About this episode
This is your Tech Shield: US vs China Updates podcast.Hey listeners, Ting here, your go-to cyber sleuth on all things China hacks and US shields. Buckle up, because the past week in the US-China cyber arena has been a non-stop ping-pong match of exploits and patches—Volt Typhoon still lurking in energy grids like uninvited guests at a power plant party, according to Red Packet Security reports.CISA just dropped the hammer with an emergency directive on that nasty Dell RecoverPoint vuln, CVE-2026-22769—hardcoded creds letting suspected Chinese actors like those behind Grimbolt backdoor sneak in since mid-2024. Federal agencies got three days to patch or face persistent access in VMware backups. Innovate Cybersecurity nails it: this hits critical infrastructure hard, and it's a wake-up that Beijing's crews are playing the long game.Meanwhile, Storm-2603, straight out of China's threat playbook per Tata Communications' advisory, is chaining SmarterMail's CVE-2026-23760 for unauth password resets, paving the way for Warlock ransomware. Ivanti EPMM zero-days, CVE-2026-1281 and CVE-2026-1340, are getting hammered too, per CSO Online, handing attackers MDM server control. And don't sleep on BeyondTrust's CVE-2026-1731 fueling lateral moves with VShell trojans, as Security Affairs details.US defenses? A State Department cyber official via Cyberscoop is pushing quantum-resistant crypto transitions—public-private team-up or bust, folks. But here's the gut punch: CISA's shutdown under Trump 2.0 has them furloughing two-thirds of staff, canceling trainings and state SOC meetings, Politico reports. States are screaming—lost grants, no backstop for threats. Acting Director Madhu Gottumukkala told Congress over a third of threat hunters work unpaid. Effectiveness? Patches buy time, but gaps scream: Volt Typhoon's embedded deep in US energy nets for sabotage, FDD and Check Point echo. China's nuclear cyber edge, CNN intel says, pairs with digital webs in Indo-Pacific ports—5G, cams, all Beijing-tethered, MFALME Security warns.Expert take from yours truly: These measures are band-aids on a hemorrhaging artery. Resilience, as Fortinet CTO Felipe Fernandez pushes, needs AI defenses and supply chain lockdowns, but CISA's gutted and China's asymmetric—probes around Taiwan, per Reuters on Aussie warship transits. Emerging tech like Golden Dome's JADC2 integrations at CSIS show promise for integrated missile-cyber shields against Guam strikes, but without funding, it's vaporware. Gaps? Workforce chaos, over-reliance on voluntary AI safety pledges from India's New Delhi Declaration—90 nations signed, zero teeth, Politico scoffs.We've got tools, listeners, but execution's lagging. Patch fast, diversify vendors, quantum-proof now—or China's shadow nets the win.Thanks for tuning in, smash that subscribe button! This has been a Quiet Please production, for more check out quietplease.ai.
