News, Trends, and Insights for IT & Managed Services Providers
News, Trends, and Insights for IT & Managed Services Providers
Business of Tech | Chinese State Backed Hackers Escalate Attacks on U.S. ISPs

In reporting from the Washington Post, Chinese government-backed hackers have significantly intensified their attacks on U.S. internet service providers, gaining access to major and smaller companies to spy on users, including government and military personnel. The hacks utilize sophisticated techniques, including exploiting zero-day vulnerabilities and raising concerns about intelligence gathering. The Chinese Embassy denied state involvement, attributing the attacks to a ransomware group. U.S. cybersecurity officials continue to monitor the situation, noting the ongoing threat posed by groups like Volt Typhoon.

State Scoop reporting Police departments are increasingly using generative AI, like Axon’s Draft One, to write incident reports, which could save officers time but raises concerns about accuracy and accountability. While some departments use it for minor incidents, others apply it to all types of reports. The use of AI in law enforcement has sparked debate due to potential biases and the risk of officers evading responsibility for their reports.

Hundreds of open-source large language model (LLM) servers and vector databases are leaking sensitive corporate and personal data due to inadequate security measures. A recent investigation revealed vulnerabilities in Flowise servers, allowing access to critical information like API keys and tokens. Additionally, around 30 vector databases were found unprotected, containing sensitive data that attackers could manipulate or corrupt. Organizations should restrict access, monitor activities, and apply software updates to mitigate risks.

Why do we care?

Chinese hackers in ISPs feels like headline news this audience wants to know about.     They’re gathering intelligence, which shouldn’t be shocking, although it’s pretty notable.   One attack vector I noted was watching for passwords over the wire.  

I wanted to note law enforcement’s use of generative AI and leave that for you to ponder. Consider LLMs as a data attack vector. This is worth considering with your clients and a value you can add in managing.  

Choose your upgrade:

Get the full benefits of Business of Tech Plus

Insider Access

$12/month

Perfect for MSPs and ITSPs that want full interviews, early access, and ad-free listening

  • Programmatic Ad-free private podcast feedSame show, little interruptions
  • Channel Chatter previews1–2 topics with light insights
  • Early access to interview episodesHear it days before public release
  • Monthly Insider BriefTighter analysis you can share internally
  • Extra audio segmentsCut interviews, behind-the-scenes commentary, quick competitive notes
  • Become an Insider for $12/month

    Leadership Access

    $149/month

    Perfect for MSPs and Vendors that run a team and need the extended tactics, executive summaries, and weekly alignment brief

  • All Insider Access benefits plus . . .
  • Invite your teamIncludes access for 5 team members with option to add more
  • Vendor Strategy BriefsThe entire library, plus new analysis every month
  • Channel ChatterAll topics, full insights, complete vendor discussion + sentiment list
  • Quarterly State of the Channel Briefing
  • Monthly AMA submission priorityAsk Dave direct questions, and skip the line
  • Get the Leadership Edge for $149/month

    Vendor Partner

    $500/month

    Perfect for channel companies or vendors looking to deepen their engagement with the show.

  • All Leadership Access benefits plus . . .
  • Get highlighted as a show sponsor You'll get placement in the show notes, throughout the website, and on our dedicated sponsors page.
  • Enjoy regular shout outs You'll be featured in a rotating format during the show
  • Become a show sponsor for $500/month

    Search all stories