Feb 21 2025 3 mins
This is your Dragon's Code: America Under Cyber Siege podcast.
Hey there, I'm Ting, and let's dive right into the thick of it. The past few days have been a whirlwind of cyberattacks, and I'm here to break down the most sophisticated Chinese operations targeting US infrastructure.
Just a few days ago, on February 11, 2025, the outgoing National Security Advisor Jake Sullivan issued a stern warning to Beijing, emphasizing that any physically destructive cyberattack on the US would face severe consequences. This came on the heels of a series of high-profile attacks by Chinese hackers against US agencies and companies, including a security breach into the US Treasury Department.
Let's talk about the attack methodologies. Chinese state-sponsored groups like Volt Typhoon and Salt Typhoon have been employing a "Living of the Land" strategy, implanting malware with legitimate admin tools and monitoring activities remotely. This allows them to blend in and avoid detection, making it a nightmare for cybersecurity teams.
The affected systems are critical infrastructure, such as ports and electric grids. For instance, the Guam Power Authority (GPA) was targeted by Volt Typhoon, which is particularly concerning since the GPA is the island's only source of power, and the US Navy is its biggest customer.
Attribution evidence points to Chinese state-sponsored groups, with the US Department of the Treasury sanctioning the Chinese company Integrity Tech for supporting the hacking group Flax Typhoon. Cybersecurity experts like Rob Joyce, former cybersecurity director at the National Security Agency (NSA), have highlighted the concerning evolution in Chinese targeting of US infrastructure.
Defensive measures are being implemented, with President Joe Biden issuing an executive order on strengthening and promoting innovation in America's cybersecurity just days before leaving office. The order acknowledges the aggravating Chinese cyber menace and emphasizes the need for better preparedness.
Lessons learned? Well, for starters, cybersecurity needs to be a top priority for the Trump administration. As Nistha Singh and Amrita Jash noted, protecting America's critical infrastructure is vital, and the threat from China is not going away anytime soon. FBI Director Christopher Wray and Microsoft have consistently warned about the surge in cyberattacks targeting critical infrastructure, and it's time to take action.
In the words of Anne Neuberger, the US Deputy National Security Advisor for Cyber and Emerging Technologies, these hacks serve "so that they can disrupt our ability to support military activities or to distract us, to get us to focus on a domestic incident at a time when something is flaring up in a different part of the world." It's time to shore up our defenses and take a proactive approach to cybersecurity. That's all for now, folks. Stay safe out there.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta
Hey there, I'm Ting, and let's dive right into the thick of it. The past few days have been a whirlwind of cyberattacks, and I'm here to break down the most sophisticated Chinese operations targeting US infrastructure.
Just a few days ago, on February 11, 2025, the outgoing National Security Advisor Jake Sullivan issued a stern warning to Beijing, emphasizing that any physically destructive cyberattack on the US would face severe consequences. This came on the heels of a series of high-profile attacks by Chinese hackers against US agencies and companies, including a security breach into the US Treasury Department.
Let's talk about the attack methodologies. Chinese state-sponsored groups like Volt Typhoon and Salt Typhoon have been employing a "Living of the Land" strategy, implanting malware with legitimate admin tools and monitoring activities remotely. This allows them to blend in and avoid detection, making it a nightmare for cybersecurity teams.
The affected systems are critical infrastructure, such as ports and electric grids. For instance, the Guam Power Authority (GPA) was targeted by Volt Typhoon, which is particularly concerning since the GPA is the island's only source of power, and the US Navy is its biggest customer.
Attribution evidence points to Chinese state-sponsored groups, with the US Department of the Treasury sanctioning the Chinese company Integrity Tech for supporting the hacking group Flax Typhoon. Cybersecurity experts like Rob Joyce, former cybersecurity director at the National Security Agency (NSA), have highlighted the concerning evolution in Chinese targeting of US infrastructure.
Defensive measures are being implemented, with President Joe Biden issuing an executive order on strengthening and promoting innovation in America's cybersecurity just days before leaving office. The order acknowledges the aggravating Chinese cyber menace and emphasizes the need for better preparedness.
Lessons learned? Well, for starters, cybersecurity needs to be a top priority for the Trump administration. As Nistha Singh and Amrita Jash noted, protecting America's critical infrastructure is vital, and the threat from China is not going away anytime soon. FBI Director Christopher Wray and Microsoft have consistently warned about the surge in cyberattacks targeting critical infrastructure, and it's time to take action.
In the words of Anne Neuberger, the US Deputy National Security Advisor for Cyber and Emerging Technologies, these hacks serve "so that they can disrupt our ability to support military activities or to distract us, to get us to focus on a domestic incident at a time when something is flaring up in a different part of the world." It's time to shore up our defenses and take a proactive approach to cybersecurity. That's all for now, folks. Stay safe out there.
For more http://www.quietplease.ai
Get the best deals https://amzn.to/3ODvOta