RedSilk phishing. And, above all, treat every “routine” update from China-linked vendors with zero trust.
That’s the cyber state of play, straight from Ting’s terminal. Stay sharp, stay patched, and don’t let your heart—or your city—get hacked.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta