At a glance.
- Cranes as a security threat.
- EPA memo addresses cybersecuirty risks to water systems.
- Oakland's ransomware incident becomes a data breach.
- Carding rises in the Russian underworld.
- Sandworm's record in Russia's war.
Cranes as a security threat.
The US government is concerned that Chinese-made ship-to-shore cranes could pose a national security threat, the Wall Street Journal reports. The cranes in question are manufactured by the Chinese company ZPMC, which a US official said makes around 80% of ship-to-shore cranes used at US ports. The Journal explains that these cranes “contain sophisticated sensors that can register and track the provenance and destination of containers, prompting concerns that China could capture information about materiel being shipped in or out of the country to support U.S. military operations around the world.”
The government doesn’t point to any instances of cranes actually being used for these purposes, but the defense policy bill passed by the US Congress at the end of last year requires the Transportation Department’s maritime administrator to conduct a study to determine whether these cranes could pose cybersecurity threats. Note that the immediate risk being reported is a threat to information security, not necessarily to the operation of the cranes themselves: the concern is so far about espionage as opposed to sabotage.