Finnish investigators have linked the seized tanker Eagle S to damage inflicted upon subsea power and data cables. A seabed drag mark, stretching dozens of kilometers, has been traced to the vessel’s anchor, which is missing. The damaged 170-kilometer power cable connecting Finland and Estonia, severed on December 25th, is the focus of the investigation, alongside disruptions to four data cables. The Eagle S, detained for possible aggravated criminal mischief, is currently anchored near Kilpilahti port while poor weather conditions hinder further investigation.
Read More
A major cybersecurity incident at the US Treasury Department involved a Chinese state-sponsored actor gaining access to several Treasury workstations and unclassified documents via a compromised third-party software provider, BeyondTrust. The intrusion, attributed to a stolen access key, allowed the actor to override security and access departmental user workstations. The compromised service has been taken offline, and investigations are underway with law enforcement and CISA. Treasury officials will brief congressional committees on the breach next week.
Read More
Despite established protocols offering secure government communication systems for presidential transitions, the Trump transition team is utilizing private servers and devices. This decision has raised concerns among federal officials regarding the potential exposure of sensitive government data, particularly given recent cyberattacks targeting key officials. While the team claims to have implemented security measures, the lack of transparency fuels anxieties. This situation contrasts sharply with the intense scrutiny surrounding Hillary Clinton’s email practices during the 2016 election, highlighting a perceived double standard. The use of private emails by the Trump transition underscores a lack of consistent concern regarding cybersecurity protocols in presidential transitions.
Read More
In a significant escalation, US officials confirmed that Chinese hackers compromised at least eight US telecommunications providers, targeting the communications of high-ranking US political figures, including President-elect Trump and members of the Biden administration. While classified information was not accessed, a substantial amount of bulk phone records and, in limited cases, call and text data were stolen. The Biden administration is working with telecom companies, including Verizon and AT&T, to remove the hackers; however, a timeline for completion remains unclear. China denies any involvement.
Read More
Chinese espionage efforts have reportedly harvested data from thousands of US mobile phone users. The sheer scale of this operation underscores a concerning vulnerability in our digital lives; we often underestimate how easily our personal data can be accessed and exploited. The fact that cell phones, devices containing incredibly intimate details of our lives, aren’t universally recognized as possessing the same level of privacy protection as, say, a personal journal, is a significant oversight.
This data breach, potentially leveraging outdated infrastructure like the 2007 “Deep Packet Inspection” project, highlights the persistent danger of insufficiently updated security protocols. The reliance on systems built with older technology makes us vulnerable to sophisticated attacks.… Continue reading
In response to escalating Russian aggression, the National Counterintelligence and Security Center, FBI, and Department of Defense agencies issued a joint warning to U.S. defense companies. The bulletin urged heightened security measures following confirmed Russian sabotage targeting European defense firms, infrastructure, and logistics, including arson and incendiary device smuggling plots. These acts, often perpetrated via local criminal proxies, aim to disrupt support for Ukraine and sow discord among allies. The warning highlighted the increased risk to U.S. companies both domestically and internationally, citing potential for injury, death, and significant infrastructural damage. Russia denies these accusations.
Read More
The suspected China-linked hack on US telecoms is being called the worst in the nation’s history, a staggering revelation that underscores the vulnerability of our critical infrastructure. This isn’t just about data breaches; it’s about potential compromise of national security and the erosion of public trust.
The sheer scale of the intrusion is alarming, raising concerns about the depth of access gained by the attackers. It highlights a critical gap in our cybersecurity defenses and the urgent need for comprehensive upgrades and improved preventative measures. The fact that such a significant breach could occur points to a profound lack of preparedness and foresight.… Continue reading
Chinese government hackers, known as Salt Typhoon, have severely compromised U.S. telecommunications infrastructure, allowing them to intercept calls and texts. This breach, described as the worst in U.S. history, exploited systems used for domestic wiretapping, impacting major carriers and potentially millions of individuals. While end-to-end encrypted communications were likely protected, the hackers remain within U.S. systems, necessitating extensive remediation efforts, potentially involving complete equipment replacement. The extent of the damage, including metadata collection on numerous targets, remains concerning.
Read More
Damage to two Baltic Sea data cables, one connecting Helsinki to Rostock, is highly suspicious and strongly suggests sabotage, though no perpetrator has been identified. German Defense Minister Boris Pistorius stated that this incident, along with Russia’s ongoing war in Ukraine, highlights the need for a comprehensive approach to European defense against hybrid threats. The damage raises concerns about the vulnerability of critical infrastructure and the potential for malicious actors to disrupt essential services. Investigations are underway by Finland and Germany to determine the cause and responsible party.
Read More
The Chinese government’s hacking efforts are far more pervasive than previously reported, according to various sources. These efforts are not limited to targeting specific individuals or organizations, but are instead a broad-scale operation designed to gather intelligence and influence global events. While the extent of these operations remains largely unknown, the sheer scale of their ambition is alarming.
The Chinese government is deploying sophisticated tactics to infiltrate networks and steal data, often targeting both individuals and organizations at all levels. The tactics they employ range from the classic phishing scams to the more advanced techniques of exploiting vulnerabilities in software and hardware.… Continue reading
John Q. Hosedrinker 
Matt Underwood