Monday, Jan 20, 2025 // (IG): BB // GITHUB // SGM Jarrell
U.S. Special Operations Forces Shift Focus to China, Russia, and Emerging Threats
Bottom Line Up Front (BLUF): The U.S. Special Operations Forces (SOF) are pivoting toward countering great power rivals such as China, Russia, Iran, and North Korea, with a growing emphasis on cyber and space domains. By leveraging alliances and operating closely with global partners, SOF aims to deter adversaries and maintain the United States' strategic and asymmetrical advantages in future conflicts.
Analyst Comments: The U.S. military's evolving focus on great power competition underscores the shifting landscape of global defense priorities. Special operations forces, traditionally concentrated on counterterrorism, are now instrumental in addressing emerging threats in cyber and space warfare. This transition reflects a broader recognition that non-traditional domains are critical in modern conflicts, particularly against sophisticated adversaries like China and Russia. SOF’s unique ability to integrate with allies and operate at a personal level with foreign military leaders enhances the United States' geopolitical reach. Moving forward, maintaining these alliances and adapting to hybrid warfare will be essential for U.S. success in both regional deterrence and global power competition.
FROM THE MEDIA: The U.S. Department of Defense reports that special operations forces are increasingly focused on deterring China and Russia, alongside Iran and North Korea. Chris Maier, Assistant Secretary of Defense for Special Operations and Low-Intensity Conflict, highlighted the shift from SOF being a "supported" force to a "supporting" force, working directly with allies in the Indo-Pacific and NATO to prevent miscalculations by adversaries. Special operators play a critical role in both counterterrorism and great power competition, leveraging their understanding of ground-level conditions, military networks, and the strengths and weaknesses of partner nations. This localized knowledge, paired with long-standing relationships, provides U.S. decision-makers with actionable intelligence and an asymmetrical edge. The report emphasizes that the forces’ work in cyber and space domains is integral to maintaining U.S. superiority in these emerging arenas of warfare.
READ THE STORY: The Week
U.S. Eyes Chinese Presence at Panama Canal as Strategic Threat
Bottom Line Up Front (BLUF): The incoming Trump administration views Chinese-operated infrastructure around the Panama Canal as a national security threat, citing the potential for Beijing to exert influence over a critical chokepoint for global trade. Panamanian officials and some former U.S. officials downplay these concerns, emphasizing the canal’s neutrality and Panama’s pro-American stance.
Analyst Comments: China’s growing presence in strategic infrastructure projects, including ports near the Panama Canal, reflects its broader efforts to expand influence through global trade routes. For the U.S., the canal’s significance lies in its role as a critical conduit for American and global commerce, as well as its symbolic value. While Panamanian officials insist on the canal’s neutrality, the Trump administration’s concerns highlight broader apprehensions about China’s ability to leverage commercial investments for geopolitical advantage. This situation underscores the importance of U.S. engagement in Latin America to counterbalance Beijing’s influence while safeguarding key trade routes. A balanced approach, emphasizing economic incentives for Panama alongside security cooperation, will be vital in addressing the perceived risks.
FROM THE MEDIA: Approximately 4% of global trade passes through the Panama Canal, with over 70% of its traffic linked to the U.S. This waterway, a critical artery for American energy and goods, has become a focal point for the Trump administration due to Chinese-operated infrastructure near its entrances. Hutchison Whampoa, a Hong Kong-based company, runs container ports at both ends of the canal, leading Trump officials to raise concerns about potential chokepoints during conflicts. Incoming Secretary of State nominee Marco Rubio has labeled Chinese control over facilities near the canal as a strategic vulnerability, suggesting it violates U.S.-Panama treaties ensuring neutrality. Despite this, Panamanian officials, including canal administrator Ricaurte Vásquez, argue that operations remain impartial, with no interference from Chinese entities. They point out that the U.S. remains Panama’s largest investor and trading partner, dwarfing China’s economic footprint in the region.
READ THE STORY: WSJ
TikTok Restores Service in the U.S. Following Trump’s Pledge
Bottom Line Up Front (BLUF): TikTok services resumed in the U.S. after being briefly banned due to a Supreme Court decision. President-elect Donald Trump pledged to save the app by extending the deadline for compliance with the ban, proposing a U.S. joint ownership deal for TikTok to address national security concerns.
Analyst Comments: Trump's intervention showcases his approach to negotiations, leveraging TikTok's massive U.S. user base as a bargaining chip. However, skepticism remains about whether ByteDance will divest from TikTok. The episode underscores the broader tension between the U.S. and China in the tech and data privacy. The temporary resolution may set a precedent for future dealings with Chinese-owned apps.
FROM THE MEDIA: On Sunday, TikTok services were restored in the U.S. after a one-day shutdown due to a Supreme Court decision upholding a law banning the app over national security concerns. President-elect Donald Trump announced he would issue an executive order on Monday to extend the ban’s effective date, allowing time to negotiate a deal. Trump proposed a joint venture where the U.S. would hold a 50% ownership stake in TikTok, enabling the app to continue operations while safeguarding American data. TikTok publicly thanked Trump for his efforts, though the app remains unavailable in U.S. app stores. The brief ban spurred a surge in VPN searches, with users scrambling to access the app. Some Republican lawmakers criticized Trump's actions, stating that only a complete severance of TikTok from its Chinese parent company, ByteDance, would comply with the law.
READ THE STORY: BBC // Cybernews // The Register
Elon Musk Criticizes China’s Ban on X as Trump Prepares TikTok Reprieve
Bottom Line Up Front (BLUF): Elon Musk, long seen as a business ally of China, has publicly criticized the "unbalanced" U.S.-China tech relationship, noting that TikTok operates freely in the U.S. while X (formerly Twitter) is banned in China. This rare criticism coincides with President-elect Donald Trump’s plan to extend ByteDance’s divestment deadline, signaling a potential reprieve for TikTok in the U.S.
Analyst Comments: Musk’s comments reflect growing tensions for Western companies operating in China, as they navigate the complex dynamics of business interests and geopolitical pressures. While Musk’s criticism of China is unusually pointed, it underscores the challenges faced by tech leaders balancing access to the Chinese market with calls for reciprocity and fairness in trade relations. Simultaneously, Trump’s approach to TikTok indicates a potential pivot in U.S. tech policy, as strategic concerns over Chinese influence collide with commercial interests. As U.S.-China relations remain strained, American businesses may increasingly be caught between policy directives and market dependencies.
FROM THE MEDIA: Elon Musk expressed frustration with the lack of reciprocity in the U.S.-China tech relationship, highlighting that X is banned in China while TikTok operates freely in the U.S. Speaking on Sunday, Musk called the situation "unbalanced" and said "something needs to change." This marks a rare instance of public criticism from Musk, who has traditionally maintained strong ties with Chinese officials due to Tesla’s reliance on China for both sales and manufacturing. His remarks come as President-elect Donald Trump considers a reprieve for TikTok, which was banned briefly under U.S. law. Trump indicated plans to extend the deadline for ByteDance, TikTok’s Chinese parent company, to divest from the app, potentially allowing a joint venture to resolve national security concerns. Chinese officials responded by stating that companies should "decide independently" on operations while abiding by local laws.
READ THE STORY: FT
Ukrainian Special Forces Capture North Korean Soldier in High-Stakes Mission
Bottom Line Up Front (BLUF): Ukrainian special forces recently captured a North Korean soldier in Russia’s Kursk region, providing critical evidence of North Korea’s alleged involvement in Russia’s war on Ukraine. This daring mission highlights the global scope of the conflict and raises questions about Pyongyang's role in supporting Moscow, as well as the challenges faced by Kyiv in exposing this alliance.
Analyst Comments: The capture of a North Korean soldier by Ukrainian forces represents a significant escalation in the war’s geopolitical dimensions. North Korea’s reported deployment of 12,000 troops underscores its deepening alignment with Russia, a move likely aimed at offsetting Moscow’s manpower shortages. Ukraine's success in this mission not only provides tangible evidence of Pyongyang’s involvement but also opens opportunities for intelligence gathering on North Korea’s training, deployment tactics, and broader strategy. The global response to this revelation, particularly from South Korea and NATO allies, will be critical in shaping the narrative around the internationalization of the conflict and could intensify calls for further sanctions on both Russia and North Korea.
FROM THE MEDIA:Ukrainian special forces, led by a captain with the call sign "Green," executed a high-risk mission on January 9 to capture a wounded North Korean soldier in Russia’s Kursk region. The soldier, left behind by his comrades, initially resisted by brandishing a grenade but ultimately surrendered after Green used hastily learned Korean phrases to calm him down. The soldier revealed he believed he was on a training exercise and later described witnessing the deaths of his fellow soldiers during prior battles. Ukraine alleges that North Korea has deployed around 12,000 troops to support Russia, using them in infantry assaults without adequate artillery or logistical support. Videos from Ukrainian drones have shown North Korean soldiers advancing despite heavy casualties, with reports of some choosing death over capture. Kyiv has emphasized the global implications of this involvement, with Ukrainian President Volodymyr Zelensky showcasing the captured soldier in a video on January 12 as evidence of Pyongyang’s unlawful participation in the war.
READ THE STORY: WSJ
Malicious npm Packages Target Solana Wallet Keys via Gmail SMTP
Bottom Line Up Front (BLUF): Cybersecurity researchers have uncovered several malicious npm and PyPI packages designed to steal Solana wallet keys and delete sensitive data from infected systems. These packages exploit trusted platforms, such as Gmail SMTP servers, to bypass detection. Developers seeking Solana-related tools are the primary targets, highlighting the ongoing risks in the software supply chain.
Analyst Comments: This incident underscores the persistent threat of supply chain attacks on widely used repositories like npm and PyPI. Threat actors are leveraging typosquatting and trusted services like Gmail to exfiltrate data, evading standard security measures. The targeting of Solana wallets reflects the broader focus on cryptocurrency-related exploits, while the use of malicious GitHub repositories shows how attackers aim to reach a wider audience. Organizations and developers must adopt stricter dependency checks, utilize tools to detect suspicious packages, and monitor access to sensitive credentials to mitigate such risks. The growing sophistication of these attacks calls for enhanced vigilance and proactive countermeasures.
FROM THE MEDIA: Researchers at Socket have identified malicious packages in the npm and PyPI repositories, including solana-transaction-toolkit and solana-stable-web-huks, which exfiltrate Solana wallet private keys via Gmail’s SMTP servers. These packages claim to offer Solana-specific functionality but instead deplete up to 98% of wallet funds, transferring them to attacker-controlled accounts. GitHub repositories associated with the malicious packages, including those by accounts "moonshot-wif-hwan" and "Diveinprogramming," were also used to promote fake Solana development tools. These repositories have since been taken down, but they demonstrate the attackers' strategy of using trusted platforms to distribute malicious code.
READ THE STORY: THN
Trump’s Trade Challenge: Balancing Tariffs with Industrial Policy
Bottom Line Up Front (BLUF): As Donald Trump assumes office for his second term, he faces a critical trade challenge left by Joe Biden: addressing Chinese dominance in the maritime, logistics, and shipbuilding sectors. Biden’s last-minute Section 301 trade action highlights the need for industrial policy to reduce reliance on Chinese maritime capacity, raising the question of whether Trump will expand beyond tariffs to support domestic industries and workers.
Analyst Comments: Biden's parting trade decision underscores the growing urgency to counter China's economic practices, particularly in critical industries like shipbuilding. This creates a pivotal moment for Trump's administration to shape its approach to industrial policy. While tariffs remain a hallmark of Trump’s economic strategy, addressing labor market distortions and fostering resilient supply chains will require deeper, coordinated efforts. The successful implementation of initiatives like the CHIPS Act demonstrates that industrial policy can yield tangible results. However, achieving similar success in the maritime sector will necessitate long-term planning, bipartisan collaboration, and significant investment. Trump’s handling of this challenge will signal the direction of his trade policy and its impact on US economic competitiveness.
FROM THE MEDIA: Biden's final trade verdict under Section 301 of the Trade Act accuses China of using non-market practices to dominate the global maritime industry, including state loans, excess capacity in raw materials, and labor market distortions. The report, released days before Trump’s inauguration, advocates for government support of US shipbuilding and logistics to counter Chinese influence. Currently, China controls over 50% of the global shipbuilding market and has significant leverage over pricing and availability, posing national security and supply chain risks for the US. The hukou system, a Chinese residency classification method, exacerbates labor market distortions by creating a highly mobile, low-cost workforce. This system enables Chinese companies to outcompete market economies, further entrenching their dominance in maritime industries. Biden’s administration proposed raising labor and environmental standards globally to address these disparities, though Trump is likely to prioritize economic nationalism over multilateral approaches.
READ THE STORY: FT
U.S. Drone Makers Navigate Risks in Moving Away from China
Bottom Line Up Front (BLUF): As China increasingly uses its dominance in drone supply chains as leverage, U.S. drone companies are exploring alternatives, including Taiwan, to reduce reliance on Chinese components. However, concerns over geopolitical retaliation and cost pressures complicate efforts to establish a "democratic supply chain" that aligns with national security priorities.
Analyst Comments: The effort to diversify drone supply chains highlights the critical need for secure and resilient production networks. Taiwan’s expertise in semiconductors and advanced manufacturing makes it a strong candidate for an alternative, especially as it ramps up investments to support allied industries. However, the shift requires overcoming cost barriers and navigating complex geopolitical dynamics. The growing trend of “friend-shoring” across allied nations reflects a broader recognition of supply-chain vulnerabilities in critical industries. Long-term success will depend on fostering international collaboration, incentivizing domestic production, and reducing dependency on any single region for essential components.
FROM THE MEDIA: The global drone industry is heavily reliant on batteries, motors, sensors, and rare-earth materials concentrated in one dominant supplier country. U.S. companies, like Skydio, are actively seeking new partners after supply-chain disruptions, including blacklisting by Beijing for selling drones to Taiwan and Ukraine. Taiwan has stepped in as a potential solution, with government-backed initiatives connecting U.S. manufacturers to local suppliers. Aiming to strengthen its drone sector, Taiwan has committed $1.35 billion over four years to support research, development, and domestic production. Officials see this as an opportunity to create a secure and democratic supply chain to address national security concerns raised by dependency on adversarial nations. Taiwan’s strengths in semiconductors and cybersecurity further bolster its position as a viable supplier for advanced drone components. Despite these opportunities, companies remain cautious. Costs for Taiwan-made parts are higher than Chinese equivalents, and manufacturers fear potential geopolitical fallout. Some components, like gimbal systems, are still assembled in China due to lower production costs. To mitigate risks, U.S. companies like BRINC Drones are diversifying by sourcing parts from multiple allied countries, including Taiwan and the U.S.
READ THE STORY: WSJ
How to Secure Submarine Cables: Lessons from Sweden
Bottom Line Up Front (BLUF): Sweden’s proactive defense of its borders and undersea infrastructure offers valuable lessons in securing submarine cables, a critical global resource vulnerable to geopolitical threats. Deploying warships and enhancing surveillance highlight the need for international coordination to protect undersea cables, which serve as the backbone of global communication and energy networks.
Analyst Comments: Recent incidents involving attacks on undersea cables highlight the growing importance of proactive defense measures for critical infrastructure. Submarine cables, which enable global connectivity and power transmission, are increasingly targeted in geopolitical conflicts due to their strategic importance. Clear policies, effective surveillance, and coordinated responses are essential to deter malicious activities and maintain the integrity of these networks. Moving forward, nations must work together to treat undersea cables as shared international assets, protected by enforceable agreements and supported by advanced monitoring technologies. Such measures could reduce ambiguity and ensure accountability, bolstering the resilience of global communication systems.
FROM THE MEDIA: The defense of submarine cables is receiving renewed attention as tensions in regions like the Baltic Sea and South China Sea escalate. These undersea networks carry over 95% of global internet and communication traffic, making them a prime target for hybrid warfare and accidental damage from activities like fishing and anchoring. Military surveillance and interdiction efforts are increasingly being deployed to safeguard this infrastructure, ensuring both physical and cyber protections. The importance of clear consequences for disrupting these networks is emphasized. By implementing advanced monitoring systems to detect and attribute damage, nations can deter bad actors and reduce accidental disruptions. International cooperation and treaties could further establish submarine cables as critical global assets, creating frameworks for response and accountability. Such measures are seen as essential to securing these networks amid rising geopolitical competition.
READ THE STORY: The Register
Trump Family Sparks Crypto Frenzy with Rival Memecoins
Bottom Line Up Front (BLUF): Donald Trump and Melania Trump launched rival memecoins, $TRUMP and $MELANIA, igniting speculation of a crypto-friendly administration and triggering wild market activity. The $TRUMP coin’s value surged to over $14 billion before plummeting following the release of Melania’s token. The launches have drawn both enthusiasm from the crypto industry and criticism of potential exploitation.
Analyst Comments: The Trump family’s entry into the cryptocurrency market signals a growing intersection of political influence and blockchain technology. While the memecoins lack intrinsic value or business models, their popularity reflects the speculative frenzy surrounding celebrity-backed tokens. This development could boost short-term enthusiasm in the crypto space, with market participants betting on regulatory leniency under Trump’s administration. However, the high volatility and concentration of coin ownership raise concerns about market manipulation and the risks of investor losses. Moving forward, the emergence of such coins may encourage regulatory scrutiny while further legitimizing the role of cryptocurrencies in political and economic discourse.
FROM THE MEDIA: Donald Trump launched his $TRUMP cryptocurrency on Friday evening via his Truth Social platform, just days before his presidential inauguration. The coin quickly rose in value, reaching a peak market cap of $14 billion before falling sharply after Melania Trump announced her rival $MELANIA coin on Sunday. Melania’s coin reached a valuation of $8.5 billion, contributing to a highly volatile weekend in the crypto market. Critics have highlighted concerns over the centralized ownership of $TRUMP, with 80% of tokens held by Trump-affiliated entities, CIC Digital and Fight Fight Fight LLC. Some see this as a predatory move, timed to capitalize on the incoming administration’s influence. Meanwhile, major cryptocurrency exchanges like Binance and Coinbase have already listed $TRUMP for trading, lending legitimacy to the memecoin despite its speculative nature.
READ THE STORY: FT
Mexican Companies Shift Tactics to Navigate Trump’s Trade Policies
Bottom Line Up Front (BLUF): Mexican companies are taking a proactive approach to engage with Donald Trump’s incoming administration, hoping to avoid steep tariffs and capitalize on opportunities in the U.S. economy. By reframing their businesses as North American ventures and aligning with Trump’s priorities, firms are attempting to mitigate the risks of a potential trade war while fostering economic ties.
Analyst Comments: The approach taken by Mexican businesses reflects a pragmatic shift from opposition to collaboration as they navigate Trump’s protectionist policies. By emphasizing their contributions to the U.S. economy, including job creation and infrastructure investments, these companies aim to reduce trade tensions and avoid punitive tariffs. This strategy aligns with Trump’s transactional style of negotiation, but it also underscores the challenges Mexico faces in balancing domestic political pressures with the need to maintain economic stability. The private sector’s efforts could play a pivotal role in shaping bilateral relations during Trump’s second term, particularly as both nations grapple with issues like trade, immigration, and supply chain integration.
FROM THE MEDIA: In the lead-up to Donald Trump’s inauguration, Mexican companies and executives have adopted a more conciliatory tone, seeking to establish stronger ties with the incoming administration. At a gathering in Washington, Cemex, one of Mexico’s largest cement companies, announced plans to invest $4–6 billion in the U.S. over the next five years, framing the move as part of a broader effort to "Make North America great again." Other businesses, such as Interamerican Foods and rail company REMED, have announced similar investments, emphasizing their alignment with U.S. economic and national security goals. Mexican President Claudia Sheinbaum has taken a tougher public stance, warning of retaliatory tariffs if Trump follows through with his 25% tariff threat on Mexican goods. Despite this, Mexican executives at events surrounding the inauguration have sought to position themselves as indispensable partners in a shared North American economy. Many have highlighted the jobs they generate in the U.S. and have reframed their investments as solutions to economic challenges, such as stemming migration by fostering regional development.
READ THE STORY: WSJ
Items of interest
OpenAI's ChatGPT Crawler Vulnerability: Prompt Injection and DDoS Potential
Bottom Line Up Front (BLUF): A vulnerability in OpenAI's ChatGPT API endpoint allows malicious actors to exploit prompt injection and reflective Distributed Denial of Service (DDoS) attacks by abusing its urls parameter. This vulnerability, disclosed by security researcher Benjamin Flesch, has yet to be acknowledged by OpenAI, leaving their infrastructure and affected third parties potentially exposed to abuse.
Analyst Comments: The discovery of this vulnerability underscores the risks associated with unvalidated input handling in AI systems. By failing to properly deduplicate URLs or limit the size of input lists, OpenAI has unintentionally created a tool that can amplify malicious HTTP requests, making their API a potential weapon for DDoS attacks. This incident also highlights an ongoing issue in AI system design: ensuring that even auxiliary APIs are hardened against abuse. Moving forward, OpenAI and other developers of AI APIs need to implement stricter validation, rate-limiting, and input sanitization practices to safeguard their platforms against exploitation. If left unaddressed, such vulnerabilities could damage the reputation of AI services and expose users to additional risks.
FROM THE MEDIA: The vulnerability, discovered by Benjamin Flesch and disclosed on GitHub, involves the ChatGPT API’s urls parameter, which processes lists of hyperlinks for fetching attribution data. Attackers can manipulate this endpoint to send thousands of HTTP requests per second to a single target domain by submitting variations of the same URL. The ChatGPT crawler, running on OpenAI's infrastructure and proxied via Cloudflare, performs these requests without validating or deduplicating the URLs, resulting in amplified network traffic. Flesch also discovered that the endpoint is susceptible to prompt injection, allowing attackers to issue textual commands to the underlying AI model. Although Flesch reported this issue to OpenAI and other channels, including BugCrowd, HackerOne, and Microsoft, no action has been taken as of yet. The Register reached out to OpenAI for comment but received no response.
READ THE STORY: The Register
OpenAI Unveils New ChatGPT Feature "TASKS" (Video)
FROM THE MEDIA: OpenAI has launched a beta feature called "Tasks" for ChatGPT, enabling users to set reminders and create to-do lists. This positions ChatGPT as a competitor to virtual assistants like Apple's Siri and Amazon's Alexa.
OpenAI’s New ChatGPT Tasks Will Change How You Use it Forever! (Video)
FROM THE MEDIA: What if ChatGPT could do more than just answer questions? OpenAI’s latest ChatGPT tasks are revolutionizing how we interact with AI, taking productivity and creativity to a whole new level. This video reveals how these groundbreaking updates can make your daily tasks faster, smarter, and more efficient.
The selected stories cover a broad array of cyber threats and are intended to aid readers in framing key publicly discussed threats and overall situational awareness. InfoDom Securities does not endorse any third-party claims made in its original material or related links on its sites; the opinions expressed by third parties are theirs alone. For further questions, please contact InfoDom Securities at dominanceinformation@gmail.com.