Daily Drop (523): CCP India: General Ju, China on U.S. Doorstep, OpenAI’s Mira Murati, Russia's Clop: US GOV Target, US Senate: bill to Seize & Transfer Russian Assets to Ukraine, UK: Ukraine Cyber
06-18-23
Sunday, Jun 18, 2023 // (IG): BB // Financial Enabler PODCAST // Coffee for Bob
General Ju is the man behind CCP’s cyber warfare against India
Analyst Comments: The PLA's cyber warfare capability has become a significant concern for global cybersecurity. The diversification and specialization of its units indicate a strategic approach to information and cyber warfare. General Ju's leadership and the recent activities attributed to his units suggest a high level of competence in cyber warfare. China's reported goal to shape international public narratives, weaken the enemy’s will, and promote its own interests demonstrates the interplay of cyber warfare with broader political and diplomatic strategies. This shows a comprehensive approach to hybrid warfare, integrating cyber, psychological, and conventional aspects. The warning by Jen Easterly, the US’ Cybersecurity and Infrastructure Security Agency Director, about China's potential to sabotage US infrastructure is a stark acknowledgment of China's capabilities and a clear indication of the urgent need for improved defensive measures. The repeated incidents of suspected Chinese cyber-attacks, such as the power outage in Mumbai in 2020, further underline the potential impact of these operations on critical infrastructure and public services.
FROM THE MEDIA: Unit 78020, based in Kunming, Yunnan province of Southern China, is part of the People’s Liberation Army (PLA) and focuses on cyber warfare. These units are supervised by the Strategic Support Force (SSF), created in 2015 to fight in the realms of space, cyber, political, and electronic warfare. At least 10 such units exist across China, each focusing on a different set of countries. Each unit reportedly has staff well-versed in the language of the country they are focusing on. The SSF is led by General Ju Qian Sheng, who has been leading it since July 2021. The SSF has been carrying out psychological warfare, particularly on Twitter, and works on the principle of executing the "three warfare" concept — psychological warfare, public opinion warfare, and legal warfare. Jen Easterly, US Cybersecurity and Infrastructure Security Agency Director, recently warned of major Chinese investments in the capability to sabotage US infrastructure.
READ THE STORY: TSG
China's Growing Clout on U.S. Doorstep
Analyst Comments: China's increased influence in Latin America and the Caribbean represents a strategic challenge for the U.S. and could potentially redefine geopolitical dynamics in the region. The increasing economic reliance of some Latin American countries on China might limit U.S. influence and increase vulnerability to Beijing's political and strategic objectives. The spread of Chinese technology and standards, particularly in sensitive areas like telecommunications, raises significant concerns about data privacy and national security. The U.S. might find it increasingly difficult to curb China's influence, given the economic benefits that Beijing can provide to these countries.
FROM THE MEDIA: China's influence in Latin America and the Caribbean has grown significantly over the past two decades, challenging U.S. traditional dominance in the region. China's economic, political, and technological influence has increased due to strong trade relations, non-interference policies, and significant inroads in the technology and telecommunications sectors. There are also signs of growing military cooperation. This growing clout is perceived as a challenge to U.S. regional dominance, altering geopolitical dynamics, and leading to concerns about China leveraging its economic influence for political and strategic gains, potentially undermining U.S. interests. It also raises concerns about the spread of Chinese standards and norms around governance, digital infrastructure, and human rights. The U.S. has been working to counter China's influence by bolstering its own economic ties, pushing for democratic governance, and warning about the potential downsides of engaging too closely with China.
READ THE STORY: Newsweek
OpenAI’s Mira Murati: the woman charged with pushing generative AI into the real world
Analyst Comments: OpenAI's rapid success and widespread usage of its AI-driven ChatGPT tool highlight the increasing demand for AI products, especially those that can produce human-like text and facilitate tasks. This demand extends beyond consumer applications, with businesses across industries exploring ways to integrate the technology into their operations. OpenAI's projected revenue growth indicates a promising future for the commercialization of AI technology, especially as it continues to innovate and offer more diverse applications for its tools.
FROM THE MEDIA: OpenAI's Chief Technology Officer, Mira Murati, is at the helm of the company's efforts to commercialize generative AI, with their chatbot, ChatGPT, as a standalone product. The bot quickly reached a user base of 1 million within just five days of its launch, and now has about 100 million users a month. Tech giants like Google have adjusted their AI strategies in response, and businesses in various industries see potential applications for the technology. OpenAI's strategy has broadened to focus on the ChatGPT platform and the company plans to offer a business subscription that allows clients to customize the bot for their own purposes. The company has also launched Plugins that allow users to perform various tasks while remaining inside the ChatGPT. In addition to this, they also offer an API, which lets third parties integrate OpenAI's software into their own products for a fee. These developments have resulted in a projected revenue increase for the company from $28 million in 2022 to a predicted $200 million in 2023.
READ THE STORY: FT
US government hit by Russia's Clop in MOVEit mass attack
Analyst Comments: The MOVEit vulnerability is another instance highlighting the increased risk of cyber threats and the need for robust cybersecurity measures. The attacks, which seem to be more opportunistic than targeted, have nevertheless impacted significant organizations. The prompt response by the US DOE and CISA demonstrates the seriousness with which such cyber threats are taken. While the MOVEit attacks aren't considered to be as threatening to national security as the SolarWinds incident, it’s clear that they represent a considerable concern for individual agencies, corporations, and universities. It’s crucial for all organizations to regularly patch and update their systems to guard against such vulnerabilities and the ever-present threat of ransomware attacks.
FROM THE MEDIA: Russian actors exploiting a vulnerability in the MOVEit file-transfer system have compromised several organizations, including the US Department of Energy (DOE) and other federal bodies. The Russian ransomware gang Clop is responsible for these attacks, which are exploiting a security flaw in MOVEit to steal documents. The director of the US government's Cybersecurity and Infrastructure Security Agency (CISA), Jen Easterly, confirmed that they are providing support to federal agencies that experienced intrusions, but clarified that this campaign doesn't present a systemic risk like the SolarWinds hack. Clop hasn't threatened to extort or release stolen data from government agencies. The DOE confirmed that Clop had accessed its data as part of this widespread attack. Other organizations affected include high-profile corporations like British Airways, the BBC, and the Boots pharmacy chain, as well as Johns Hopkins University and Health System, and Tesco Bank. There's no evidence of coordination between Clop and the Kremlin.
READ THE STORY: The Register
US Senators to launch bill to Seize and Transfer Russian Assets to Ukraine
Analyst Comments: The introduction of this legislation indicates a significant escalation in the approach to managing the aftermath of the conflict in Ukraine, explicitly suggesting the seizure and reallocation of Russian assets for Ukraine's reconstruction. If implemented, it could markedly reduce the financial burden on Western countries in supporting Ukraine's recovery. However, it's also likely to face considerable resistance and potential legal challenges, not just from Russia but also from other countries or entities wary of the precedent such a move would set. The proposed legislation also raises potential concerns about destabilizing financial markets and may reduce the negotiating leverage with Russia in the future. It is also unclear whether such a law would be applicable given that most frozen Russian assets are outside the US.
FROM THE MEDIA: Legislation is being introduced by the top Republican on the US Senate foreign relations committee that would permit President Joe Biden to confiscate and transfer Russian sovereign assets to Kyiv for the long-term reconstruction of Ukraine. This comes as part of a bipartisan initiative in Congress to pressure the Biden administration into using Russian money to fund the rebuilding of Ukraine rather than relying on Western taxpayers. The bill asserts that Russia is responsible for the financial burden of Ukraine's reconstruction and would authorize the US president to seize frozen Russian assets within the US, including those of the Russian central bank, for prompt transfer to Ukraine. The legislation also appeals for the creation of a common international compensation mechanism in partnership with foreign allies to channel the confiscated Russian funds to Kyiv.
READ THE STORY: FT
Britain to help Ukraine expand its cyber defenses
Analyst Comments: This move by the UK government indicates the growing recognition of the importance of cyber defenses in modern warfare. As well as providing financial assistance, the call to entrepreneurs and businesses shows a strategic move to rebuild Ukraine's economy after the ongoing conflict. However, the effectiveness of these measures will depend on the successful implementation of cybersecurity tools and strategies, as well as the response from businesses to invest in Ukraine's economy.
FROM THE MEDIA: The British government has pledged to provide an additional £16 million ($20.5 million) to strengthen Ukraine's cyber defenses, with a potential for an extra £9 million to come from international allies. This funding is on top of £6.35 million announced last year and is intended to better equip Ukraine to protect its critical national infrastructure against Russian cyber attacks. British Prime Minister Rishi Sunak described the funding as crucial to enhance Ukraine's ability to detect and disable targeted malware. Sunak will also encourage entrepreneurs and businesses to increase their investments in Ukraine at an upcoming conference aimed at rebuilding the country's economy after the Russian invasion.
READ THE STORY: Reuters
Vast Cyber Espionage Campaign Linked to China
Analyst Comments: This revelation serves as a reminder of the persistent nature of state-backed cyber espionage and the need for robust cybersecurity measures across organizations worldwide. As seen in the scope and sophistication of this operation, such threats are becoming increasingly complex and widespread. Considering the geopolitical tensions between the US and China, such cyber espionage incidents further complicate bilateral relations. With cyber espionage and cybercrime becoming increasingly prominent components of international politics and diplomacy, organizations and governments must prioritize proactive defense strategies and ensure regular system updates and patches.
FROM THE MEDIA: A vast cyber espionage campaign targeting government agencies of interest to Beijing has been traced back to online attackers with clear links to China, according to Google subsidiary Mandiant. The espionage campaign, believed to be the broadest conducted by a China-nexus threat actor since the mass exploitation of Microsoft Exchange in 2021, has compromised the computer defenses of hundreds of organizations. The cyber attackers have stolen emails from prominent employees involved in matters of interest to the Chinese government. Mandiant reports high confidence that a group known as UNC4841, in support of the People's Republic of China, was behind the wide-ranging campaign.
READ THE STORY: The Defense Post
Intel to build $4.6B assembly, testing site in Poland
Analyst Comments: Intel's investment in the assembly and testing facility in Poland demonstrates the company's commitment to expanding its presence in Europe and strengthening its supply chain. By establishing a facility that can support chip fabrication in neighboring fabs, Intel aims to enhance its manufacturing capabilities and reduce reliance on third-party manufacturers like TSMC. The move aligns with Intel's focus on advanced packaging technologies and its aim to bring more of its chip production in-house. However, the uncertainty surrounding the funding for the planned fab site in Germany poses a challenge for Intel, as it seeks additional support from the German government.
FROM THE MEDIA: Intel has announced plans to invest up to $4.6 billion in building an assembly and testing facility in Poland, as part of its European expansion strategy. The facility, set to be completed by 2027, will employ 2,000 workers and will handle the cutting, testing, and packaging of chips. Additionally, the facility will support Intel's advanced packaging technologies, allowing for the assembly of individual chips into final products. The decision to build the facility in Poland is due to the country's existing Intel operations, proximity to other Intel sites in Germany and Ireland, cost competitiveness, and availability of a talented workforce.
READ THE STORY: The Register
Intel to Ship Quantum Chip
Analyst Comments: Intel's upcoming 12-qubit chip, Tunnel Falls, is based on silicon spin quantum bits. This research-focused chip has the potential to facilitate experimentation for a wider range of researchers and accelerate the development of quantum computing technologies. The use of silicon in the chip is highlighted as a promising avenue for scalable quantum computing due to its smaller size and potential for denser devices. While acknowledging the limitations of 12 qubits for practical applications, the significance of the chip in advancing research efforts is emphasized. Overall, Intel's 12-qubit chip holds great importance in the exploration and advancement of quantum computing technologies.
FROM THE MEDIA: Intel is set to release a 12-qubit chip named Tunnel Falls, which utilizes silicon spin quantum bits. The chip is intended for research purposes and will be made available to universities lacking the resources to develop their own quantum hardware. Intel claims that the silicon qubit technology offers a significant size advantage, being a million times smaller than other qubit types. While 12 qubits are not sufficient for a game-changing quantum computer, the chip will enable researchers to further explore the technology and aid Intel's ongoing quantum research efforts.
READ THE STORY: Hackaday
The Psychedelic Scientist Who Sends Brains Back to Childhood
Analyst Comments: Gül Dölen's experience during the pandemic lockdown is a fascinating anecdote about the effects of extreme isolation on the brain, but it's important to remember it's a personal account rather than a generalizable conclusion. Yet, her ideas about critical periods and the potential role of psychedelic drugs in reopening them are thought-provoking and could have profound implications in neuroscience and psychology. If this could be achieved, it may provide novel therapeutic pathways for treating various neurological conditions or enhancing learning and cognition. Still, these ideas are speculative at this stage and need rigorous scientific research to be confirmed. Ethical and safety considerations around the use of psychedelic drugs must also be carefully evaluated before their broader adoption in therapy.
FROM THE MEDIA: Neuroscientist Gül Dölen experienced a heightened state of consciousness during the pandemic lockdown, leading her to reflect on critical periods in brain development and the potential for reopening them. Critical periods are finite windows of time in which the brain is highly receptive to learning and behavior development. Dölen believes that if critical periods can be triggered and harnessed safely, it could lead to significant mental and life-altering changes. She speculates that psychedelic drugs could hold the key to reopening critical periods and exploring the nature of consciousness. Dölen has launched a scientific group called PHATHOM to investigate the therapeutic potential of psychedelics in reopening critical periods.
READ THE STORY: Wired
Russia’s Grim ‘Fashion Colony’: Americans Describe Harsh Life in Remote Labor Camp
Analyst Comments: Not surprised the revealed conditions and mistreatment faced by foreign prisoners, particularly Americans, at the IK-17 labor camp, are distressing. They expose hazardous work environments, inadequate medical care, and corrupt practices within the camp, raising serious human rights concerns. The stark contrast between the camp's superficial image as a "fashion colony" and the harsh reality endured by inmates is alarming. The report highlights issues such as limited access to healthcare, abuse during solitary confinement, and prisoners being coerced into fighting in Ukraine for a chance at amnesty.
FROM THE MEDIA: IK-17, a labor camp located in Russia's Mordovia region is known for its hazardous working conditions, limited nourishment, and summary stints in solitary confinement. Referred to as a "fashion colony" due to its brightly painted exteriors, the camp houses foreign prisoners accused of crimes ranging from espionage to drug trafficking. The accounts of American inmates reveal corrupt administrators, severe retribution for perceived infractions, and inadequate medical care. IK-17 has been identified as a potential destination for Wall Street Journal reporter Evan Gershkovich, who is currently awaiting trial in Russia on espionage charges. Human rights monitors have substantiated the inmates' claims, highlighting the challenging conditions within the prison.
READ THE STORY: WSJ
Taiwan seeks closer EU ties in return for chip investment
Analyst Comments: Foreign Minister Joseph Wu's remarks underscore the importance of strengthening relations between Taiwan and European countries for continued Taiwanese investment in semiconductor production. The call for considering the broader relationship with Taiwan reflects Taiwan's desire for countries to acknowledge its unique situation and the challenges it faces due to China's territorial claims. Wu's visit to Europe and his discussions on potential cooperation, including a bilateral investment agreement, demonstrate Taiwan's proactive efforts to expand its international partnerships. The assessment suggests that the EU should carefully evaluate its relationship with Taiwan and the potential benefits of increased cooperation in various sectors.
FROM THE MEDIA: During his visit to Europe, Taiwan's Foreign Minister Joseph Wu emphasized the importance of European countries strengthening their relations with Taiwan in order to maintain Taiwanese investment in semiconductor production. Wu clarified that the Taiwanese government does not impose conditions on investments by Taiwan Semiconductor Manufacturing Corp (TSMC) and that it is ultimately up to the company to determine the profitability of a project. He urged countries seeking Taiwanese assistance to consider the broader relationship with Taiwan. Wu highlighted China's territorial claims on Taiwan and expressed Taiwan's strong objection to such claims. He also mentioned that EU leaders have shown a clearer stance on peace in the Taiwan Strait and preserving the status quo. Wu suggested that the EU should consider expanding cooperation with Taiwan, such as through a bilateral investment agreement (BIA), but expressed concerns that progress on the BIA might be affected by the frozen EU-China investment deal.
READ THE STORY: Reuters
Kaspersky joins IoT Association to boost Cyber resilience in SEA
Analyst Comments: Kaspersky's move to join MyIoTA is a strategic one as it aims to establish a stronger footprint in Southeast Asia. This collaboration could provide significant benefits for Malaysia and the region's IoT sector by enhancing its cybersecurity measures. Given the increasingly digital nature of economies, robust cybersecurity is critical, especially in sectors like IoT where a multitude of connected devices potentially exposes systems to various cyber threats. Kaspersky's Cyber Immunity approach could help local businesses in Southeast Asia fortify their defenses against cyberattacks. However, Kaspersky's collaboration with a national organization like MyIoTA could also raise some concerns given the ongoing global discussions about data privacy and the role of cybersecurity firms.
FROM THE MEDIA: Kaspersky, a global cybersecurity solutions provider, has joined the Malaysian Internet-of-Things Association (MyIoTA) to strengthen cyber resilience among Internet of Things (IoT) firms in Southeast Asia. MyIoTA is a national organization established by private sector individuals and entities engaged in the IoT industry in Malaysia and Southeast Asia. MyIoTA works closely with the Malaysian Digital and Economy Corporation (MDEC) to boost Malaysia's digital economy and establish it as the digital hub of Southeast Asia. Kaspersky's membership in MyIoTA aims to facilitate communication with local market players, understand their needs and concerns, and offer relevant cybersecurity solutions. Kaspersky and MyIoTA are already collaborating on a pilot project for a cyber immune solution in Smart City development.
READ THE STORY: BackEndNews
Navigating the New Frontiers of Economic Security: Exploring the Implications of Cyber Threats
Analyst Comments: Cyber threats are a pressing issue that requires urgent, coordinated responses at all levels. The financial impact alone - with the average cost of a data breach estimated to be $3.86 million in 2020 - underscores the gravity of the problem. The wider economic effects, such as the loss of customer trust and the potential stifling of innovation due to intellectual property theft, compound the urgency of addressing this issue. In response to this, a comprehensive and multi-faceted strategy that includes investment in cybersecurity infrastructure and collaboration among governments, organizations, and individuals is essential. The importance of cyber-literacy campaigns and the promotion of safer online behaviors cannot be overstated, as a more informed public can help mitigate these risks.
FROM THE MEDIA: The swift digitization of corporations and governments has significantly increased the risk of cyberattacks, necessitating a proactive approach to protect digital infrastructure. Cyber threats range from critical infrastructure interruption to intellectual property theft, and data breaches, causing significant financial damages, especially to small and medium-sized businesses. The average cost of a data breach in 2020 was estimated to be $3.86 million. These attacks can also erode customer confidence in online transactions, slowing down economic activity, and putting intellectual property at risk, potentially stifling innovation. Cyber threats also pose risks to critical infrastructure, which could lead to economic disruptions and financial instability. To counter these threats, it's crucial to develop a comprehensive cybersecurity framework involving prevention, detection, response, and recovery measures, involving collaboration between governments, organizations, and individuals. Investing in cybersecurity infrastructure and promoting a cyber-literate culture is also essential.
READ THE STORY: Modern Diplomacy
Items of interest
Google searchers from years past can get paid for pilfered privacy
Analyst Comments: The settlement brings closure to a decade-old lawsuit that accused Google of violating user privacy by including search terms in the URL of search result pages. Although Google denies any wrongdoing, the company has agreed to pay $23 million to resolve the case. While the settlement amount may seem small, it provides users with the opportunity to recoup a portion of the money collected by Google during the specified period. The settlement also highlights the importance of user privacy and the need for companies to be transparent in their data handling practices.
FROM THE MEDIA: Google has agreed to pay $23 million to settle a privacy lawsuit related to the disclosure of user's personal information to third parties without their consent. The settlement applies to users who used Google Search and clicked on search result links between October 2006 and September 2013. Claimants can expect to receive an estimated amount of $7.70. Google denies any wrongdoing but has agreed to the settlement terms. Users have until July 31, 2023, to file a claim, exclude themselves from the settlement, or raise objections.
READ THE STORY: The Register
Searchmetrics Summit: SEO Masterminds | Manipulating Google for Fun and Profit (Video)
FROM THE MEDIA: The speaker, Malte Landwehr, is an experienced SEO expert known for his expertise and humor. He talks about manipulating Google for fun and profit in his session titled "Cheese, Wine, and Whistles: Manipulating Google for Fun and Profit with Elon Musk and Boris Johnson."
Yandex Data Leak Reveals Surprising Ranking Factors Shared By Google (Video)
FROM THE MEDIA: Yandex data leak, by a former employee, gives SEO, a rare glimpse behind the scenes at the search engine’s source code. For a search engine, that has a lot in common with Google, including the same employees, and ranking factors, this is a very important data leak. Out of the multi-gigabytes leaked as SEOs the ranking factors are the most important. In this video, I dive into the ranking factors leaked in the code and what they mean, for ranking your website.
These open-source products are reviewed by analysts at InfoDom Securities, providing possible context about current media trends related to the realm of cyber security. The stories selected cover a broad array of cyber threats and are intended to aid readers in framing key publicly discussed threats and overall situational awareness. InfoDom Securities does not endorse any third-party claims made in their original material or related links on their sites; the opinions expressed by third parties are theirs alone. For further questions, please contact InfoDom Securities at dominanceinformation@gmail.com.