Sign up to save your podcasts
Or
Share Ting Spills Tea: China's Hackers Playing 4D Chess While America's Firewall Burns
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Ting Spills Tea: China's Hackers Playing 4D Chess While America's Firewall Burns
This is your Dragon's Code: America Under Cyber Siege podcast.
Hey listeners, it's Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: I'm hunkered down in my neon-lit war room, screens flickering with the latest intel on **Dragon's Code: America Under Cyber Siege**. Over the past week leading to February 20, 2026, China's slickest state-sponsored crews have been drilling into US infrastructure like pros picking a high-tech lock. We're talking Volt Typhoon—those UNC3886 shadows from Beijing—still burrowed deep in US utilities and critical grids, per Dragos researchers who've helped yank them out of multiple orgs.
These ninjas kicked off with zero-days like CVE-2022-41328 in Fortinet FortiOS and CVE-2023-27997, plus Zoho ManageEngine flaws, slipping into defense, telecom, and tech networks since 2021. Methodologies? Stealth city: living-off-the-land tricks, bespoke malware for persistence, Ghost NICs on VMs to ghost around detection, and lateral hops via hardcoded creds in Dell RecoverPoint CVE-2026-22769—exploited since mid-2024 for espionage, as Mandiant's Google team clocked with UNC6201 deploying Brickstorm backdoors and Grimbolt implants. Affected systems? OT environments in energy and manufacturing, per Dragos on new groups like Sylvanite, Azurite, Pyroxene; even BeyondTrust Remote Support CVE-2026-1731 got hit for ransomware, web shells, and data grabs in finance, healthcare, hitting US, France, Germany too, says Palo Alto's Unit 42 and CISA's KEV catalog.
Attribution screams China: Mandiant ties it to Silk Typhoon hallmarks—custom malware, zero-day chains targeting feds. CYFIRMA's Weekly Intelligence Report nails Volt Typhoon's long-game espionage, prioritizing quiet exfil over boom. Defenses? CISA's slamming three-day patch deadlines on feds for Dell and BeyondTrust bugs; Singapore's Cyber Guardian op rallied 100 responders to block a similar 11-month Chinese probe on telcos, no data lost. US National Cyber Director Sean Cairncross, at Munich Cyber Security Conference, pushed allied collab over "America alone," echoing Secretary Marco Rubio's vibe amid NATO strains.
Lessons from the trenches? Experts like Dragos say OT needs air-gapped vigilance; IBM X-Force notes 70% of 2024 attacks hit infra. Firewalls alone flop—deploy EDR, hunt anomalies, share intel fast. China's playing 4D chess for strategic edge, but we're leveling up with public-private muscle.
Thanks for tuning in, listeners—hit subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, it's Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: I'm hunkered down in my neon-lit war room, screens flickering with the latest intel on **Dragon's Code: America Under Cyber Siege**. Over the past week leading to February 20, 2026, China's slickest state-sponsored crews have been drilling into US infrastructure like pros picking a high-tech lock. We're talking Volt Typhoon—those UNC3886 shadows from Beijing—still burrowed deep in US utilities and critical grids, per Dragos researchers who've helped yank them out of multiple orgs.
These ninjas kicked off with zero-days like CVE-2022-41328 in Fortinet FortiOS and CVE-2023-27997, plus Zoho ManageEngine flaws, slipping into defense, telecom, and tech networks since 2021. Methodologies? Stealth city: living-off-the-land tricks, bespoke malware for persistence, Ghost NICs on VMs to ghost around detection, and lateral hops via hardcoded creds in Dell RecoverPoint CVE-2026-22769—exploited since mid-2024 for espionage, as Mandiant's Google team clocked with UNC6201 deploying Brickstorm backdoors and Grimbolt implants. Affected systems? OT environments in energy and manufacturing, per Dragos on new groups like Sylvanite, Azurite, Pyroxene; even BeyondTrust Remote Support CVE-2026-1731 got hit for ransomware, web shells, and data grabs in finance, healthcare, hitting US, France, Germany too, says Palo Alto's Unit 42 and CISA's KEV catalog.
Attribution screams China: Mandiant ties it to Silk Typhoon hallmarks—custom malware, zero-day chains targeting feds. CYFIRMA's Weekly Intelligence Report nails Volt Typhoon's long-game espionage, prioritizing quiet exfil over boom. Defenses? CISA's slamming three-day patch deadlines on feds for Dell and BeyondTrust bugs; Singapore's Cyber Guardian op rallied 100 responders to block a similar 11-month Chinese probe on telcos, no data lost. US National Cyber Director Sean Cairncross, at Munich Cyber Security Conference, pushed allied collab over "America alone," echoing Secretary Marco Rubio's vibe amid NATO strains.
Lessons from the trenches? Experts like Dragos say OT needs air-gapped vigilance; IBM X-Force notes 70% of 2024 attacks hit infra. Firewalls alone flop—deploy EDR, hunt anomalies, share intel fast. China's playing 4D chess for strategic edge, but we're leveling up with public-private muscle.
Thanks for tuning in, listeners—hit subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
View all episodes
By Inception Point AiThis is your Dragon's Code: America Under Cyber Siege podcast.
Hey listeners, it's Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: I'm hunkered down in my neon-lit war room, screens flickering with the latest intel on **Dragon's Code: America Under Cyber Siege**. Over the past week leading to February 20, 2026, China's slickest state-sponsored crews have been drilling into US infrastructure like pros picking a high-tech lock. We're talking Volt Typhoon—those UNC3886 shadows from Beijing—still burrowed deep in US utilities and critical grids, per Dragos researchers who've helped yank them out of multiple orgs.
These ninjas kicked off with zero-days like CVE-2022-41328 in Fortinet FortiOS and CVE-2023-27997, plus Zoho ManageEngine flaws, slipping into defense, telecom, and tech networks since 2021. Methodologies? Stealth city: living-off-the-land tricks, bespoke malware for persistence, Ghost NICs on VMs to ghost around detection, and lateral hops via hardcoded creds in Dell RecoverPoint CVE-2026-22769—exploited since mid-2024 for espionage, as Mandiant's Google team clocked with UNC6201 deploying Brickstorm backdoors and Grimbolt implants. Affected systems? OT environments in energy and manufacturing, per Dragos on new groups like Sylvanite, Azurite, Pyroxene; even BeyondTrust Remote Support CVE-2026-1731 got hit for ransomware, web shells, and data grabs in finance, healthcare, hitting US, France, Germany too, says Palo Alto's Unit 42 and CISA's KEV catalog.
Attribution screams China: Mandiant ties it to Silk Typhoon hallmarks—custom malware, zero-day chains targeting feds. CYFIRMA's Weekly Intelligence Report nails Volt Typhoon's long-game espionage, prioritizing quiet exfil over boom. Defenses? CISA's slamming three-day patch deadlines on feds for Dell and BeyondTrust bugs; Singapore's Cyber Guardian op rallied 100 responders to block a similar 11-month Chinese probe on telcos, no data lost. US National Cyber Director Sean Cairncross, at Munich Cyber Security Conference, pushed allied collab over "America alone," echoing Secretary Marco Rubio's vibe amid NATO strains.
Lessons from the trenches? Experts like Dragos say OT needs air-gapped vigilance; IBM X-Force notes 70% of 2024 attacks hit infra. Firewalls alone flop—deploy EDR, hunt anomalies, share intel fast. China's playing 4D chess for strategic edge, but we're leveling up with public-private muscle.
Thanks for tuning in, listeners—hit subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI
Hey listeners, it's Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Picture this: I'm hunkered down in my neon-lit war room, screens flickering with the latest intel on **Dragon's Code: America Under Cyber Siege**. Over the past week leading to February 20, 2026, China's slickest state-sponsored crews have been drilling into US infrastructure like pros picking a high-tech lock. We're talking Volt Typhoon—those UNC3886 shadows from Beijing—still burrowed deep in US utilities and critical grids, per Dragos researchers who've helped yank them out of multiple orgs.
These ninjas kicked off with zero-days like CVE-2022-41328 in Fortinet FortiOS and CVE-2023-27997, plus Zoho ManageEngine flaws, slipping into defense, telecom, and tech networks since 2021. Methodologies? Stealth city: living-off-the-land tricks, bespoke malware for persistence, Ghost NICs on VMs to ghost around detection, and lateral hops via hardcoded creds in Dell RecoverPoint CVE-2026-22769—exploited since mid-2024 for espionage, as Mandiant's Google team clocked with UNC6201 deploying Brickstorm backdoors and Grimbolt implants. Affected systems? OT environments in energy and manufacturing, per Dragos on new groups like Sylvanite, Azurite, Pyroxene; even BeyondTrust Remote Support CVE-2026-1731 got hit for ransomware, web shells, and data grabs in finance, healthcare, hitting US, France, Germany too, says Palo Alto's Unit 42 and CISA's KEV catalog.
Attribution screams China: Mandiant ties it to Silk Typhoon hallmarks—custom malware, zero-day chains targeting feds. CYFIRMA's Weekly Intelligence Report nails Volt Typhoon's long-game espionage, prioritizing quiet exfil over boom. Defenses? CISA's slamming three-day patch deadlines on feds for Dell and BeyondTrust bugs; Singapore's Cyber Guardian op rallied 100 responders to block a similar 11-month Chinese probe on telcos, no data lost. US National Cyber Director Sean Cairncross, at Munich Cyber Security Conference, pushed allied collab over "America alone," echoing Secretary Marco Rubio's vibe amid NATO strains.
Lessons from the trenches? Experts like Dragos say OT needs air-gapped vigilance; IBM X-Force notes 70% of 2024 attacks hit infra. Firewalls alone flop—deploy EDR, hunt anomalies, share intel fast. China's playing 4D chess for strategic edge, but we're leveling up with public-private muscle.
Thanks for tuning in, listeners—hit subscribe for more cyber spice! This has been a Quiet Please production, for more check out quietplease.ai.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
This content was created in partnership and with the help of Artificial Intelligence AI