China's Sneaky Spies: Phishing, AI Hacks, and a Salesforce Smackdown!

This is your China Hack Report: Daily US Tech Defense podcast.Hey there, folks I'm Ting, and welcome back to our China Hack Report: Daily US Tech Defense. Today, I'm diving into the latest China-linked cyber activities that are making waves in the States. Let's start with the super-sneaky TA415 group, which has been all over US organizations involved in trade and economic policy. They're using really convincing phishing emails, impersonating big names like John Moolenaar, Chair of the Select Committee on Strategic Competition between the US and the Chinese Communist Party. These emails are designed to get you to click on links that ultimately install malware, allowing them to spy on US trade negotiations[1][3].In the past 24 hours, there hasn't been a massive spike in new malware, but what we're seeing is a significant increase in AI-powered tools. A China-based company, Cyberspike, has a tool called Villager that's gaining traction—over 11,000 downloads already While it's marketed as a red teaming tool, the concern is that it could be repurposed by cybercriminals[2][4].Recently, CISA issued a warning about a critical vulnerability in DELMIA Apriso software, which has been actively exploited. This vulnerability, CVE-2025-5086, carries a CVSS score of 9.0, making it super serious. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recommends immediate patching to avoid being compromised[2].In terms of immediate defensive actions, CISA advises keeping all software up to date and being cautious with attachments and links. For those dealing with cloud services, especially Salesforce platforms, the FBI has issued alerts about groups like UNC6040 and UNC6395, which are orchestrating data theft attacks[2].That's all for today, folks. Thanks for tuning in Don't forget to subscribe to stay updated on the latest in China and US tech defense. This has been a quiet please production, for more check out quiet please dot ai.For more http://www.quietplease.aiGet the best deals https://amzn.to/3ODvOtaThis content was created in partnership and with the help of Artificial Intelligence AI

There are no comments yet.

Please log in to write the first comment.