This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, I'm Ting, your go-to gal for all things China cyber chaos and hacking hijinks. Picture this: it's early January 2026, and Silicon Valley's under siege from Beijing's digital ninjas. Over the past two weeks, we've seen a blitz of ops that make the SolarWinds hack look like a kiddie prank. Let's dive in, shall we?

First up, industrial espionage on steroids. ProPublica's bombshell exposed Microsoft engineers in Shenzhen "digital escorting" Pentagon cloud code for the JWCC program—top-secret Joint Warfighting stuff. President Trump just inked the NDAA banning Chinese engineers from all DoD IT systems, slamming the door on that $18-an-hour backdoor. Critics like Defense Secretary Pete Hegseth call it a fix for Obama-era sloppiness, but Microsoft's scrambling to reshore, jacking up costs.

Then, DarkSpectre hit like a stealth bomber. Koi Security's report dropped January 4th: a Chinese threat actor snagged 8.8 million Chrome, Edge, and Firefox users via legit-looking extensions like Chrome Audio Capture. For seven years, these bad boys played nice, racking up "Verified" badges, then flipped to harvest Zoom intel—meeting URLs, speaker bios from 28 platforms, even M&A whispers. Data funnels to Alibaba Cloud in Hubei, fueling corporate espionage sales to rivals and states. WebSocket exfil to Firebase? Pure genius, listeners—server-side switches mean no app store flags.

Supply chain nightmares? Salt Typhoon, that China-linked crew, infiltrated 200+ US firms per FBI chatter, including critical infra. And Knownsec's leak via Cybernews reveals the firm's state-tied ops, blending defense with offense. Taiwan's NSB reports 2.63 million daily Chinese probes in 2025—up 6%—from BlackTech, Flax Typhoon, Mustang Panda, APT41, UNC3886 hitting energy, hospitals, tech. Ransomware on 20+ hospitals? Brutal.

Strategic fallout? Palo Alto Networks' Nikesh Whitmore warns AI agents are 2026's insider bomb—Chinese spies already weaponized Anthropic's Claude Code for intel grabs in September breaches. DeepSeek's mHC paper January 1st laughs at Nvidia's chip empire, scaling AI cheap and wiping billions off stocks last year. Jet engine spies? A Chinese officer got 20 years for GE Aerospace theft, per Straits Times.

Experts like Counterpoint's Wei Sun say DeepSeek bypasses compute walls; Omdia's Lian Jye Su sees Chinese AI swagger. Future risks? Prompt injections worsen, per Whitmore—lock down or lose. Onshoring's key, but talent shortages loom. Beijing's not slowing; expect Taiwan spikes around Lai Ching-te anniversaries, supply chain DDoS, and Zoom spies at your next earnings call.

Whew, Silicon Siege is real—stay vigilant, audit extensions against Koi's IOCs like infinitynewtab.com.

Thanks for tuning in, listeners—subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, it's Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: I'm hunkered down in my dimly lit war room, screens flickering with the latest feeds from Mandiant, DOJ indictments, and Pentagon reports, as Silicon Siege ramps up like a bad sci-fi thriller set in 2026. Over the past two weeks, China's tech offensive has been a non-stop barrage on US innovation—industrial espionage, IP grabs, supply chain sabotage, and it's all hitting fever pitch right now.

Let's kick off with the fresh breaches Mandiant dropped on Wednesday: suspected Chinese hackers, tracked as a hyper-active crew, infiltrated US software devs and law firms tied to the trade war. They're burrowing into cloud providers like AWS wannabes that US firms rely on, stealing proprietary code from tech giants, then flipping it to hunt vulnerabilities deeper in networks. Charles Carmakal, Mandiant's CTO, called them "the most prevalent adversary in the US for years," lurking undetected for over a year in some spots. FBI's on it, but these ghosts are rampant, echoing the SolarWinds mess but with Beijing's trade-war twist—think Wiley Rein's email hack from summer, law firms dishing client intel on tariffs and national security.

Zoom out to the past fortnight's espionage frenzy from ClearanceJobs recaps: China's MSS plotted to recruit US Navy sailors via shady approaches, while LinkedIn became their playground for grooming clearance holders with fake recruiter gigs. DOJ nailed a Federal Reserve adviser leaking monetary strategies, and don't sleep on the biotech bombshell—a Chinese national smuggled a pathogen into US labs to reverse-engineer proprietary assays. AI's the crown jewel: Leon Ding indicted for swiping 1,000+ Google AI files, xAI suing OpenAI over a rogue engineer allegedly funneling Grok code, and Operation Gatekeeper busting $50 million in smuggled Nvidia GPUs to fuel China's models. Tesla battery leaks, semi designs, aerospace composites—all compromised in this corporate heist wave.

Supply chains? DarkSpectre's seven-year malware saga just blew up, infecting 8.8 million Chrome, Edge, Firefox, and Opera browsers with rogue extensions stealing keystrokes, screenshots, Zoom meeting IDs, and corporate creds. Cyber Press and The Hacker News peg it as Chinese-linked, a stealth data vacuum for espionage gold.

Pentagon's fresh report screams strategic doom: PLA's cyber ops like Volt Typhoon in 2024 burrowed into critical infra, prepping to disrupt US military in a Taiwan showdown by 2027. They're chasing AI, biotech, hypersonics via "multi-faceted" espionage—cyber intrusions, illegal agents—to displace Uncle Sam.

Expert take? Carmakal warns many orgs are compromised blind; DOD says we're "increasingly vulnerable." Future risks? AI-powered autonomy in hacks, per recent disclosures, means autonomous espionage bots scaling this siege. Supply chains stay porous, insiders flip easy—vigilance or bust, folks. China's outnumbering FBI 50-to-1, turning our tech edge into their arsenal.

Thanks for tuning in, listeners—subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, I'm Ting, your go-to gal for all things China cyber chaos and hacker hijinks. Buckle up, because the past two weeks have been a wild ride in the Silicon Siege—China's tech offensive hitting US sectors like a quantum qubit on steroids. We're talking December mid-month to now, New Year's Eve 2025, and it's been non-stop.

Kicking off with industrial espionage: Chinese state hackers, linked to Mustang Panda, planted kernel rootkits like ToneShell straight into Windows systems, as Cybernews reported in mid-September but echoes ramped up lately. Then boom—Anthropic's Logan Graham spilled in a December 17 congressional hearing that Chinese operatives exploited their Claude AI model for autonomous cyberattacks on 30 global orgs, faking ethical pentests to automate 80-90% of hacks. Representative Andy Ogles nailed it: "If we don’t get this right, we’re screwed." Google's Royal Hansen testified attackers are deploying AI malware that morphs mid-execution, pivoting from telecoms like F5 to broader tech.

Intellectual property theft? Oh honey, it's bounty-as-a-service. ClearanceJobs exposed China's "BaaS" luring ex-ASML engineers like Lin Nan from the Shanghai Institute of Optics via aliases in Shenzhen's sealed EUV labs. Reuters via South China Morning Post confirmed they cracked EUV lithography prototypes years early, filing patents off Nan's ASML know-how. Dutch MIVD backs it—cyber ops plus insider grabs targeting semis, aerospace for PLA boosts.

Supply chain nightmares: Straits Times on December 5 detailed "Brickstorm" malware by Chinese hackers infiltrating VMware vSphere from Broadcom, used by US and Canadian gov IT. They burrowed in April 2024, lingered till September, stealing creds for sabotage. CISA's Nick Andersen and acting director Madhu Gottumukkala warned of long-term disruption in critical infra. Google's Threat Intelligence Group saw Brickstorm pivot to legal, software, and tech firms. Meanwhile, DarkSpectre's 2.2 million fake browser extensions, per The Hacker News and SecureBlink, slurped corporate meeting intel via Alibaba C2 servers, ripe for e-commerce fraud on JD.com and Taobao.

Strategic implications? It's not just peeking—it's prepping for war. NSFOCUS November APT insights show spear-phishing dominating 78% of 28 global attacks, now AI-supercharged per Anthropic and Congress. US chip grants to Samsung's Xi’an NAND and SK Hynix's Wuxi DRAM via Reuters keep chains humming under tighter licenses, but China's "50% rule" from SiliconAngle mandates local semis self-sufficiency. Experts like Joe Rooke from risk insights warn hacked humanoid robots could steal designs, escalating to dire threats.

Future risks? Quantum cracks encryption, per hearing witness Zervigon; AI makes attacks continuous, says Coates. Hansen pushes AI defenses, but legacy systems lag. China’s not stopping—Xi hailed tech progress December per WTOP, eyeing Taiwan.

Whew, listeners, that's the siege in real-time—stay vigilant, patch up, and watch your engineers. Thanks for tuning in—subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, Ting here, your go-to cyber sleuth on all things China hacking chaos. Buckle up, because the past two weeks have been a non-stop Silicon Siege—China's tech offensive hitting US sectors like a zero-day storm. We're talking Salt Typhoon hackers burrowing into nine major US telecoms, plus energy, water, and transport grids, with access lingering up to two years, per FBI and CISA alerts. FinanceWire reports these state-sponsored creeps jacked 200 orgs across 80 countries since late August, spiking cyber-espionage 150% year-over-year and tripling hits on manufacturing and finance.

Fast-forward to this December frenzy: Chinese-nexus UNC6512 is blasting CVE-2025-59287 in Microsoft WSUS servers—CVSS 9.8 RCE letting them drop ShadowPad backdoors on 50 US tech, healthcare, and manufacturing firms. CyberWarrior76's forecast nails it: over 100,000 exploit attempts in one week, turning patch managers into malware distributors for supply-chain Armageddon. Meanwhile, Storm-1849/UAT4356 is rooting Cisco ASA firewalls via CVE-2025-20333 and 20362, planting RayInitiator bootkits in ROM on 12 federal agencies, DIB contractors, and banks. CISA's Emergency Directive 25-03 screams urgency—these perimeter kills enable deep espionage, prepping for cyber Pearl Harbor, as Washington Post dubs China's "typhoon strategy."

Industrial espionage? Samsung just got gutted—ten ex-employees indicted for hand-transcribing 10nm DRAM secrets worth $1 billion to China's CXMT, accelerating their HBM2 mass-prod by years, Tom's Hardware says. Low-tech wins: shell companies, coded lingo, no digital trails. Nvidia's IP theft via Singapore shells? Check. ASML trade secrets swiped, but they won't deploy till 2030, per Washington Examiner. US lawmakers like Chairman Moolenaar blast Dutch-Japanese firms fueling Huawei-linked fabs, risking PLA weapons and AI authoritarianism.

Supply chains are bleeding—Nissan's customer data leaked via Red Hat breach, echoing broader Linux vendor hits. Strategic fallout? China's closing LLM gaps per Pentagon, but zombie fabs flop while Xi clamps AI innovation. Experts like Marcellus analysts warn espionage closes gaps fast; CyberWarrior pegs MalCon at Level 3 rising, with holiday gaps widening windows. Future risks? Mass credential theft, ransomware cascades from IABs reselling footholds—340% MFA reset surges. Patch now, or watch your edge crumble.

Thanks for tuning in, listeners—subscribe for more cyber dirt! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

I’m Ting, and you’ve walked into Silicon Siege: China’s Tech Offensive, live from the front lines of the last two weeks.

Let’s start with the juiciest bit: cloud espionage. According to a recent 14‑day cyber threat forecast on Substack, China‑nexus operators weaponized a fresh cloud vulnerability, CVE‑2025‑55182, within a day of disclosure, going straight after U.S. cloud providers hosting semiconductor design, AI training, and biotech workloads. That means source code repos, EDA tool output, and model weights for frontier AI systems sitting in the same target box. Analysts in that forecast bluntly called it “industrial espionage at cloud scale,” and they’re not exaggerating.

Layered on top of that, VFuture Media’s Cybersecurity Countdown 2025 notes that remnants of China’s Volt Typhoon are back in action, shifting from pure infrastructure pre‑positioning into targeted data theft against U.S. chipmakers, quantum startups, and AI infrastructure companies. Mandiant data quoted there says nation‑state incidents hit a record this year, with critical‑infrastructure pre‑positioning up 150 percent, and China is a headline actor in that story.

Now stitch in the hardware side. Techspective’s deep dive on what it calls China’s “Silicon Manhattan Project” describes a state‑backed campaign, overseen by Ding Xuexiang and coordinated by Huawei, to reverse‑engineer ASML‑class EUV lithography. Reuters and Taiwan News reporting cited in that piece say an EUV‑light prototype is already running in a secure lab in Shenzhen. That’s not just IP theft; that’s a strategic jailbreak from U.S. export controls. If Beijing gets “good‑enough” EUV by around 2030, as experts quoted in Techspective warn, the main lever Washington uses to contain Chinese AI—choking off cutting‑edge chips—snaps.

Supply chain compromise isn’t just machines, it’s materials. A Substack analysis called “The 99% Monopoly” walks through how China used its near‑total control over gallium to squeeze U.S. radar and power electronics. The official embargo ended, but the piece makes it clear: Beijing proved it can flip a switch in a filing cabinet on Chang’an Avenue and stall everything from F‑35 radars to 5G base stations. That’s a live strategic backdoor into U.S. tech manufacturing.

Zooming out, AOL’s coverage of 2025 cyber activity points to a major China‑linked cluster dubbed “Salt Typhoon,” hammering Western tech ecosystems alongside North Korean efforts to infiltrate Amazon’s contractor ranks. That’s the human‑layer supply chain: contractors, MSSPs, boutique AI firms feeding the Silicon Valley giants.

Industry experts quoted across these reports converge on the same risk curve: China is moving from smash‑and‑grab hacking to patient, multi‑layered campaigns that blend cloud exploits, hardware replication, and resource choke points. The near‑term risk is accelerated loss of semiconductor and AI IP; the long‑term risk is a world where U.S. firms are competing with clones of their own designs, built on Chinese fabs, powered by Chinese‑controlled materials, and defended by networks seeded years earlier with Chinese access.

So if you’re in U.S. tech right now—cloud, chips, AI, robotics—assume you’re on the board. Zero‑trust isn’t a buzzword, it’s your survival strategy.

Thanks for tuning in, and don’t forget to subscribe so you don’t miss the next breach breakdown. This has been a quiet please production, for more check out quiet please dot ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, I'm Ting, your go-to gal for all things China cyber chaos and hacking hijinks. Picture this: it's the holiday hush of late December 2025, but Silicon Valley's not sipping eggnog—it's sweating a full-on **Silicon Siege** from Beijing's tech warriors. Over the past two weeks, China's cyber ops have lit up the US tech sector like a DDoS fireworks show, blending sneaky espionage with supply chain stabs that'd make even the NSA chuckle nervously.

Let's kick off with the crown jewel: industrial espionage straight out of a spy thriller. South Korea's Seoul Central District Prosecutors just indicted 10 ex-Samsung execs—led by "Mr. A," a former memory dev boss who jumped ship to China's **ChangXin Memory Technologies (CXMT)** in 2016—for swiping 10nm-class DRAM blueprints. One researcher, "Mr. B," dodged digital defenses by hand-copying 600 process steps—temps, chemicals, timings—onto 12 notebook pages and waltzing them out. Samsung's reeling from 5 trillion won ($3.6 billion) in lost revenue, and CXMT's now churning HBM for AI chips, years ahead of schedule. Experts at Domain-B call it "the analog loophole" in our hyper-secure fabs—low-tech genius accelerating China's AI pivot.

Then there's the cyber ninja moves: **Salt Typhoon**, that slick Chinese crew, infiltrated eight US telecom giants like AT&T, Verizon, and T-Mobile, per SIIT reports. They're slurping call records, texts, and unencrypted metadata from law enforcement targets—pure intel gold for Beijing. Biden's team slapped sanctions on **Sichuan Juxinhe Network Technology** for these telecom hacks, but the damage lingers in supply chains ripe for compromise. Kaspersky nailed **Evasive Panda** (aka Bronze Highland) for DNS poisoning from 2022-2024, hitting US-adjacent targets with MgBot backdoors that keylog, steal creds, and lurk forever. Imagine poisoned DNS flipping legit sites to malware drops—AitM wizardry.

IP threats? CXMT's heist funnels straight into Pentagon worries from their 2025 China Military Report: Beijing's LLMs are closing the AI gap, fueling cyber ops and unmanned swarms. Strategic fallout? China's sanctions on 20 US firms like Northrop Grumman and Anduril's Palmer Luckey over Taiwan arms sales scream escalation. Industry sage Fatih Şensoy from Kaspersky warns these ops erode US tech dominance, prepping for hybrid warfare where stolen DRAM powers PLA drones.

Future risks? CYFIRMA's Weekly Intelligence Report predicts deeper supply chain digs via phishing and edge device exploits, with AI-boosted evasion making detection a joke. Harden your perimeters, folks—China's not playing; they're rewriting the chip wars.

Thanks for tuning in, listeners—subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

I’m Ting, and tonight’s episode of Silicon Siege jumps straight into China’s tech offensive against the US—specifically, what’s been happening in the last two weeks across your favorite four-letter words: IP, SOC, and APT.

According to Microsoft’s threat intelligence and the FBI’s recent joint advisories, Chinese state-backed groups like Volt Typhoon and APT31 have ramped up phishing and living‑off‑the‑land attacks against US cloud, semiconductor, and AI infrastructure providers, aiming not to crash systems but to quietly sit in build pipelines, firmware repos, and developer VPNs. Industry analysts at Mandiant say the goal is persistent access to source code, model weights, and chip design files rather than one‑and‑done data heists.

CrowdStrike’s latest reporting describes new Chinese intrusion sets burrowing into DevOps tools at West Coast AI startups—think GitLab, Jenkins, and artifact registries—to skim proprietary LLM architectures and optimization tricks. One red‑team lead in Palo Alto told CyberScoop that some of the stolen CUDA kernels and model compression techniques line up uncannily with performance claims now coming out of Biren Technology and MetaX in Shanghai.

On the hardware side, Tom’s Hardware and several semiconductor analysts have been talking about what they call “supply‑chain ghosting”: Chinese‑linked actors targeting smaller EDA plug‑in vendors and third‑party verification shops that work for big US chip designers. The aim is to exfiltrate fragments of 3‑ and 5‑nanometer reference flows, then recombine them to support Beijing’s homegrown “Manhattan Project” to break the EUV barrier, which outlets like TokenRing have dubbed China’s bid for full semiconductor sovereignty.

CyberNews and former intelligence officials warn that this isn’t just about stealing blueprints; it’s about mapping who builds what, where. By compromising logistics software, smart factory controllers, and even telematics in US‑bound equipment, Chinese operators can profile the entire life cycle of critical chips—from fab to cloud data center—and identify pressure points for future coercion.

Strategically, experts at think tanks in Washington and London are blunt: the line between economic espionage and national security is gone. Stolen AI models accelerate China’s domestic “sovereign AI” push, while stolen chip know‑how shortens the time to parity with US foundries. That means any breach at a Seattle AI startup or an Austin chip design house is no longer a niche corporate problem; it’s a shift in the global balance of compute power.

Looking forward, most cyber leaders expect more supply‑chain attacks, more insider recruitment, and heavier use of AI‑generated phishing tailored from massive data sets like the Salt Typhoon telecom haul described by The American Spectator. The smart money in Silicon Valley is doubling down on zero trust, code‑signing everything, and treating build systems as crown jewels, not plumbing.

Thanks for tuning in, listeners—don’t forget to subscribe so you don’t miss the next breach breakdown. This has been a quiet please production, for more check out quiet please dot ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, I'm Ting, your go-to gal for all things China cyber chaos and hacking hijinks. Buckle up, because the past two weeks have been a non-stop Silicon Siege—China's tech offensive slamming U.S. innovation like a rogue DDoS on steroids. Picture this: I'm hunkered down in my digital war room, caffeine-fueled, watching Beijing's hackers treat American tech sectors like an all-you-can-steal buffet.

Kicking off with industrial espionage, the U.S. Justice Department just dropped indictments on twelve Chinese hackers tied to Ministry of State Security units. These sneaky contractors from outfits linked to Beijing's enforcers have been burrowing into aerospace giants like Boeing, national labs, and defense contractors for years, swiping pandemic research and blueprints. According to CybelAngel’s 2025 threat roundup, it's all about blending cybercrime with state ops for max intel haul. And get this—UAT-9686, that shadowy Chinese crew, exploited a zero-day in Cisco’s AsyncOS software, CVE-2025-20393, hitting Email Security Appliances since early December. Rapid7 scanned and found over 800 exposed Cisco gateways ripe for root access, letting them plant backdoors in Fortune 500 email flows. Cisco’s Talos team is scrambling with workarounds, but it's déjà vu from Salt Typhoon's 2024 telecom rampage.

Supply chain? Oh, it's compromised AF. CISA's fresh alert on Brickstorm malware—deployed by Warp Panda, a China-nexus beast—has been lurking in VMware vCenter setups at legal firms, manufacturers, and tech outfits since 2023, with fresh Rust-based samples popping up last week. CrowdStrike nailed it: these creeps exploit edge devices for long-term persistence, exfiltrating via encrypted WebSockets. Bitsight’s TTP breakdown shows China-aligned actors loving public-facing app exploits like CVE-2025-58360 in GeoServer, plus phishing for creds in telecom and energy. FDD warns Chinese gear on the FCC’s Covered List—like Huawei components—poses sabotage risks to U.S. networks, pushing for bans on any tainted parts.

IP threats? Nonstop. China’s data lake obsession, per ex-colonel Philip Ingram, means stealthy long-dwell ops harvesting proprietary goodies from AI model devs and semis. DeepSeek’s AI is now cozying up with 20 Chinese carmakers for smart vehicle integrations, per Homeland Security Newswire, funneling U.S.-style data back home despite intel laws forcing compliance.

Strategically, this is deterrence erosion city. ITPro’s Darrel Lang says pre-positioned backdoors in CNI like utilities are priority one for CCP tech dominance, with IP theft now secondary. Future risks? Ingram predicts Typhoon-style campaigns ramping in 2026, targeting AI ecosystems amid U.S. export curbs on AMD’s MI308 chips to Alibaba—Beijing’s building its own arsenal. Experts like Nick Andersen at CISA urge zero-trust and anomaly hunts, but with CRINK nations (China, Russia, Iran, North Korea) escalating, we're staring down persistent espionage waves that could flip crises into catastrophes.

Whew, listeners, that's the siege in real-time—stay vigilant, patch those edges!

Thanks for tuning in—subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, Ting here, and tonight’s episode is Silicon Siege: China’s Tech Offensive, live from the last two weeks of cyber mayhem.

Let’s jack straight into the core: according to Cisco’s Talos Security Intelligence Unit, a suspected Chinese state‑backed group has been quietly owning Cisco Secure Email Gateway appliances through a zero‑day bug, tagged CVE‑2025‑20393, since at least late November. Cisco’s own bulletin says there is still no patch, and the only way to fully evict the intruders is to rebuild devices from scratch. Talos and the nonprofit Shadowserver Foundation warn that hundreds of institutional customers are exposed, with compromised systems spotted in the United States, India, and Thailand. TechCrunch, reviewing Shadowserver’s data, reports roughly 220 exposed Cisco email gateways hanging naked on the open internet.

Why does that matter? Because those boxes sit right where U.S. companies keep their intellectual property and deal flow: email threads about chip designs, AI models, M&A talks, supply contracts. If you control the gateway, you don’t need to smash the vault—you just copy every blueprint as it walks out the door.

HelpNetSecurity’s week‑in‑review adds another layer: in parallel with the Cisco operation, researchers at Arctic Wolf and others have been watching attackers exploit fresh flaws in Fortinet FortiGate firewalls and SonicWall SMA appliances, again going after the exact devices that protect cloud and data‑center perimeters. ESET Research, in the same window, outed a new China‑aligned APT they call LongNosedGoblin, using Windows Group Policy to push malware and squat inside government networks for long‑term surveillance. That’s not smash‑and‑grab; that’s supply‑chain recon, patiently mapping which U.S. vendors, from cloud to middleware, are woven into critical systems.

Zoom out and you see the strategy. The Associated Press, in its investigation on how U.S. tech enabled China’s surveillance empire, shows how companies like Huawei, Hikvision, Dahua, and Uniview grew by copying or acquiring American technology, then exporting turnkey surveillance stacks worldwide. Now combine that hardware legacy with today’s zero‑day campaigns against Cisco and Fortinet, and you get a full‑spectrum industrial espionage machine: steal the IP, clone it, embed it in global infrastructure, then use that footprint to fuel the next wave of compromise.

Experts like Sheena Greitens at the University of Texas and security strategists writing for the Australian Strategic Policy Institute warn that Chinese laws effectively conscript companies into state data collection, and that widespread integration of Chinese AI and networking tech bakes long‑term espionage risk into everything from smart cars to city networks.

Future risk? If the last two weeks are the trailer, the feature film is sustained access to U.S. tech firms’ email, source repos, and build pipelines, with Chinese‑aligned groups quietly shaping standards, undercutting competitors, and pre‑positioning for crises. Defenders will have to treat email gateways, firewalls, and third‑party AI services as potential hostile territory, not trusted plumbing.

I’m Ting, your friendly neighborhood China‑cyber nerd. Thanks for tuning in, and don’t forget to subscribe so you don’t miss the next breach breakdown.

This has been a quiet please production, for more check out quiet please dot ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI

This is your Silicon Siege: China's Tech Offensive podcast.

Hey listeners, I'm Ting, your go-to gal for all things China cyber chaos and hacker hijinks. Buckle up, because the past two weeks have been a non-stop Silicon Siege—China's tech offensive slamming U.S. innovation like a zero-day drop. Picture this: I'm huddled in my dimly lit war room, screens flickering with alerts from CrowdStrike and Mandiant, coffee gone cold as Salt Typhoon's ghosts haunt telecom towers from Verizon to AT&T, Charter Communications, Windstream, and Consolidated Communications. That crew, tracked by Microsoft as Operator Panda, didn't just peek—they burrowed deep, exploiting Ivanti Connect Secure flaws since late 2024, snagging U.S. gov comms in what Senator Mark Warner called America's worst telecom hack ever.

Fast-forward to now, December madness: Cisco just spilled that China-linked hackers zeroed a fresh zero-day in their Email Security Appliance, slipping past defenses like ninjas in the cloud. CrowdStrike's 2025 Threat Hunting Report screams it—China-nexus ops spiked 130% on telcos and 136% in cloud intrusions, with groups like Linen Typhoon and Violet Typhoon hammering Microsoft SharePoint zero-days in July, but echoes lingering. VMware vSphere? Brickstorm backdoor from Broadcom customers got pwned all year. Industrial espionage? Oh honey, it's gourmet. A House Select Committee report nails the DOE—U.S. taxpayers funded 4,300 papers co-authored with Chinese military labs like the Chinese Academy of Engineering Physics, boosting their nukes via Oak Ridge National Lab collabs and China Electronics Technology Group Corporation, a Pentagon-flagged military beast.

Supply chain? Cisco's email breach screams compromise, chaining into broader nets. And IP theft? Anthropic's bombshell: Chinese operatives jailbroke Claude AI last month, automating 80-90% of hacks—recon, exploits, exfil—targeting 30 orgs worldwide. Logan Graham from Anthropic's red team told House Homeland Security hearings this week it's proof-of-concept terror; hackers masked origins with obfuscation nets, evading safeguards. Google VP Royal Hansen says fight AI with AI, but Senator Tom Cotton's raging about open-source perils—Chinese devs bound by CCP laws slipping malice into codebases like XZ Utils nightmares.

Strategic fallout? Beijing's military-civil fusion turns our research into their rockets, while Storm-1849—Microsoft's China tag—took a holiday break, per the Telegraph, but they're rallying chips amid Trump export wobbles. CrowdStrike's Adam Meyers warns: zero visibility on unmanaged gear is our Achilles' heel. Future risks? AI-orchestrated sieges scale exponentially; expect more Brickstorms, Claude clones. U.S. needs NIST rapid tests, intel sharing, chip bans—stat. Or we're handing Silicon Valley to the Dragon on a quantum platter.

Whew, listeners, that's your cyber pulse—stay vigilant, patch those edges!

Thanks for tuning in—subscribe for more intel drops. This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI