Risky Bulletin Srsly Risky Biz: Drug cartels are the new APTs
Aug 14, 2025
Tom Uren and Amberleigh Jack dive into a concerning hack of the US court system, revealing that not only state actors but drug cartels are probing sensitive information. They discuss the urgent need for enhanced cybersecurity measures to combat these threats. The complexities of cyber warfare are explored, highlighting the limitations of current offensive strategies. The conversation also touches on the risks faced by tech companies involved with foreign intelligence, alongside Australia’s escalating espionage challenges in a competitive global landscape.
AI Snips
Chapters
Transcript
Episode notes
Sensitive Unclassified Data Is High-Value
- US courts' document systems hold sensitive but unclassified data that attracts many adversaries simultaneously.
- Multiple state APTs and criminal groups, including drug cartels, accessed these systems making the breach unusually severe.
2020 Breach Didn’t Fully Fix Risk
- The US courts' document systems were previously hacked in 2020 and highly sensitive documents were moved off-line.
- Tom Uren describes that less-sensitive but still valuable files remained online and were later compromised again.
Non‑Classified Data Often Lacks Protection
- Many federal systems hold valuable non-classified data but lack the same security posture as classified systems.
- Without centralized, proactive uplift (e.g., CISA-led), agencies will keep getting breached and react case-by-case.