China's Cyber Trojan Horse Gallops into US Infrastructure as Hacks Run Amok episode artwork

EPISODE · Aug 3, 2025 · 5 MIN

China's Cyber Trojan Horse Gallops into US Infrastructure as Hacks Run Amok

from Digital Frontline: Daily China Cyber Intel · host Inception Point AI

This is your Digital Frontline: Daily China Cyber Intel podcast. Hey listeners, Ting here on Digital Frontline: Daily China Cyber Intel—the one-stop byte for all things China, hacking, and national security, freshly brewed for Sunday, August 3, 2025. Let’s plug straight into the cyber happenings of the past 24 hours, because, wow, the ones and zeroes haven’t taken a break. First up, if you think cyber risk from China is hype, Arnie Bellini, former ConnectWise CEO, begs to disagree. He’s waving the red flag—China’s the numero uno digital threat, with their tech flooding US infrastructure and hiding mysterious code. Think: a Trojan horse with a power cable. We’re not just talking minor bugs—official US investigations have found code in imported inverters, batteries, EV chargers, and even heat pumps that could remotely flip the switch on our natural gas pipes or power grids. According to Bellini, “We’re rolling in the Trojan horse.” And it’s not rolling out anytime soon. Pivoting to cyber espionage, it’s been a smorgasbord of American targets this week. The group Salt Typhoon, widely suspected as Chinese state-backed, breached a U.S. state’s Army National Guard network, scraping sensitive data from March to December last year. And in case that wasn’t enough, CNN just revealed that the Washington, D.C. firm Wiley Rein—key advisor for US-China trade—got popped again, hackers digging for intelligence gold. Microsoft’s SharePoint platform has been a hackfest lately, too. Several Chinese-linked groups, including Storm-2603 and Violet Typhoon, exploited new bugs, breaching everything from the National Nuclear Security Administration to the Rhode Island General Assembly. Microsoft scrambled patches, but attackers were already inside. To rub more salt in, a ProPublica expose revealed US Department of Defense computer systems quietly maintained by engineers in China—Microsoft axed that practice, fast. And if your business runs SonicWall VPNs, brace yourself. Akira ransomware has been chewing through even fully patched VPNs. Arctic Wolf Labs suspects a zero-day flaw—organizations with all the right settings, even multi-factor authentication, still got whacked. Until SonicWall releases a fix, experts recommend disabling SSL VPN services entirely and watching for suspicious logins, especially from virtual private servers. Speaking of ransomware, the SafePay gang is wreaking havoc. The US has borne the brunt, with 103 confirmed victims this year—manufacturing, education, and health care are their favorite targets. SafePay’s malware won’t even bother if it spots a Russian, Kazakh, or Azerbaijani system language—it’s laser-focused on Western pockets. And before anyone thinks pure cybercrime is separate from geopolitics, Silent Push’s CEO Ken Bagnall says otherwise. Take Funnull, a Philippines-based infrastructure provider for scams run by Liu Lizhi, a Chinese national. The US Treasury sanctioned them in May, citing 332,000 scam-linked domains. But as Bagnal This content was created in partnership and with the help of Artificial Intelligence AI.

This is your Digital Frontline: Daily China Cyber Intel podcast. Hey listeners, Ting here on Digital Frontline: Daily China Cyber Intel—the one-stop byte for all things China, hacking, and national security, freshly brewed for Sunday, August 3, 2025. Let’s plug straight into the cyber happenings of the past 24 hours, because, wow, the ones and zeroes haven’t taken a break. First up, if you think cyber risk from China is hype, Arnie Bellini, former ConnectWise CEO, begs to disagree. He’s waving the red flag—China’s the numero uno digital threat, with their tech flooding US infrastructure and hiding mysterious code. Think: a Trojan horse with a power cable. We’re not just talking minor bugs—official US investigations have found code in imported inverters, batteries, EV chargers, and even heat pumps that could remotely flip the switch on our natural gas pipes or power grids. According to Bellini, “We’re rolling in the Trojan horse.” And it’s not rolling out anytime soon. Pivoting to cyber espionage, it’s been a smorgasbord of American targets this week. The group Salt Typhoon, widely suspected as Chinese state-backed, breached a U.S. state’s Army National Guard network, scraping sensitive data from March to December last year. And in case that wasn’t enough, CNN just revealed that the Washington, D.C. firm Wiley Rein—key advisor for US-China trade—got popped again, hackers digging for intelligence gold. Microsoft’s SharePoint platform has been a hackfest lately, too. Several Chinese-linked groups, including Storm-2603 and Violet Typhoon, exploited new bugs, breaching everything from the National Nuclear Security Administration to the Rhode Island General Assembly. Microsoft scrambled patches, but attackers were already inside. To rub more salt in, a ProPublica expose revealed US Department of Defense computer systems quietly maintained by engineers in China—Microsoft axed that practice, fast. And if your business runs SonicWall VPNs, brace yourself. Akira ransomware has been chewing through even fully patched VPNs. Arctic Wolf Labs suspects a zero-day flaw—organizations with all the right settings, even multi-factor authentication, still got whacked. Until SonicWall releases a fix, experts recommend disabling SSL VPN services entirely and watching for suspicious logins, especially from virtual private servers. Speaking of ransomware, the SafePay gang is wreaking havoc. The US has borne the brunt, with 103 confirmed victims this year—manufacturing, education, and health care are their favorite targets. SafePay’s malware won’t even bother if it spots a Russian, Kazakh, or Azerbaijani system language—it’s laser-focused on Western pockets. And before anyone thinks pure cybercrime is separate from geopolitics, Silent Push’s CEO Ken Bagnall says otherwise. Take Funnull, a Philippines-based infrastructure provider for scams run by Liu Lizhi, a Chinese national. The US Treasury sanctioned them in May, citing 332,000 scam-linked domains. But as Bagnal This content was created in partnership and with the help of Artificial Intelligence AI.

NOW PLAYING

China's Cyber Trojan Horse Gallops into US Infrastructure as Hacks Run Amok

0:00 5:05

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

Darknet Discussions Darknet Discussions Welcome to "Darknet Discussions," the podcast that gets into the shadows of the internet to bring you the most intriguing, enlightening, and sometimes unsettling stories from the dark web. Hosted by seasoned darknet aficionados, each episode of "Darknet Discussions" explores the intricate dynamics of darknet markets, cybersecurity threats, and the digital underworld. Join us as we interview experts, discuss the latest trends in cybercrime, and shed light on the technologies that operate beneath the surface of everyday internet use. Also, we occasionally go off on a tangent about something completely unrelated. The Digital Experience Show by Enonic Enonic All you need to know about digital strategy, digital experiences, and CMS are covered in this podcast. Powered by NotebookLM. Christadelphian Encouragements CE.captivate.fm Christadelphian Encouragements provides sermons, exhortations, bible studies, memorials, and daily readings from around the world. Please visit ChristadelphianEncouragements.Com and our content creators websites for more information and Christian audio content. CISO Perspectives (public) N2K Networks This season on CISO Perspectives, host Kim Jones explores some of the challenges of leading through uncertainty. We explore the complexity of the changing nature of regulation and working with the federal government, the evolution of privacy and fraud, and how emerging technologies like AI and quantum computing are changing cyber. When you don’t know what questions to ask, you’re afraid to ask, or don’t know who to ask, CISO Perspectives provides the foundation for learning in this brave new world.

Frequently Asked Questions

How long is this episode of Digital Frontline: Daily China Cyber Intel?

This episode is 5 minutes long.

When was this Digital Frontline: Daily China Cyber Intel episode published?

This episode was published on August 3, 2025.

What is this episode about?

This is your Digital Frontline: Daily China Cyber Intel podcast. Hey listeners, Ting here on Digital Frontline: Daily China Cyber Intel—the one-stop byte for all things China, hacking, and national security, freshly brewed for Sunday, August 3,...

Can I download this Digital Frontline: Daily China Cyber Intel episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!