Geek-Guy.com

Category: china

Auto Added by WPeMatico

Asia Pacific, china, critical infrastructure, energy, Foundation for Defense of Democracies, Geopolitics, Global Security News

Taiwan blames Chinese ‘cyber army’ for rise in millions of daily intrusion attempts

Taiwan endured a year-long intensified cyber offensive from China in 2025, that targeted the government and critical infrastructure — with an increasing focus on the energy and hospital sectors, according to a Taiwan government analysis published this week. Cyberattacks from China rose 6% compared to 2024, the National Security Bureau analysis concluded. Every major sector…

Read more →

APT, Asia Pacific, china, Global Security News, intelligence, malware, Security

Evasive Panda cyberespionage campaign uses DNS poisoning to install MgBot backdoor

China-linked APT Evasive Panda used DNS poisoning to deliver the MgBot backdoor in targeted cyber-espionage attacks in Türkiye, China, and India. Kaspersky researchers spotted the China-linked APT group Evasive Panda (aka Daggerfly, Bronze Highland, and StormBamboo) running a targeted cyber-espionage campaign using DNS poisoning to deliver the MgBot backdoor against victims in Türkiye, China, and…

Read more →

APT, china, Cybersecurity, Exploits, Global Security News, Research, Threats

Cisco customers hit by fresh wave of zero-day attacks from China-linked APT

Cisco customers are confronting a fresh wave of attacks from a Chinese threat group that has actively exploited a critical zero-day vulnerability affecting the vendor’s software for email and web security since at least late November, the company said in an advisory Wednesday.  Cisco said it became aware of the attacks Dec. 10. The defect…

Read more →

Andrew Garbarino, Artificial Intelligence (AI), Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Policy

Key lawmaker says Congress likely to kick can down road on cyber information sharing law

With a little more than a month left before a foundational cyber threat information sharing law expires for a second time, Congress might have to do another short-term extension as negotiations on a longer deal aren’t yet bearing fruit, a key lawmaker said Tuesday. House Homeland Security Chairman Andrew Garbarino, R-N.Y., said the problem with…

Read more →

Artificial Intelligence (AI), Asia Pacific, china, critical infrastructure, Global Security News, Government, Policy

Five-page draft Trump administration cyber strategy targeted for January release

The Trump administration is aiming to release its six-part national cybersecurity strategy in January, according to multiple sources familiar with the document. The document, which is a mere five pages long, will possibly be followed by an executive order to implement the new strategy. The administration has been soliciting feedback in recent days, which one…

Read more →

Asia Pacific, china, Federal Communications Commission, Global Security News, Russia, Securities and Exchange Commission (SEC), Uncategorized

SEC drops case against SolarWinds tied to monumental breach

The Securities and Exchange Commission on Thursday dropped its case against SolarWinds and its chief information security officer over its handling of an alleged Russian cyberespionage campaign uncovered in 2020, an incident that penetrated at least nine federal agencies and hundreds of companies. The SEC’s decision brings to a halt one of the more divisive…

Read more →

Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Policy

Top Senate Intel Dem warns of ‘catastrophic’ cyber consequences of Trump admin national security firings, politicization

Politicization of intelligence in the Trump administration, as well as the “hollowing out” of government expertise, is leaving the United States dangerously vulnerable to cyberattacks and other threats, the top Democrat on the Senate Intelligence Committee said in a floor speech Thursday. Mark Warner of Virginia chastised the president over what he called the politically-motivated…

Read more →

Asia Pacific, china, Financial, Global Security News, Research, Threats

Google, researchers see signs that Lighthouse text scammers disrupted after lawsuit

The phishing kit Lighthouse, which has aided text scams like those soliciting victims to pay unpaid road tolls, appears to have been hampered shortly after Google filed a lawsuit aimed at its creators. Google said on Thursday that Lighthouse had been shut down. Two other organizations that have tracked the suspected Chinese operators of Lighthouse…

Read more →

Breaking News, china, Europe, Global Security News, hacking, hacking news, Security

Denmark and Norway investigate Yutong bus security flaw amid rising tech fears

Denmark and Norway probe a security flaw in Chinese-made Yutong buses, deepening European fears over reliance on Chinese tech and potential cyber risks. Bus operators in Denmark and Norway are urgently probing a security vulnerability in Chinese-made Yutong electric buses, raising concerns about Western dependence on Chinese technology. The issue highlights growing European fears that…

Read more →

AI, china, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, privacy, Risk Management, Russia

The hack that messed with time, and rogue ransomware negotiators

Time itself comes under attack as a state-backed hacking gang spends two years tunnelling toward a nation’s master clock — with chaos potentially only a tick away. Plus when ransomware negotiators turn to the dark side, what could possibly go wrong? All this and more is discussed in episode 442 of the “Smashing Security” podcast…

Read more →

china, Global Security News, Law & order, malware, Podcast, Ransomware

Smashing Security podcast #442: The hack that messed with time, and rogue ransom where negotiators

Time itself comes under attack as a state-backed hacking gang spends two years tunnelling toward a nation’s master clock — with chaos potentially only a tick away. Plus when ransomware negotiators turn to the dark side, what could possibly go wrong? All this and more is discussed in episode 442 of the “Smashing Security” podcast…

Read more →

Artificial Intelligence (AI), china, Commentary, Cybersecurity, Global Security News, Government

Government and industry must work together to secure America’s cyber future

At this very moment, nation-state actors and opportunistic criminals are looking for any way to target Americans and undermine our national security.  Their battlefield of choice is cyberspace. Cybersecurity is the preeminent challenge of our time, and threats to our networks impact far more than just our data––they impact the resilience of our communities, the…

Read more →

Asia Pacific, Breaking News, china, Global Security News, hacking, intelligence, Security

Suspected Chinese actors compromise U.S. Telecom firm Ribbon Communications

A nation-state actor, likely a China-nexus one, hacked the U.S.-based technology company Ribbon Communications. Ribbon Communications is a U.S.-based technology company that provides telecommunications and networking. Ribbon Communications employs approximately 3,052 people as of December 31, 2024. The company reported annual revenue of US $834 million in 2024. The U.S. telecom provider disclosed a cyberattack…

Read more →

china, Geopolitics, Global Security News, Government, North America, Policy

National cyber director says U.S. needs to counter Chinese surveillance, push American tech

The United States needs to counter China’s “attempt to export a surveillance state across planet Earth,” and instead push a “clean American tech stack” globally, National Cyber Director Sean Cairncross said Friday. “It’s important that we send that message and engage with not only partners that we have now, but potential partners who are looking…

Read more →

APT, china, Commentary, Cybersecurity, Exploits, Global Security News, Uncategorized

Shifting from reactive to proactive: Cyber resilience amid nation-state espionage

In recent years, the cybersecurity industry has made significant strides in securing endpoints with advanced Endpoint Detection and Response (EDR) solutions, and we have been successful in making life more difficult for our adversaries.  While this progress is a victory, it has also produced a predictable and dangerous consequence where threat actors are shifting their…

Read more →

AI, china, Compliance, Cybersecurity, Global Security News, privacy

How to hack a prison, and the hidden threat of online checkouts

A literal insider threat: we head to a Romanian prison where “self-service” web kiosks allowed inmates to run wild. Then we head to the checkout aisle to ask why JavaScript on payment pages went feral, and how new PCI DSS rules are finally muzzling Magecart-style skimmers. Plus: Graham reveals his new-found superpower with Keyboard Maestro,…

Read more →

Asia Pacific, china, Cybersecurity, Geopolitics, Global Security News, Government, Threats

China’s spy agency accuses NSA of yearslong attack on the country’s timekeeping service

China’s Ministry of State Security accused the National Security Agency of conducting a yearslong attack on China’s national timekeeping infrastructure to steal sensitive data and infiltrate the service for potential sabotage.  The NSA gained initial access to China’s National Time Service Center systems in April 2023 by using credentials lifted from employees’ mobile devices that…

Read more →

Asia Pacific, Breaking News, china, Global Security News, hacking, hacking news, intelligence

China finds “irrefutable evidence” of US NSA cyberattacks on time Authority

China claims the US NSA hacked its National Time Service Center by exploiting staff phone flaws since March 2022, stealing sensitive data. China’s Ministry of State Security announced it has found “irrefutable evidence” that the US National Security Agency (NSA) conducted cyberattacks on its National Time Service Center, reports Bloomberg. The China National Time Service…

Read more →

Asia Pacific, china, Cloud, Geopolitics, Global Security News, Government, Threats

China’s ‘Typhoons’ changing the way FBI hunts sophisticated threats

Major cyber intrusions by the Chinese hacking groups known as Salt Typhoon and Volt Typhoon have forced the FBI to change its methods of hunting sophisticated threats, a top FBI cyber official said Wednesday. U.S. officials, allied governments and threat researchers have identified Salt Typhoon as the group behind the massive telecommunications hack revealed last…

Read more →

Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Global Security News, Government, Policy

National cyber director: U.S. strategy needs to shift cyber risk from Americans to its adversaries

The United States needs a “new, coordinated strategy” to counter its cyber adversaries and “shift the burden of risk in cyberspace from Americans to them,” National Cyber Director Sean Cairncross said Tuesday. “Collectively, we’ve made great progress in identifying, responding to and remediating threats, but we still lack strategic coherence and direction,” he said at…

Read more →

Asia Pacific, Breaking News, china, Global Security News, hacking, intelligence, Security

Venezuela’s President Maduro said his Huawei Mate X6 cannot be hacked by US cyber spies

Venezuela’s President Maduro shows Huawei Mate X6 gift from China’s President Xi Jinping, hailing it as “unhackable” by U.S. spies. Last week, Venezuelan President Nicolás Maduro showcased a Huawei Mate X6 smartphone, reportedly gifted by China’s President Xi Jinping, claiming that US cyber spies cannot hack it. Venezuelan President Maduro said that his device is…

Read more →

Asia Pacific, china, Cybersecurity, Federal Bureau of Investigation (FBI), Geopolitics, Global Security News, Government

Top FBI official says Chinese reliance on domestic firms for hacking is a weakness

China’s reliance on domestic technology companies to carry out large-scale hacking operations—as highlighted by the U.S. government and its allies this week—is a weakness that poses risks for Beijing, a top FBI official told CyberScoop. Cyber agencies from around the world published an alert Wednesday about what officials have described as an indiscriminate cyberespionage campaign…

Read more →

Asia Pacific, china, Exchange, Geopolitics, Global Security News, Microsoft

China accuses US of exploiting Microsoft zero-day in cyberattack

U.S. intelligence agencies launched cyberattacks on two Chinese military enterprises dating back to 2022, in one case exploiting a Microsoft zero-day, China alleged Friday. The Cyber Security Association of China said that in the first case, U.S. agencies from July of 2022 to July of 2023 “exploited a zero-day vulnerability in Microsoft Exchange Mail to…

Read more →

Asia Pacific, Biden administration, china, Geopolitics, Global Security News, Government, Threats

Feds still trying to crack Volt Typhoon hackers’ intentions, goals

Federal analysts are still sizing up what the Chinese hackers known as Volt Typhoon, who penetrated U.S. critical infrastructure to maintain access within those networks, might have intended by setting up shop there, a Cybersecurity and Infrastructure Security Agency official said Thursday. “We still don’t actually know what the result of that is going to…

Read more →

Asia Pacific, china, Gary Peters, Global Security News, Government, Technology, Threats

Senate legislation would direct federal agencies to fortify against quantum computing cyber threats

A bipartisan pair of senators are introducing legislation Thursday that would direct a White House office to develop a strategy for reckoning with the cybersecurity ramifications of quantum computers, and require agencies to begin pilot programs on quantum-safe encryption. Sens. Gary Peters, D-Mich., and Marsha Blackburn, R-Tenn., say the National Quantum Cybersecurity Migration Strategy Act…

Read more →

Asia Pacific, budget, china, Cybersecurity and Infrastructure Security Agency (CISA), Global Security News, Government, Workforce

Plankey vows to boot China from U.S. supply chain, advocate for CISA budget

President Donald Trump’s pick to lead the Cybersecurity and Information Security Agency told senators Thursday that he would prioritize evicting China from the U.S. supply chain, and wouldn’t hesitate to ask for more money for the shrunken agency if he thought it needed it. “If confirmed it will be a priority of mine to remove…

Read more →

AI, Apps, china, Cybersecurity, Data Breaches, Endpoint, Europe, Exploits, Global Security News, Government & Policy, Information Security, malware, vulnerabilities, vulnerability

Microsoft SharePoint Zero-Day EXPLAINED — How Hackers Got In Without a Password

Two previously unknown zero-day vulnerabilities in Microsoft SharePoint Server (on-premises) are being actively exploited in the wild as part of a highly coordinated espionage campaign. Microsoft has linked these attacks to China-based APT actors, and at least 75 organizations worldwide have confirmed breaches. The flaws, identified as CVE-2025-53770 and CVE-2025-53771, enable unauthenticated remote code execution…

Read more →

APT, Asia Pacific, Breaking News, china, Global Security News, hacking, intelligence

Microsoft linked attacks on SharePoint flaws to China-nexus actors

Microsoft linked SharePoint exploits to China-nexus groups Linen Typhoon, Violet Typhoon, and Storm-2603, active since July 7, 2025. Microsoft confirmed that China-linked groups Linen Typhoon, Violet Typhoon, and Storm-2603 exploited SharePoint flaws for initial access as early as July 7, 2025. “As of this writing, Microsoft has observed two named Chinese nation-state actors, Linen Typhoon…

Read more →

china, Cybercrime, Cybersecurity, Exploits, Global Security News, Research, Threats

Microsoft SharePoint zero-day attacks pinned on China-linked ‘Typhoon’ threat groups

Microsoft said two China nation-state threat groups and a separate attacker based in China are exploiting the zero-day vulnerabilities that first caused havoc to SharePoint servers over the weekend. Linen Typhoon and Violet Typhoon — the Chinese government-affiliated threat groups — and an attacker Microsoft tracks as Storm-2603 are exploiting the pair of zero-day vulnerabilities…

Read more →

Asia Pacific, china, critical infrastructure, Global Security News, hacking, hacking news, Uncategorized

Singapore warns China-linked group UNC3886 targets its critical infrastructure

Singapore says China-linked group UNC3886 targeted its critical infrastructure by hacking routers and security devices. Singapore accused China-linked APT group UNC3886 of targeting its critical infrastructure. UNC3886 is a sophisticated China-linked cyber espionage group that targets network devices and virtualization technologies using zero-day exploits. Its primary focus is on defense, technology, and telecommunications sectors in…

Read more →

Breaking News, china, Europe, Global Security News, intelligence, Security

Spain awarded €12.3 million in contracts to Huawei

Spain gives Huawei wiretap contracts, sparking concerns over potential Chinese government access due to Huawei’s links to Beijing. The Spanish Ministry of the Interior has awarded €12.3 million ($14.3 million) contracts to manage and store judicially authorized wiretaps used by law enforcement and intelligence agencies, raising concerns about potential Chinese government access due to the…

Read more →

china, Cybercrime, Department of Justice (DOJ), Exchange Server, Geopolitics, Global Security News, North America

French police arrest Russian pro basketball player on behalf of US over ransomware suspicions

At the request of the United States, French police arrested a professional Russian basketball player who had a brief tenure at Penn State over accusations that he was part of a ransomware ring, according to overseas reports. News of the arrest of Daniil Kasatkin came in a court in Paris on Wednesday. His lawyer denied…

Read more →

china, COVID-19, Department of Justice (DOJ), Geopolitics, Global Security News, North America, Threats

Italian authorities arrest Chinese man over Microsoft Exchange Server hack, targeting of COVID-19 researchers

The Justice Department said Tuesday that Italian authorities arrested a Chinese national whom DOJ said was involved in the massive Microsoft Exchange Server hack from 2020 to 2021, an arrest made at the United States’ request. The arrest stems from a nine-count indictment dating back to 2023, which named the arrested man, Xu Zewei, 33,…

Read more →

Asia Pacific, budget, china, Global Security News, Government, Policy, Workforce

GOP domestic policy bill includes hundreds of millions for military cyber

The tax and spending bill Congress sent to President Donald Trump and that he signed into law over the holiday weekend contains hundreds of millions of dollars for cybersecurity, with a heavy emphasis on military-related spending. The biggest single pot of money under the “One Big Beautiful Bill” would be for Cyber Command, a $250…

Read more →

APT, Breaking News, china, Exploits, Global Security News, hacking, Security

China-linked group Houken hit French organizations using zero-days

China-linked group Houken hit French govt, telecom, media, finance and transport sectors using Ivanti CSA zero-days, says France’s ANSSI. France’s cyber agency ANSSI revealed that a Chinese hacking group used Ivanti CSA zero-days to target government, telecom, media, finance, and transport sectors. The campaign, active since September 2024, is linked to the Houken intrusion set,…

Read more →

APT, Asia Pacific, Breaking News, china, Global Security News, intelligence, malware

LapDogs: China-nexus hackers Hijack 1,000+ SOHO devices for espionage

Over 1,000 SOHO devices were hacked in a China-linked spying campaign called LapDogs, forming a covert network to support cyber espionage. Security researchers at SecurityScorecard’s STRIKE team have uncovered a cyber espionage campaign, dubbed LapDogs, involving over 1,000 hacked SOHO (small office/home office) devices. These compromised devices formed a hidden network, called an Operational Relay…

Read more →

APT, Asia Pacific, Breaking News, china, Global Security News, intelligence, malware

LapDogs: China-nexus hackers Hijack 1,000+ SOHO devices for espionage

Over 1,000 SOHO devices were hacked in a China-linked spying campaign called LapDogs, forming a covert network to support cyber espionage. Security researchers at SecurityScorecard’s STRIKE team have uncovered a cyber espionage campaign, dubbed LapDogs, involving over 1,000 hacked SOHO (small office/home office) devices. These compromised devices formed a hidden network, called an Operational Relay…

Read more →

APT, Asia Pacific, Breaking News, china, Global Security News, intelligence, malware

LapDogs: China-nexus hackers Hijack 1,000+ SOHO devices for espionage

Over 1,000 SOHO devices were hacked in a China-linked spying campaign called LapDogs, forming a covert network to support cyber espionage. Security researchers at SecurityScorecard’s STRIKE team have uncovered a cyber espionage campaign, dubbed LapDogs, involving over 1,000 hacked SOHO (small office/home office) devices. These compromised devices formed a hidden network, called an Operational Relay…

Read more →

Asia Pacific, china, Cybersecurity, Global Security News, Research, Threats

Stealth China-linked ORB network gaining footholds in US, East Asia

A recently discovered operational relay box (ORB) network controlled by a China-linked threat group already exceeds 1,000 devices and is growing across the United States and East Asia, SecurityScorecard said in a threat report released Monday.  The ORB network, which SecurityScorecard dubbed “LapDogs,” is primarily composed of routers designed for small or home offices but…

Read more →

Asia Pacific, china, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Gary Peters, Global Security News, Government, grants, Josh Hawley, National Cyber Director, office of management and budget, Policy, Salt Typhoon, Sean Cairncross, Senate Homeland Security and Governmental Affairs Committee, State Government, Volt Typhoon, Workforce

Sean Cairncross has policy coordination in mind if confirmed as national cyber director

Sean Cairncross laid out his vision to senators Thursday for the Office of the National Cyber Director if he is confirmed to lead it. “A goal of mine is to make sure this office sits at the place that this committee and I believe Congress intended in the statute, and that is to lead cyber…

Read more →

Andrew Garbarino, Asia Pacific, china, Congress, critical infrastructure, Cybersecurity and Infrastructure Security Agency (CISA), deepseek, Department of Homeland Security (DHS), Global Security News, Government, House Homeland Security Committee, ICE, Mobile App Vetting, Mobile Security, Money, Policy, Russia, Salt Typhoon, sector risk management agencies, TikTok

Rep. Garbarino: Ending CISA mobile app security program for feds sends ‘wrong signal’

The chairman of the House Homeland Security subcommittee on cybersecurity is apprehensive about the Department of Homeland Security’s plans to end a program that vets mobile apps for federal agencies. Rep. Andrew Garbarino, R-N.Y., sent a letter to DHS Secretary Kristi Noem on Thursday saying that especially in light of the massive Salt Typhoon telecommunications…

Read more →

Artificial Intelligence (AI), Asia Pacific, Biden administration, china, Federal Bureau of Investigation (FBI), Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Microsoft, Ransomware, regulation, Social Engineering, Trump Administration, Workforce

Top FBI cyber official Cynthia Kaiser exits for Halcyon

Cynthia Kaiser, a former top FBI cyber official, is joining the cybersecurity firm Halcyon this week as senior vice president of its newly created ransomware research center. Kaiser left the FBI last week after 20 years, serving most recently as deputy assistant director leading the bureau’s cyber policy, intelligence and engagement branch and eight years…

Read more →

Artificial Intelligence (AI), Asia Pacific, Biden administration, china, Federal Bureau of Investigation (FBI), Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Microsoft, Ransomware, regulation, Social Engineering, Trump Administration, Workforce

Top FBI cyber official Cynthia Kaiser exits for Halcyon

Cynthia Kaiser, a former top FBI cyber official, is joining the cybersecurity firm Halcyon this week as senior vice president of its newly created ransomware research center. Kaiser left the FBI last week after 20 years, serving most recently as deputy assistant director leading the bureau’s cyber policy, intelligence and engagement branch and eight years…

Read more →

Deeper Network Promo Deeper Network Promo Deeper Network Promo Image

Artificial Intelligence (AI), Asia Pacific, Biden administration, china, Federal Bureau of Investigation (FBI), Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Microsoft, Ransomware, regulation, Social Engineering, Trump Administration, Workforce

Top FBI cyber official Cynthia Kaiser exits for Halcyon

Cynthia Kaiser, a former top FBI cyber official, is joining the cybersecurity firm Halcyon this week as senior vice president of its newly created ransomware research center. Kaiser left the FBI last week after 20 years, serving most recently as deputy assistant director leading the bureau’s cyber policy, intelligence and engagement branch and eight years…

Read more →

AT&T, china, Cybersecurity, Exploits, FTIDelta, fuzzing, Global Security News, Government, Lumen Technologies, Radio Access Networks, routers, Salt Typhoon, telecommunications, University of Florida, virtual private network (VPN)

A house full of open windows: Why telecoms may never purge their networks of Salt Typhoon

When the news broke that a Chinese hacking group known as Salt Typhoon had penetrated multiple U.S. telecommunications networks, gained access to the phones of a presidential campaign, and collected geolocation data on high-value targets around Washington D.C., one of the first questions on the minds of executives and U.S. officials was how long it…

Read more →

china, critical infrastructure, Cybercrime, Exploits, gas, Global Security News, Google, Google Threat Intelligence Group, Government, Mandiant, Medical Devices, NightDragon, oil, Onapsis, Ransomware, ReliaQuest, Salt Typhoon, SAP, Saudi Arabia, SolarWinds, Threats, United Kingdom (U.K.), Volt Typhoon

SAP cyberattack widens, drawing Salt Typhoon and Volt Typhoon comparisons

Hundreds of victims are surfacing across the world from zero-day cyberattacks on Europe’s biggest software manufacturer and company, in a campaign that one leading cyber expert is comparing to the vast Chinese government-linked Salt Typhoon and Volt Typhoon breaches of critical infrastructure. The zero-days — vulnerabilities previously unknown to researchers or companies, but that malicious…

Read more →

Andrew Garbarino, Asia Pacific, Bennie Thompson, budget, china, Cybersecurity and Infrastructure Security Agency (CISA), Department of Homeland Security (DHS), Federal Emergency Management Agency, FEMA, Global Security News, Government, Mark Green, Money, regulation, Workforce

DHS won’t tell Congress how many people it’s cut from CISA

The Department of Homeland Security won’t tell Congress how many employees at the Cybersecurity and Infrastructure Security Agency it has fired or pushed to leave, a top congressional Democrat said Wednesday. “You’ve overseen mass reductions in the workforce at CISA and” the Federal Emergency Management Agency, Mississippi Rep. Bennie Thompson, the top Democrat on the…

Read more →

AI, Asia Pacific, china, Congress, deepseek, Geopolitics, Global Security News, Government

Senators move to quash the use of Chinese AI system by federal contractors 

A bipartisan Senate bill would formally ban the use of DeepSeek by federal contractors, part of a larger effort to keep the Chinese-made large language model out of government systems and networks, where lawmakers fear it could pose cybersecurity and national security concerns. The bill, introduced by Sens. Bill Cassidy, R-La., and Jacky Rosen, D-Nev.,…

Read more →

Asia Pacific, budget, china, CISA, Cybercrime, Cybersecurity and Infrastructure Security Agency, Department of Homeland Security (DHS), Global Security News, Government, House Appropriations Committee, Policy

House appropriators have reservations — or worse — about proposed CISA cuts

House appropriators on Tuesday challenged proposed budget cuts for the Cybersecurity and Infrastructure Security Agency, with Democrats saying the Trump administration was disturbingly moving money away from the agency and a key Republican saying he needed to see justifications for the reductions. The Trump administration has proposed cutting CISA funding by $491 million, and some…

Read more →

china, Global Security News, Government, House Energy and Commerce Committee, microchips, Nanette Barragan, North America, Policy, Richard Hudson, Salt Typhoon, Tariffs, telecommunications, Telecommunications Industry Association, undersea cables

Tariffs could slow replacement of telecom networks, according to industry official

Tariff hikes will drive up prices and make it harder for telecommunications providers to replace networks more vulnerable to Chinese hacker intrusion, an industry official told lawmakers Wednesday. “Tariffs will only raise prices,” David Stehlin, CEO of the Telecommunications Industry Association, told Rep. Darren Soto, D-Fla. While it makes sense to find ways to bring…

Read more →

china, critical infrastructure, FireEye, Global Security News, North Korea, North Korean IT workers, Ransomware, Research, Russia, SentinelOne, SolarWinds, telecommunications, Threats, Workforce

Cybersecurity vendors are themselves under attack by hackers, SentinelOne says

Cybersecurity companies don’t just defend their customers against cyberattacks — they also have to defend themselves, and a SentinelOne report published Monday examines some of the biggest threats they’re facing. Those include ransomware, Chinese government-sponsored hackers and North Korean IT workers posing as job applicants, according to the report from SentinelOne’s SentinelLabs. “In recent months,…

Read more →

AI, Artificial Intelligence (AI), Asia Pacific, china, cloud computing, Cybercrime, Cybersecurity, Global Security News, North Korea, Russia, SentinelOne, wiz

AI can help defenders stop nation-state threat actors at machine speed

Last year, the escalating concerns about Chinese threat actors breaching U.S. organizations reached a crescendo as federal authorities issued increasingly urgent advisories about China’s “Typhoon” groups infiltrating U.S. networks, pressing organizations to take immediate action. The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that these groups were engaged…

Read more →

Apps, Asia Pacific, china, Commerce, Global Security News, Shopping, Tariffs

Chinese shopping app Taobao joins DHgate in Top 5 on US App Store

The Chinese e-commerce marketplace app DHgate, which is now the No. 2 free iPhone app in the U.S., isn’t the only one that’s oddly benefiting from President Trump’s tariffs on U.S. imports from China. Another Chinese shopping app, Taobao, has now also entered the Top 5 as of Thursday. U.S. consumers began flocking to these…

Read more →

Asia Pacific, autonomous vehicles, china, Global Security News, Transportation

Automakers selling cars in China banned from using ‘autonomous driving’ in ads

China is cracking down on how automakers advertise driver assistance features, banning terms like “autonomous driving,” “self-driving,” and “smart driving,” Reuters reported, citing a transcript of a meeting between the government and industry representatives. The updated rule will also prohibit automakers from rolling out improvements via software updates to advanced driving assistance systems in vehicles…

Read more →

AI, Asia Pacific, china, Congress, Cybersecurity, deepseek, export control, Geopolitics, Global Security News, Government, House Select Committee on Chinese Communist Party, openai, Technology

House investigation into DeepSeek teases out funding, security realities around Chinese AI tool

A House panel has concluded that the U.S. government should double down on export controls and other tools to slow down the progress of Chinese AI companies like DeepSeek, while also preparing for a future where those efforts fail. In a report released Wednesday, the House Select Committee on the Chinese Communist Party further fleshes…

Read more →

Asia Pacific, china, Global Security News, iVerify, New Zealand, privacy, Salt Typhoon, Saudi Arabia, surveillance, Technology, telecommunications, Threats

35 countries use Chinese networks for transporting mobile user traffic, posing cyber risks

U.S. allies are among the 35 countries where mobile providers employ China-based networks for transporting user traffic, opening travelers and residents in those nations to potential surveillance, an analysis published Thursday concludes. “Everyone knows that they have to be careful with their phones when they travel to China,” Rocky Cole, chief operating officer at iVerify,…

Read more →

Asia Pacific, china, CISA, critical infrastructure, Cybersecurity and Infrastructure Security Agency, Cybersecurity and Infrastructure Security Agency (CISA), Cybersecurity Information Sharing Act, Department of Homeland Security (DHS), disinformation, Exclusive, Gary Peters, Global Security News, Government, information sharing, information sharing and analysis centers (ISACs), Joint Cyber Defense Collaborative, Local Government, Mike Rounds, misinformation, North Carolina, Policy, privacy, Russia, Salt Typhoon, Senate Armed Services Committee, Senate Homeland Security and Governmental Affairs Committee, SolarWinds, State Government, Volt Typhoon

Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat information sharing law

A bipartisan pair of senators are kicking off the race Wednesday to reauthorize a 2015 cyber threat information sharing law, a move that industry groups and cyber experts are eager to see happen before it’s set to expire in September. Advocates say the 10-year-old Cybersecurity Information Sharing Act has been vital to sharing threat information…

Read more →

Asia Pacific, china, critical infrastructure, Geopolitics, Global Security News, Microsoft, National Security Agency

Chinese law enforcement places NSA operatives on wanted list over alleged cyberattacks

China stepped up its allegations of U.S. cyberattacks Tuesday, with local law enforcement saying they were investigating three National Security Agency operatives they had placed on a wanted list and a national official condemning the alleged attacks. State media outlet Xinhau advanced the claims in two stories, one detailing a hacking campaign during the Asian…

Read more →

china, Cybercrime, Exploits, Global Security News, Remote access trojan, sysdig, UNC5174

Chinese espionage group leans on open-source tools to mask intrusions

A Chinese state-sponsored hacking group has been observed using recently released open-source offensive security tools and other tactics in an effort to blend in with more common cybercriminal activity. The group, UNC5174, is an espionage-minded hacking group that is believed to have ties to the Chinese government and targets Western governments, technology companies, research institutions…

Read more →

Apps, china, Commerce, ecommerce, Global Security News, taiffs, Tariffs, TikTok

Chinese marketplace DHgate becomes a top US app as trade war intensifies

The Trump trade war has gone viral on TikTok, pushing a Chinese e-commerce app, DHgate, to the top of the Apple App Store in the U.S. After Trump increased U.S. tariffs on Chinese imports by 145%, numerous Chinese suppliers and manufacturers began making TikTok videos explaining to consumers how the global luxury goods market actually…

Read more →

china, CISA, cisco, citrix, CVE, Cybercrime, Cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), espionage, exploit, Exploits, firewall, firewalls, Fortinet, Gartner, Global Security News, Google Threat Intelligence Group, ivanti, known exploited vulnerabilities (KEV), Mandiant, National Vulnerability Database, NIST, Palo Alto Networks, Rapid7, Research, routers, Technology, Threats, virtual private network (VPN), VulnCheck, vulnerabilities, vulnerability disclosure, zero days

Is Ivanti the problem or a symptom of a systemic issue with network devices?

Network edge devices — hardware that powers firewalls, VPNs and network routers — have quickly moved up the list of attackers’ preferred intrusion points into enterprise networks. While dozens of companies make and sell these devices, customers of one company in particular — Ivanti — have confronted exploited vulnerabilities in their products more than any…

Read more →

china, Congress, Facebook, Global Security News, Government & Policy, Meta, Sarah Wynn-Williams, Social, whistleblower

Whistleblower Sarah Wynn-Williams accuses Meta of colluding with China

Sarah Wynn-Williams, Facebook’s former head of Global Public Policy, testified before the U.S. Senate today about the company’s relationship with China. According to Wynn-Williams, the company now known as Meta worked directly with the Chinese Community Party (CCP) to “undermine U.S. national security and betray American values,” she said. She alleges that Facebook created custom-built…

Read more →

Australia, Canada, china, Citizen Lab, fbi, Federal Bureau of Investigation (FBI), Geopolitics, Germany, Global Security News, Lookout, National Security Agency, New Zealand, North America, Spyware, taiwan, Threats, Tibet, Uighur, United Kingdom (U.K.)

BadBazaar and Moonshine malware targets Taiwanese, Tibetan and Uyghur groups, U.K. warns

Two spyware variants are targeting Uyghur, Taiwanese and Tibetan groups and individuals, the U.K.’s National Cyber Security Centre warned in a joint alert Wednesday with Western allies. Cybersecurity researchers have previously linked the BADBAZAAR and MOONSHINE spyware to the Chinese government. The variants mentioned in Wednesday’s alert trojanize apps that are of interest to the…

Read more →

AI, alibaba, Asia Pacific, china, deepseek, export control, Global Security News, nvidia, Tencent

Tech experts recommend full steam ahead on US export controls for AI

Technology experts pressed Congress to maintain export controls on semiconductor chips and other technologies, telling lawmakers Tuesday that the restrictions are among the most effective strategies to slow China and other rival countries in the AI race, thereby helping U.S. companies hold a competitive edge. Placing export controls on these technologies is not new: both…

Read more →

Apple, Asia Pacific, china, Global Security News, Hardware, India, Tariffs

Apple might import more iPhones from India to side-step China tariffs

Apple is considering importing more iPhones from India to side-step the 54% additional tariffs on goods imported from China that U.S. President Donald Trump announced last week, the Wall Street Journal reported, citing anonymous sources. The company sees this as a short-term measure while it seeks to negotiate with the Trump administration to get an…

Read more →

Apple, Asia Pacific, china, Global Security News, Hardware, India, Tariffs

Apple might import more iPhones from India to side-step China tariffs

Apple is considering importing more iPhones from India to side-step the 54% additional tariffs on goods imported from China that U.S. President Donald Trump announced last week, the Wall Street Journal reported, citing anonymous sources. The company sees this as a short-term measure while it seeks to negotiate with the Trump administration to get an…

Read more →

china, CISA, Cybersecurity, Cybersecurity and Infrastructure Security Agency, espionage, exploit, Exploits, Global Security News, Google Threat Intelligence Group, ivanti, known exploited vulnerabilities (KEV), Mandiant, Research, Threats, vulnerability

China-backed espionage group hits Ivanti customers again

Ivanti customers are confronting another string of attacks linked to an actively exploited vulnerability in the company’s VPN products. Mandiant said a nation-state backed espionage group linked to China has been exploiting the critical vulnerability, CVE-2025-22457, since mid-March. The threat group, which Google Threat Intelligence Group tracks as UNC5221, has a knack for exploiting Ivanti…

Read more →