This is your US-China CyberPulse: Defense Updates podcast.

I’m Ting, and this week’s US-China CyberPulse has been less “calm Monday” and more “someone just pulled the network cable in the data center.” Across the past few days, U.S. defenses have sharpened around a familiar pressure point: Chinese-linked cyber activity aimed at research, defense, and high-value tech targets.

According to CSO Online, China-linked hackers were caught targeting U.S. and Canadian research networks by hijacking REDCap upgrade processes to plant malware and spy on academic, healthcare, and defense research environments. Google’s guidance in that case is very practical and very on-brand for modern defense: inspect REDCap installations for unauthorized file changes, unexpected web shells, and credential-harvesting behavior, then upgrade vulnerable deployments and verify file integrity before and after updates. That same advisory also pushed phishing-resistant two-step verification, device-bound session credentials, and stronger data-loss prevention rules, which is exactly the kind of boring-sounding security that stops exciting attacks.

On the policy side, Reuters reported that U.S. lawmakers moved to ban China’s DeepSeek from government devices, reflecting fresh concern about how Chinese artificial intelligence tools could become security risks inside federal systems. At the same time, GMF noted that in June the Pentagon expanded its list of Chinese firms with suspected military ties, including Alibaba, Baidu, and BYD, which signals that Washington is tightening the circle around companies viewed as strategic enablers.

Private sector defense is also getting more aggressive. The Instagram post from security leaders highlighted a growing role for artificial intelligence in speeding detection and helping companies anticipate attacks before they land. That matters because the cyber battlefield is no longer just about blocking malware; it is about spotting patterns, tracing infrastructure, and responding at machine speed. In other words, defenders are trying to think like attackers, but with better coffee and more logs.

International cooperation is part of the picture too. The U.S. is increasingly working in sync with allies and partners on cyber supply-chain risk, research protection, and threat intelligence sharing, especially as Chinese-linked campaigns keep crossing borders and sectors. When a compromise in one university or lab can ripple into defense innovation, no country gets to stay in its own sandbox for long.

And then there is the technology layer, where the newest protection tools are becoming the frontline. We are seeing more phishing-resistant authentication, device-bound session controls, stronger file-integrity checks, and AI-assisted monitoring. The message from this week is simple: the U.S. is moving from reactive cleanup to proactive containment, because in cyber, waiting to be surprised is not a strategy.

Thanks for tuning in, listeners, and remember to subscribe. This has been a quiet please production, for more check out quiet please dot ai.

For more http://www.quietplease.ai

Get the best deals https://amzn.to/3ODvOta