Dragon's Code: America Under Cyber Siege cover art

Dragon's Code: America Under Cyber Siege

Dragon's Code: America Under Cyber Siege

Written by: Inception Point AI
Listen for free

This is your Dragon's Code: America Under Cyber Siege podcast. Dragon's Code: America Under Cyber Siege is your go-to podcast for detailed analysis of the week's most sophisticated Chinese cyber operations targeting US infrastructure. Stay updated with expert insights into attack methodologies, affected systems, and compelling attribution evidence. Discover the defensive measures implemented and lessons learned from each incident. Featuring interviews with leading cybersecurity experts and government officials, Dragon's Code delivers essential information for anyone interested in the evolving landscape of cyber warfare and national security. Tune in regularly for in-depth discussions that keep you informed and prepared. For more info go to https://www.quietplease.ai Check out these deals https://amzn.to/48MZPjs This content was created in partnership and with the help of Artificial Intelligence AI.Copyright 2026 Inception Point AI Political Science Politics & Government
Episodes
  • Dragon's Code: China's Fake Certificate Shop Is Hacking America's Power Grid and Water Supply

    Dragon's Code: China's Fake Certificate Shop Is Hacking America's Power Grid and Water Supply
    May 20 2026
    This is your Dragon's Code: America Under Cyber Siege podcast. I’m Alexandra Reeves, and this is Dragon’s Code: America Under Cyber Siege. Over the last few days, US networks have been wrestling with one of the most sophisticated waves of Chinese cyber operations we’ve seen outside an open crisis. According to Microsoft’s security blog, the newly exposed “Fox Tempest” malware‑signing service has become a kind of underground certificate authority for espionage crews linked to the Chinese state, quietly minting trusted‑looking digital signatures so malicious code slides past corporate defenses. Here’s how the playbook worked. First, threat actors used living‑off‑the‑land tactics: phishing against IT admins at US energy co‑ops and regional water authorities, then abusing built‑in tools like PowerShell and Windows Management Instrumentation so activity blended into normal admin traffic. Once in, they pulled down payloads that had been signed by Fox Tempest, giving their malware the same cryptographic “halo” as legitimate software. Security appliances saw a trusted signature and let it through. According to Microsoft’s incident responders, several US critical infrastructure operators were hit in this campaign’s first wave: industrial control gateways in the power grid, remote access servers at a Western water utility, and a cloud management console used by a transportation logistics provider serving East and Gulf Coast ports. The goal wasn’t immediate destruction; it was persistence and positioning. They quietly mapped OT networks, scraped VPN configs, and planted backdoor services that could be activated later. Attribution came from a mix of telemetry and tradecraft. Analysts at Microsoft and other firms noticed Fox Tempest was recycling certificate request infrastructure previously tied to Chinese groups that US Cyber Command labels as Volt Typhoon affiliates. Command‑and‑control domains pointed back to infrastructure historically used against Guam telecom and US maritime targets. Even the schedule of operations matched Beijing business hours, with coordinated bursts of activity around 2 p.m. Beijing time. In response, defenders moved fast. Microsoft pushed revocation of the abused certificates and updated Defender rules; organizations that had Microsoft’s recommended blocking policies in place were able to stop hands‑on‑keyboard activity before attackers could pivot deeply into OT. CISA issued an advisory to US critical infrastructure operators, urging immediate review of code‑signing trust stores, segmentation between IT and OT, and deployment of behavioral analytics rather than relying solely on signatures. At RSA Conference, several experts told listeners that this week proved two hard truths. First, China is investing in industrial‑scale stealth, not smash‑and‑grab: they want durable access to American infrastructure they can flip like a switch. Second, trust itself is now an attack surface. As one DHS official put it, “If your defense strategy begins and ends with ‘Is it signed?’ you’ve already lost.” The lessons learned are blunt. Assume your certificates can be forged, your admin tools can be turned against you, and your quietest logs may hold the loudest warnings. Build verification layers, hunt continuously, and treat every critical system as if an adversary is already inside. Thanks for tuning in, and make sure you subscribe so you don’t miss the next briefing. This has been a quiet please production, for more check out quiet please dot ai. For more http://www.quietplease.ai Get the best deals https://amzn.to/3ODvOta
    Show More Show Less
    4 mins
  • Dragons, Dumplings, and Digital Mayhem: How China Almost Turned Off Your WiFi This Week

    Dragons, Dumplings, and Digital Mayhem: How China Almost Turned Off Your WiFi This Week
    May 3 2026
    This content was created in partnership and with the help of Artificial Intelligence AI.
    Show More Show Less
    4 mins
  • Dragon's Code: China's Hackers Hit America's Power Grid While We Were All Sleeping

    Dragon's Code: China's Hackers Hit America's Power Grid While We Were All Sleeping
    Apr 29 2026
    This is your Dragon's Code: America Under Cyber Siege podcast. Hey listeners, I'm Alexandra Reeves, and welcome to Dragon's Code: America Under Cyber Siege. Over the past week, as of this early morning on April 29, 2026, we've seen some of the slickest Chinese cyber ops hammering U.S. infrastructure like never before—think precision strikes from state-sponsored groups like Volt Typhoon, lurking in networks for months. It kicked off Monday with reports from the OT-ISAC energy sector threat advisory, flagging destructive wipers hitting distributed assets beyond control rooms. Attackers exploited internet-facing PLCs—programmable logic controllers—in power grids from California to Texas, using zero-day vulnerabilities in Siemens and Rockwell Automation systems. Methodologies? Living-off-the-land techniques: no malware drop, just native tools like PowerShell and Cobalt Strike beacons for lateral movement, exfiltrating SCADA configs before planting logic bombs. By Tuesday, CISA and FBI dropped attribution bombshells—IP trails, command-and-control servers in Shenzhen, China, and code signatures matching PLA Unit 61398 ops. Affected systems included East Coast substations and water treatment plants in Florida, where manipulated valves nearly flooded reservoirs. Cybersecurity expert Dmitri Alperovitch from Silverado Policy Accelerator called it "the most sophisticated supply chain breach since SolarWinds," noting embedded backdoors in firmware updates from vendors like Huawei subsidiaries. Defensive measures ramped up fast. Wednesday saw Fedsmandate air-gapping for OT environments, per joint advisories with NSA. Companies like Duke Energy deployed AI-driven anomaly detection from Dragos, isolating segments with micro-segmentation firewalls. Lessons learned? OT-ISAC's Marty Edwards stressed patching engineering workstations—80% of breaches started there—and shifting to zero-trust architectures. Government officials, including DHS Secretary Alejandro Mayorkas in a White House briefing, warned of escalation, pushing the UN's new Global Cybersecurity Mechanism launching next month for intel sharing. Experts like Nicole Perlroth, formerly of the New York Times, highlighted on her podcast how these ops blend geopolitics with data integrity hits, targeting identity systems to sow chaos. Prediction markets on Kalshi even bet on blackouts, with hackers double-dipping profits. The siege exposed our DNS vulnerabilities—fake domains mimicking PG&E and ConEd for phishing preludes, per CircleID analysis. We've fortified, but Dragon's Code lingers. Stay vigilant, segment your nets, and audit those IOCs. Thanks for tuning in, listeners—subscribe for more intel. This has been a Quiet Please production, for more check out quietplease.ai. For more http://www.quietplease.ai Get the best deals https://amzn.to/3ODvOta This content was created in partnership and with the help of Artificial Intelligence AI.
    Show More Show Less
    4 mins
adbl_web_anon_alc_button_suppression_c
No reviews yet