This is your Tech Shield: US vs China Updates podcast.

Hey there, tech enthusiasts! Ting here, your go-to gal for all things China, cyber, and hacking. Buckle up, because this week's been a wild ride in the US-China cyber showdown!

So, picture this: It's February 28, 2025, and the digital battleground is hotter than ever. The US government just dropped a bombshell with the release of CrowdStrike's 2025 Global Threat Report. Spoiler alert: China's cyber espionage game is on steroids, with a jaw-dropping 150% increase in operations. They're not just dipping their toes in the water; they're doing cannonballs into sectors like finance, media, and manufacturing.

But wait, there's more! The House Committee on Homeland Security's latest "China Threat Snapshot" is like a spy thriller come to life. We're talking over 60 cases of Chinese Communist Party espionage on US soil in just four years. It's like they're trying to collect American secrets like Pokémon cards!

Now, Uncle Sam isn't taking this lying down. The Biden administration, in its final days, has been working overtime. They've slapped restrictions on Chinese-made internet-connected cars and are eyeing a potential ban on Chinese drones. It's like they're playing a high-stakes game of "Red Light, Green Light" with Chinese tech.

But here's where it gets really juicy: AI is entering the chat, and not in a good way. We're seeing a 442% spike in vishing attacks, thanks to our new frenemy, generative AI. It's like the cyber equivalent of those deepfake videos, but for your ears!

CISA, NSA, and the FBI are teaming up like the Avengers of cybersecurity. They've issued a joint advisory about a Chinese state-sponsored actor called Volt Typhoon. This digital troublemaker has been poking around in US critical infrastructure sectors. It's like they're trying to find America's off switch!

Industry's not sitting this one out either. Companies are scrambling to patch vulnerabilities faster than you can say "firewall." There's a new focus on AI-powered threat detection systems that can spot anomalies quicker than a cat video goes viral.

But here's the kicker: experts are warning that while we're making progress, there are still gaps big enough to drive a digital truck through. The shift to malware-free intrusions and the exploitation of trusted access are keeping security teams up at night. It's like trying to catch a ghost with a butterfly net.

As we wrap up this cyber soap opera, remember: in this digital age, your data is the new oil, and everyone wants a piece of the pie. Stay vigilant, keep your software updated, and maybe think twice before connecting your toaster to the internet. This is Ting, signing off from the frontlines of the US-China tech shield battle. Stay safe out there in cyberspace, folks!

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and I'm here to give you the lowdown on the latest in US cyber defenses against Chinese threats. It's been a wild few days, so let's dive right in.

First off, the US government just published a cybersecurity advisory on the People's Republic of China's state-sponsored hacking activities. This advisory, courtesy of CISA, NSA, and the FBI, details how a group known as Volt Typhoon has been compromising critical infrastructure across multiple sectors in the US. It's a big deal, folks, and we need to take it seriously[2].

Now, you might be wondering what's being done to counter these threats. Well, the FY 2025 National Defense Authorization Act (NDAA) is packed with provisions aimed at bolstering US resilience against Chinese tech and influence. For instance, Section 1546 requires the Department of Defense to develop a risk framework for assessing the threats posed by personal mobile devices and applications, particularly those tied to China. And let's not forget the House Armed Services Committee Report, which directs DoD to assess the risks associated with routers, modems, and similar devices from Chinese manufacturers[1].

But it's not all about government initiatives. Industry responses are also crucial in this fight. Take, for example, the recent push to restrict the sale of internet-connected cars manufactured in China, citing national security risks. And did you know that the Biden administration is considering a ban on Chinese-made drones in the US? It's all about mitigating those security vulnerabilities[5].

Now, I know what you're thinking: what about emerging defensive technologies? Well, experts like National Security Advisor Waltz are talking about "mutually assured disruption" as a potential deterrent against Chinese cyber threats. The idea is to threaten equivalent costs on Beijing in cyberspace, making it clear that any major attacks on US critical infrastructure would have serious consequences[4].

Of course, there are still gaps in our defenses. As the Carnegie Endowment points out, the US needs a more systematic and comprehensive framework for managing data security and influence risks associated with Chinese access to US data and control of software and connected technology. It's a complex issue, but one that requires our attention[5].

So, there you have it – the latest updates on US cyber defenses against Chinese threats. It's a cat-and-mouse game, but with the right strategies and technologies, we can stay ahead of the curve. Stay safe out there, folks.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and I'm here to give you the lowdown on the latest in US cyber defenses against Chinese threats. It's been a wild few days, so let's dive right in.

First off, the FY 2025 National Defense Authorization Act is making waves with its focus on countering China's expanding influence and enhancing US resilience. One key provision requires the Department of Defense to develop a risk framework assessing the threat of data collection and misuse posed by personal mobile devices and applications tied to China and other adversarial nations[1].

Meanwhile, the Cybersecurity and Infrastructure Security Agency has been dealing with some major changes, including leadership shifts and the shutdown of the Cyber Safety Review Board within the Department of Homeland Security[3]. But don't worry, they're still hard at work patching vulnerabilities - January's Patch Tuesday saw a whopping 159 fixes, including 10 critical Remote Code Execution vulnerabilities and eight zero-day exploits[3].

Now, let's talk about DeepSeek, the Chinese AI Large Language Model that's got everyone spooked. With its rapid rise in popularity, cybersecurity experts are sounding the alarm about potential data leakage and information security risks. In fact, a bill is circulating in Congress that would make it illegal to use DeepSeek, with a hefty penalty of 20 years in prison[3].

But it's not all doom and gloom. The House Committee on Homeland Security just released an updated "China Threat Snapshot" detailing over 60 cases of CCP espionage on US soil since 2021. Secretary of State Marco Rubio and Department of Homeland Security Secretary Kristi Noem are taking a hard stance against China's cyber threats, with Rubio calling the PRC our greatest geopolitical adversary[5].

So, what's the takeaway? The US is ramping up its cyber defenses against Chinese threats, but there's still work to be done. As Hornetsecurity's Monthly Threat Report notes, organizations need to stay vigilant and apply patches ASAP to protect against potential threats[3]. And let's not forget the importance of due diligence and supply chain oversight in preventing foreign influence.

That's all for now, folks. Stay safe out there, and keep those firewalls up.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and I'm here to give you the lowdown on the latest in US cyber defenses against Chinese threats. Let's dive right in.

This week has been a whirlwind of new protection measures, vulnerability patches, and government advisories aimed at bolstering our defenses against Chinese cyber actors. The FY 2025 National Defense Authorization Act (NDAA) has been making waves with its provisions to counter Chinese-origin technology risks. Specifically, Section 1546 requires the Department of Defense (DoD) to develop a risk framework assessing the threat of data collection and misuse posed by personal mobile devices and applications tied to China and other adversarial nations[1].

But that's not all. The House Armed Services Committee (HASC) Report accompanying the NDAA for FY 2025 includes provisions targeting routers, modems, and similar devices from Chinese manufacturers that pose security risks akin to Huawei and ZTE technologies banned under section 889 of the FY 2019 NDAA. This is crucial because these devices can be exploited by malware to compromise DoD systems, critical infrastructure, or sensitive information.

Meanwhile, the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Cyber National Mission Force (CNMF) have been working together to issue advisories about Chinese-linked cyber actors. For instance, they recently released a Cybersecurity Advisory (CSA) highlighting the threat posed by these actors and their botnet operations, which have compromised thousands of U.S. devices across various sectors[2][5].

On the industry front, companies like Hornetsecurity have been keeping us updated on the latest cybersecurity trends and threats. Their Monthly Threat Report for February 2025 discusses significant vulnerabilities patched by the January Microsoft Patch Tuesday and urges organizations to apply these patches ASAP to protect against potential attacks[4].

Expert commentary suggests that these measures are a step in the right direction but also highlights gaps in our defenses. For example, John Riggi, AHA national advisor for cybersecurity and risk, emphasizes the aggressive operational tempo by China to infiltrate our critical infrastructure and preposition for potential future offensive cyber operations. He recommends that hospitals and health systems remind staff and third parties of the recommended mitigations contained in these alerts, including replacing default passwords on routers with strong passwords[5].

In conclusion, it's clear that the U.S. is taking proactive steps to bolster its cyber defenses against Chinese threats. However, it's also important to acknowledge the ongoing challenges and gaps in our defenses. As we move forward, it's crucial to stay vigilant and continue to adapt our strategies to counter these evolving threats. That's all for now. Stay safe out there.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and let's dive right into the latest on Tech Shield: US vs China updates. It's been a wild ride over the past few days, especially with the FY 2025 National Defense Authorization Act (NDAA) making waves. This legislation is all about bolstering US resilience against Chinese tech and influence, and it's packed with provisions to address security risks linked to Chinese-origin technology[1].

One of the key measures is Section 1546, which requires the Department of Defense (DoD) to develop a risk framework assessing the threat of data collection and misuse posed by personal mobile devices and applications, particularly those tied to China and other adversarial nations. This is crucial because, let's face it, our personal devices are often the weakest link in the security chain.

But that's not all. The House Armed Services Committee (HASC) Report accompanying the NDAA for FY 2025 includes provisions targeting routers, modems, and similar devices from Chinese manufacturers that pose security risks akin to Huawei and ZTE technologies banned under section 889 of the FY 2019 NDAA. It's like playing whack-a-mole; every time we think we've got one threat covered, another pops up.

And then there's the issue of hardware-based encrypted data storage devices used in DoD, particularly those potentially compromised by Chinese control over encryption technologies. DoD is directed to evaluate existing risk management tools and provide Congress a list of hardware-based encrypted data storage products that have been excluded from DoD procurement in the last 5 years. It's a complex game of cat and mouse, but we need to stay on top of it.

But let's not forget about the recent advisories. The National Security Agency (NSA), Federal Bureau of Investigation (FBI), and Cyber National Mission Force (CNMF) have issued a joint advisory about People’s Republic of China (PRC)-linked cyber actors who have compromised internet-connected devices worldwide to create a botnet and conduct malicious activity[2][5]. This is serious stuff; we're talking about thousands of US devices compromised, with victims in a range of sectors.

Mark E. Green, chairman of the House Committee on Homeland Security, put it bluntly: "The PRC has gained significant ground in its information warfare on American soil over the past four years." His committee's updated 'China Threat Snapshot' report highlights over 60 instances of espionage by the Chinese Communist Party (CCP) on US soil, including cases of transmission of sensitive military information, theft of trade secrets, transnational repression operations, and obstruction of justice[4].

So, what's the takeaway? The US is stepping up its game against Chinese cyber threats, but there's still a lot of ground to cover. We need to stay vigilant, keep patching those vulnerabilities, and invest in emerging defensive technologies. It's a never-ending battle, but with experts like John Riggi, AHA national advisor for cybersecurity and risk, sounding the alarm, we're at least on the right track. Stay safe out there, folks.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and let's dive right into the latest on Tech Shield: US vs China updates. It's been a busy week, and I've got the scoop on what's new and what's next in the world of cyber defenses against Chinese threats.

First off, the US government has been hard at work bolstering its defenses. The FY 2025 National Defense Authorization Act (NDAA) is packed with provisions aimed at countering China's expanding influence and enhancing US resilience. One key focus is on addressing potential security risks linked to Chinese-origin technology. For instance, Section 1546 requires the Department of Defense (DoD) to develop a risk framework assessing the threat of data collection and misuse posed by personal mobile devices and applications, particularly those tied to China and other adversarial nations[1].

Meanwhile, the Biden administration has been taking steps to restrict the sale of internet-connected cars manufactured in China, citing national security risks. And, in a move that could have significant implications, the US government has finalized rules to restrict the use of Chinese-made drones in the US, due to potential security risks[2].

But it's not just about government action; industry is also stepping up. The Cybersecurity and Infrastructure Security Agency (CISA) has been working closely with critical infrastructure entities to identify and evict Chinese cyber actors. CISA Director, Jen Easterly, has underscored the very real possibility that a crisis in Asia could have serious consequences for the safety and security of American citizens here at home[5].

On the tech front, we've seen some significant vulnerability patches this month. The January Microsoft Patch Tuesday addressed a number of critical vulnerabilities, and organizations are urged to apply these patches ASAP[4]. And, in a nod to emerging defensive technologies, the US National Institute of Standards and Technology has published a national Cybersecurity Framework that provides guidance to US businesses on cybersecurity best practices and ways to identify and address cybersecurity risks.

But, as always, there are gaps. The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency has issued warnings about the risks associated with using certain Chinese-connected devices, such as drones. And, despite these efforts, Chinese cyber actors continue to pose a significant threat. The "Volt Typhoon" campaign, for example, was a malicious state-sponsored cyber actor connected to the People's Republic of China that repeatedly targeted critical US infrastructure[5].

So, what's the takeaway? The US is making strides in bolstering its cyber defenses against Chinese threats, but there's still work to be done. As CISA Director Jen Easterly noted, it's a cat-and-mouse game, and we need to stay vigilant. That's all for now; stay safe out there, and I'll catch you on the flip side.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and let's dive right into the latest on Tech Shield: US vs China updates. It's been a busy week, especially with the House Homeland Security Committee releasing an updated "China Threat Snapshot" report just yesterday[1][5]. Chairman Mark Green emphasized how the PRC has gained significant ground in its information warfare on American soil over the past four years.

The report highlights over 60 cases of espionage conducted by the Chinese Communist Party (CCP) on U.S. soil since 2021, including the transmission of sensitive military information, theft of trade secrets, use of transnational repression operations, and obstruction of justice. This is a stark reminder of the evolving and expanding threats posed by the CCP to the homeland.

But the U.S. isn't just sitting back. The Biden administration has been working on various measures to restrict Chinese access to U.S. data and control of software and connected technology. For instance, President Trump recently sought to delay enforcement of a 2024 law banning the distribution of TikTok, aiming to work out a deal for ByteDance to divest the app[3].

Moreover, the U.S. has been imposing restrictions on Chinese communications technologies, software, and internet-connected devices. This includes limiting the use of new Chinese cargo terminal cranes at U.S. ports due to potential electronic espionage risks, and drafting "Know Your Customer" requirements for U.S. cloud services providers.

The Carnegie Endowment for International Peace notes that these restrictions are part of a broader regulatory framework to manage the data security and influence risks associated with Chinese access to U.S. data and control of software and connected technology[3]. This includes banning Chinese autonomous cars and drones, and restricting the sale of internet-connected cars manufactured in China.

Experts like Secretary of State Marco Rubio and Department of Homeland Security Secretary Kristi Noem have underscored the need to combat China's robust cyber espionage campaigns, which aim to access Americans' private information and control critical infrastructure[5].

In terms of emerging defensive technologies, the focus is on developing more systematic and comprehensive frameworks for managing data security and influence risks. This includes enhancing cybersecurity measures at U.S. ports and restricting data brokers from selling or transferring sensitive data to China.

Overall, it's clear that the U.S. is taking a proactive stance against Chinese cyber threats. However, as the threat landscape continues to evolve, it's crucial to stay vigilant and address any gaps in our defenses. That's all for now. Stay tech-savvy, and stay safe out there.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and let's dive right into the latest on Tech Shield: US vs China updates. It's been a busy week, especially with the Department of Homeland Security (DHS) issuing a bulletin warning about the espionage threat posed by Chinese-made internet cameras. These cameras, often lacking data encryption and secure configuration settings, are a potential entry point for malicious actors targeting US critical infrastructure[3].

Just a few days ago, on February 10, 2025, the DHS highlighted that tens of thousands of these cameras are deployed across networks in critical sectors like energy and chemical industries. This is particularly concerning given China's history of cyber threats, including the recent "Salt Typhoon" hacking operation that infiltrated US internet service providers[3][5].

Meanwhile, the US government has been taking steps to strengthen its cyber defenses. The Cybersecurity and Infrastructure Security Agency (CISA) has been working closely with critical infrastructure entities to identify and evict Chinese cyber actors. CISA Director emphasized the seriousness of China's cyber program, pointing out the potential for disruptive attacks against US critical infrastructure in the event of a crisis in Asia, such as an invasion of Taiwan[5].

In addition to these efforts, there have been significant developments in regulatory measures. President Donald Trump recently sought to delay enforcement of a 2024 law banning the distribution of the Chinese-owned social media app TikTok, aiming to work out a deal for ByteDance to divest the app. This move is part of a broader trend of restrictions on Chinese communications technologies, software, and internet-connected devices in the US[1].

The Biden administration has also been active, finalizing rules to restrict the sale of internet-connected cars manufactured in China and launching a process that could result in a ban on Chinese-made drones in the US. These actions are part of a comprehensive framework to manage the data security and influence risks associated with Chinese access to US data and control of software and connected technology[1].

Expert commentary suggests that while these measures are crucial, there are still gaps in US cyber defenses. The use of "white labeling" by Chinese manufacturers to circumvent import bans is a particular concern. Broader dissemination of tools to recognize these devices could help tighten enforcement and mitigate the threat[3].

In conclusion, it's clear that the US is taking a proactive stance against Chinese cyber threats, but there's still much work to be done. As we move forward, it's essential to stay vigilant and continue to strengthen our cyber defenses against these evolving threats. That's all for now; stay tech-savvy, folks.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and let's dive right into the latest on Tech Shield: US vs China updates. It's been a wild few days, especially with President Biden issuing an executive order to strengthen national cybersecurity just before handing over the reins[1]. This move targets digital defense and accountability, particularly against threats from the People's Republic of China.

The order aims to enhance the security of federal communications and identity management systems, and to encourage advancements in cybersecurity technologies across executive departments, agencies, and the private sector. Anne Neuberger, Biden's outgoing Deputy National Security Advisor for Cyber and Emerging Technology, emphasized that the goal is to make it costlier and harder for China, Russia, Iran, and ransomware criminals to hack into U.S. systems[3].

But let's not forget the recent state-sponsored cyberattack on the U.S. Treasury Department by the Chinese Communist Party (CCP) in early December. This attack marks the latest escalation in Beijing's use of hybrid tactics to undermine its strategic competitors. The targeted entities, the Office of Foreign Assets Control (OFAC) and the Office of the Treasury Secretary, had administered economic sanctions against Chinese companies in 2024 that engaged in cyberattacks or supplied Russia with weapons for Moscow's war in Ukraine[1].

In response to these threats, the U.S. government has been working on various measures to restrict Chinese access to U.S. data and control of software and connected technologies. For instance, President Trump sought to delay enforcement of a 2024 law that banned the distribution of the popular Chinese-owned social media app TikTok, aiming to work out a deal for ByteDance to divest the app[5].

Moreover, the Biden administration has finalized rules to restrict the sale of internet-connected cars manufactured in China, citing national security risks. They've also launched a process that could result in a ban on Chinese-made drones in the United States due to potential security risks[5].

In terms of industry responses, there's a growing emphasis on secure software acquisition practices and ensuring that software providers implement secure development practices to minimize vulnerabilities. The Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) of 2022 requires the Cybersecurity and Infrastructure Security Agency (CISA) to develop regulations for reporting cyber incidents affecting critical infrastructure[4].

Expert commentary suggests that while these measures are crucial, there are still gaps in the nation's cybersecurity framework. The persistent threat from China necessitates continuous vigilance and innovation in defensive technologies. As we move forward, it's clear that the U.S. needs to stay proactive in protecting its digital infrastructure against these evolving threats.

That's the latest from the front lines of Tech Shield: US vs China. Stay safe out there, and keep those firewalls up

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta

This is your Tech Shield: US vs China Updates podcast.

Hey there, I'm Ting, and I'm here to give you the lowdown on the latest US vs China cyber updates. Let's dive right in.

So, you know how China's been making waves with their cyber espionage? Well, the US is fighting back. Just last December, the FCC mandated telecom security upgrades to counter those threats. Jessica Rosenworcel, the FCC chairwoman, emphasized that securing our nation's communications infrastructure is crucial for national security, public safety, and economic security[1].

But that's not all. The Department of Homeland Security recently issued a bulletin warning about internet-connected cameras made in China. These cameras lack data encryption and security settings, making them perfect for Chinese cyber-operatives to exploit. It's like leaving your front door wide open for hackers[3].

Now, let's talk about some new protection measures. The US government is restricting the use of Chinese-made cargo terminal cranes at US ports due to potential electronic espionage risks. And, in a move to limit data flows to China, President Biden signed an executive order directing the Justice Department to establish regulations restricting data brokers from selling or transferring sensitive data to China[5].

Industry responses are also worth noting. Companies are stepping up their cybersecurity game, and experts like Darryl Davis are emphasizing the importance of skill over luck in the real estate industry, which is increasingly dependent on secure data[2].

Emerging defensive technologies are also on the rise. The US is investing in advanced threat detection systems and AI-powered cybersecurity tools to stay ahead of Chinese hackers.

But, here's the thing: despite these efforts, there are still gaps in our defenses. As Mikkel Storm Jensen points out in his research on Russia's military might, cyber espionage is a constant threat that requires constant vigilance[4].

So, what's the takeaway? The US is taking steps to protect itself from Chinese cyber threats, but it's an ongoing battle. We need to stay vigilant, invest in emerging technologies, and prioritize cybersecurity to stay ahead of the game. That's all for now, folks. Stay safe out there.

For more http://www.quietplease.ai


Get the best deals https://amzn.to/3ODvOta