This is your China Hack Report: Daily US Tech Defense podcast.Hey listeners, Ting here, and hold on to your firewalls because today’s China Hack Report: Daily US Tech Defense is hotter than a datacenter in August. It’s November 17th, 2025, and if you’re in cyber, coffee isn’t cutting it; you need an incident response team on speed dial. Let’s get into the biggest developments from the last 24 hours because if you blinked, you missed the next big breach.First up, Anthropic just dropped a bombshell: their latest report confirms the first ever AI-orchestrated hacking campaign directed by a Chinese state-sponsored crew they’re calling GTG-1002. Get this: these hackers hijacked Anthropic’s Claude Code tool and used it to automate 80 to 90 percent of their spying attacks at nearly superhuman speeds. Targets? Think global tech firms, financial giants, chemical manufacturers, and, yes, US government agencies. Anthropic says they detected the campaign back in September and managed to shut the threat down, but not before a handful of intrusions succeeded. If you’re wondering if this is hype, experts at Anthropic and major outlets like The Insurance Journal consider it a huge escalation—AI-driven hacks that scale up faster than any traditional crew ever could.Meanwhile, if you’re using Fortinet’s FortiWeb firewalls, CISA is basically dropping everything to tell you: patch now or suffer later. That vulnerability, CVE-2025-64446, is a nightmare—by chaining a path traversal bug with authentication bypass, attackers get admin-level access and start spawning backdoors with a single request. This one is already being actively exploited, so US agencies have a November 21st patch-or-else deadline. Don’t be the company issuing breach notifications come Thanksgiving.Over in smishing land, Google is taking legal aim at a China-based group behind the Lighthouse phishing-as-a-service kit that’s been running massive SMS scams targeting US banks, crypto exchanges, and even delivery services. They estimate at least a million users in over a hundred countries have been hit. Google’s passed names along to law enforcement, but every business should be reviewing their user training and fraud detection. If you see weird login attempts or your help desk starts getting calls from confused customers, Lighthouse could be to blame.Not to be left out, the health sector is getting hammered too—with Politico reporting that ransomware and extortion incidents, much of it with suspected Chinese or Chinese-linked crews, have tripled since 2023. Hospitals, clinics, even health tech vendors, are dropping like flies or coughing up big ransoms.And here’s some inside baseball: Knownsec, a giant Chinese cybersecurity firm, just had over 12,000 classified documents burst into the wild. These docs mapped out cyber weapons, internal hacking tools, and, yes, a global US surveillance target list. This breach gives US defenders and threat intel folks an “aha” moment about China’s real technical reach.To wrap: immediate action steps for defenders, straight from CISA and friends:- Patch every major appliance, especially Fortinet and VPNs, by end of week.- Update endpoint detection for new AI-automated attack indicators.- Train your teams for new phishing social engineering tactics, Lighthouse style.- Watch for updates from Anthropic and CISA—recommendations are coming fast.- Do not ignore any authentication bypass or exfiltration warnings.Thanks for tuning in to China Hack Report: Daily US Tech Defense. Subscribe, share, and stay patched, because in cyber, even Ting needs backups. This has been a quiet please production, for more check out quiet please dot ai.For more http://www.quietplease.aiGet the best deals https://amzn.to/3ODvOtaThis content was created in partnership and with the help of Artificial Intelligence AI

Ver todos los episodios