Microsoft Threat Intelligence Podcast

Gingham Typhoon’s Cyber Expansion Into the South Pacific

Oct 9, 2024

In this discussion, Nick Monaco, Principal Threat Intelligence Analyst at Microsoft, shares insights on Gingham Typhoon's expansion into South Pacific cyber operations, particularly targeting Papua New Guinea amidst the Belt and Road Initiative. The conversation highlights Nylon Typhoon’s espionage in South America and Europe and the sophisticated attacks from Volt Typhoon on U.S. critical infrastructure. Monaco also warns of the risks posed by AI-generated misinformation strategies from Storm 1376, emphasizing the evolving nature of cyber threats and the need for robust countermeasures.

38:56

Creator website

Episode guests

Nick Monaco

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Gingham Typhoon's expansion into the South Pacific demonstrates China's strategic intent to influence regional partners while conducting espionage operations.

The rise of AI-generated misinformation tactics employed by Tides of Flood highlights the alarming evolution of influence operations and their global impact.

Deep dives

Gingham Typhoon's Expanding Targets

Gingham Typhoon is a Chinese government-linked cyber actor that has recently broadened its focus to include strategic partners and lesser-known targets in the South Pacific Islands. Notably, Papua New Guinea, which is involved in China's Belt and Road Initiative, is among the targets of Gingham's espionage efforts. The activities include sophisticated spear phishing campaigns that leverage email as a vehicle for malware delivery. This expansion suggests a calculated strategy by China to increase its influence in the region while still maintaining cyber operations against its partners.

Intro

3min

Cyber Threats in the Belt and Road Initiative

4min

Defending Against Living Off the Land Techniques

2min

The Rise of AI in Misinformation Campaigns

18min

Leveraging Language Models for Enhanced Influence Messaging

2min

Cyber Threats from the North: Insights into China and North Korea

9min

In this episode of the Microsoft Threat Intelligence Podcast host Sherrod DeGrippo is joined by Nick Monaco, Principal Threat Intelligence Analyst at Microsoft, delving into findings from Microsoft's April 2024 East Asia threat report. They discuss Gingham Typhoon's expanding cyber operations in the South Pacific, notably targeting strategic partners like Papua New Guinea despite their involvement in China's Belt and Road Initiative. The conversation shifts to Nylon Typhoon's global espionage efforts, including recent activities in South America and Europe. They also cover Volt Typhoon's sophisticated attacks on U.S. critical infrastructure and highlight Storm 1376's (now Tides of Flood) use of AI-generated news anchors for spreading misinformation. This episode emphasizes the evolving nature of cyber threats and influence operations, including the creative use of technology by adversaries to advance their agendas.

* This episode is from April 2024 and is not new information.

In this episode you’ll learn:

How Nylon Typhoon targets geopolitical intelligence in South America and Europe
The evolving landscape of influence operations and China's growing capabilities
How disinformation campaigns have exploited real-world events

Some questions we ask:

How has generative AI changed influence operations and disinformation?
What are the key trends in North Korean cyber operations with cryptocurrency and AI?
Why are Chinese influence operations engaging with questions on social media?

Resources:

View Nick Monaco on LinkedIn

View Sherrod DeGrippo on LinkedIn

Related Microsoft Podcasts:

Discover and follow other Microsoft podcasts at microsoft.com/podcasts

Get the latest threat intelligence insights and guidance at Microsoft Security Insider

The Microsoft Threat Intelligence Podcast is produced by Microsoft and distributed as part of N2K media network.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Microsoft Threat Intelligence Podcast

Gingham Typhoon’s Cyber Expansion Into the South Pacific

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Gingham Typhoon's Expanding Targets

Nylon Typhoon's Global Campaigns

Volt Typhoon's Infrastructure Threats

Influence Operations and AI Usage

In this episode you’ll learn:

Some questions we ask:

Resources:

Related Microsoft Podcasts:

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Microsoft Threat Intelligence Podcast

Gingham Typhoon’s Cyber Expansion Into the South Pacific

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Gingham Typhoon's Expanding Targets

Nylon Typhoon's Global Campaigns

Volt Typhoon's Infrastructure Threats

Influence Operations and AI Usage

In this episode you’ll learn:

Some questions we ask:

Resources:

Related Microsoft Podcasts:

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights