CyberWire Daily

China sets sights on US critical infrastructure.

Dec 11, 2023

Chinese hackers target US critical infrastructure, Iranian CyberAv3ngers attack Irish village water supply. EU sets precedent with AI regulations. Lazarus Group's maneuvers unraveled. Sandman APT's ties to Chinese cyber threats. Challenges of '5Ghoul' vulnerabilities. Deceptive dangers of MrAnon infostealer. GRU's phishing tactics spread Headlace malware.

36:14

Creator website

Episode guests

US critical infrastructure

Sandman APT

MrAnon infostealer

Lazarus Group

Iranian CyberAv3ngers

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

China's People's Liberation Army has infiltrated critical US entities, potentially preparing for cyber attacks to disrupt infrastructure in a conflict scenario.

The European Union's AI Act sets a global standard for AI regulation, including provisions banning the creation of facial recognition databases from internet or security footage.

Deep dives

Chinese military intensifies efforts to compromise American infrastructure

According to US and industry security officials, hackers linked to China's People's Liberation Army have infiltrated computer systems of about two dozen critical entities over the past year. These cyber intrusions are seen as preparations for potential chaos or logistical disruption in case of a US-China conflict, particularly in the Pacific region. The US intelligence community has warned that China could launch cyber attacks to disrupt critical US infrastructure in a major conflict scenario.

Introduction

4min

Chinese Hackers Target Critical Entities for Potential Chaos or Logistical Disruption

10min

Russia's Interest and Cybersecurity Solutions

4min

Diversity and Inclusion in the Technology Field

10min

Importance of Employee Development and 23andMe Data Breach

4min

China allegedly targets US critical infrastructure, while a small Irish village goes without water due to an Iranian CyberAv3ngers attack. The EU sets a global precedent with new AI regulations. Unraveling the latest maneuvers of the Lazarus Group. The Sandman APT's links to Chinese cyber threats. "5Ghoul" vulnerabilities represent a new challenge in telecom security. The deceptive dangers of the MrAnon infostealer in a booking app. The GRU's phishing tactics lead to the spread of Headlace malware. On today’s Solution Spotlight segment, Kristie Grinnell from DXC Technology talks with N2K’s President Simone Petrella about DXC’s “All in on Cyber” program. And 23andMe's controversial update to its terms and conditions.

Remember to leave us a 5-star rating and review in your favorite podcast app.

Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you’ll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn.

CyberWire Guest

On today’s Solution Spotlight segment, Kristie Grinnell from DXC Technology talks with N2K’s President Simone Petrella about DXC’s “All in on Cyber” program. Kristie is DXC’s Senior Vice President and Chief Information Officer.

Selected Reading

China’s cyber army is invading critical US services (Washington Post)

Hackers hit Erris water in stance over Israel (Western People)

FBI: Cyberattack against Aliquippa water authority was a targeted 'escalation' on overlooked technology (Post Gazette)

White House aide says Iranian hack of US waterworks is call to action (C4ISRNet)

EU reaches deal on landmark AI bill, racing ahead of US (Washington Post)

Operation Blacksmith: Lazarus targets organizations worldwide using novel Telegram-based malware written in DLang (Cisco Talos)

Sandman APT | China-Based Adversaries Embrace Lua (SentinelOne)

5Ghoul : Unleashing Chaos on 5G Edge Devices (Singapore University of Technology and Design)

MrAnon Stealer Spreads via Email with Fake Hotel Booking PDF (Fortinet)

ITG05 operations leverage Israel-Hamas conflict lures to deliver Headlace malware (Security Intelligence)

23andMe changes terms of service amid legal fallout from data breach (Axios)

Share your feedback.

We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.

Want to hear your company in the show?

You too can reach the most influential leaders and operators in the industry. Here’s our media kit. Contact us at cyberwire@n2k.com to request more info.

Learn more about your ad choices. Visit megaphone.fm/adchoices

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CyberWire Daily

China sets sights on US critical infrastructure.

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Chinese military intensifies efforts to compromise American infrastructure

Iranian cyber-avengers disrupt water supply in Ireland

European Union's comprehensive AI law and its implications

CyberWire Guest

Selected Reading

Share your feedback.

Want to hear your company in the show?

Remember Everything You Learn from Podcasts