The Division of Homeland Safety Cybersecurity and Infrastructure Safety Company (DHS-CISA) launched an issuance entitled “Mobile Communications Best Practice Guidance” on December 18, 2024.
From the basic cybersecurity practitioner’s perspective, it was filled with technical steerage on how you can make the cell computing setting safe.
Having been a part of the mixed, inter-agency response crew for a number of broad enterprise breaches over the previous 20 years, my curiosity was piqued.
These paperwork take months and months of study, staffing, and inter-agency approval earlier than publishing. Studying via the DHS CISA doc, there have been a number of flags that started to leap out at me.
First, the steerage was advanced from even the cybersecurity knowledgeable’s standpoint, a lot much less the common, typical person of cell computing and smartphones.
Second, the doc didn’t reference any of the “Typhoon” series of Chinese intrusions that have been first revealed by Microsoft in May of 2023.
And third, after years of lecturing everybody on the deserves and virtues of 2FA (Two Issue Authentication) there was a sentence that belied panic.
The lead was buried within the third level of steerage: “Don’t use SMS as a second issue for authentication.”
The DHS CISA response steerage reveals they’re getting their butts kicked
What’s the actual message on this seemingly prosaic, mundane, and forgettable techie launch?
DHS CISA and your complete U.S. Authorities have been manhandled by the Chinese language Storm sequence of intrusions, shoved out of the way in which, and now the Chinese language mixed cyber forces together with Russia, Iran, North Korea, and Venezuela have forcefully taken over the decisive cyber terrain of American Web Service Suppliers.
Knowledge Facilities, Routers, and Servers now have been damaged into en masse. China is squatting inside Verizon, Comcast, Google, Apple, Microsoft and all different environments and is actually saying, “we’re right here, we’re in management – come and attempt to take it from us”.
“Don’t use SMS as a second issue for authentication” is a white flag of give up that admits the Chinese language Ministry of State Safety (MSS) has created a cyber redoubt contained in the ISP networks and may see that 2FA code texted to you, which suggests they’ll instantly use that 2FA code to enter your safe web site – together with U.S. Authorities Web sites, or private web sites similar to your banking or investments.
DHS Director Easterly, FBI Director Wray (now departed), and NSA/Cyber Command Basic Haugh have been histrionic concerning the Chinese language Cyber Blitz. “The PRC has an even bigger hacking program than each different main nation mixed,” mentioned FBI Director Christopher Wray. “The truth is, if every one of many FBI’s cyber brokers and intelligence analysts centered solely on the China risk, China’s hackers would nonetheless outnumber FBI cyber personnel by at the least 50 to 1.”
The DHS CISA launch was a screaming klaxon of purple alert. However to make up for the failures of the U.S. Authorities Cyber Staff, accountability for the advanced re-configuration and securing of private IT was positioned firmly upon the person. It was a legalistic CYA self-indemnification earlier than change of Administration.
This cyber catastrophe is the worth of Woke-ism and Spying on Individuals
This cyber debacle is probably extra damaging than the shameful Biden directed retreat from Afghanistan. A part of the steerage within the DHS-CISA launch is for everybody to begin utilizing Encrypted messaging.
This presumes encrypted messaging shouldn’t be already compromised.
If the Chinese language have smashed their approach into the core of the U.S. Cyber setting, it means they’re shifting like an armor piercing sabot spherical and can blow via the armor of encrypted messaging with solely minor further effort.
And pray inform – how will all the brand new communication created with encrypted messaging be memorialized in accordance with the Federal Records Act or the Presidential Records Act?
Was this a poison capsule for the Trump Staff? Is a weaponized Federal Archivist going to be the tip of the spear once more to play gotcha with President Trump for failing to make sure encrypted messaging is saved – very similar to the position they performed towards President Trump within the first time period?
How did we get up to now? Once I was in Authorities, this might by no means have been allowed to occur.
And if it did, the U.S. Authorities would have hit again laborious in artistic methods to cease the bleeding, punish the assailant, and produce issues to an finish. This breach is the results of Deep State Woke-ism, pure and easy.
We spend near $1 trillion on Protection, over $100 billion on intelligence, over $3 billion on DHS CISA, and over $11 billion on the FBI and but the Chinese language now occupy the cyber core of American Web Service Suppliers?
If the Deep State had spent extra time doing their Constitutional duties and fewer time spying on Individuals, this might not have occurred.
However with the cancerous impact of Woke-ism, DEI, and CRT, a hapless Deep State Blob has been created that’s way more threatened by the American Citizen than the Chinese language Communist Get together.
China has American Telcom’s in a Headlock – unleash the Navarro
The Obama Staff was very upset with China working amok contained in the Workplace of Personnel Administration beginning round 2014 (concerning the time of Biden and Hunter’s first journey to China).
However when the Obama Staff requested for concepts on how you can shut down the Chinese language intrusion, nearly every part was rejected as too provocative.
Over 22 million data of everybody with a High-Secret clearance have been stolen and China was able to identify, arrest, and execute 100s of Chinese Citizens who have been maybe informants to American Intelligence.
One of the simplest ways to eject the Chinese language Intelligence squatters from the American networks is straightforward.
On January 20, 2025, President Trump unleashes Dr. Peter Navarro, Scott Bessent (Treasury Secretary), Kristi Noem (DHS), Jamieson Greer (U.S. Commerce Consultant), and Secretary of State Marco Rubio to carry China financially accountable and restrict their entry to the Capital Markets beginning with the Federal Thrift Financial savings Program retirement investments for Civil Service and now the brand new Army Retirement System.
The Chinese language cyber foothold will quickly collapse as soon as their funding supply is lower off.
All viewpoints are private and don’t replicate the viewpoints of any group.
