FBI Calls China Most “Brazen” and “Damaging” Threat to US

Correct.

JustSomeGuy

The FBI is corrupt. Our leaders are pro CCP

The weakest link in anyone's computing infrastructure is the human element. State actors including the CCP to bored kids in their garage take advantage of people's behavior to cause trouble and get their hands on sensitive information and technology. Thankfully there are a a few ways we can fight back: 1) Don't click on emails or links you don't recognize or emails/links that aren't sent in a format you do recognize. This is called phishing and if you click one of these links, they can be used to compromise your financial information or drop Spyware or other back doors on a computer. 2) Be aware of what you share with other people when it pertains to your job, especially if you work in a sensitive industry. Be aware of people who take too much interest in your job or seem to know more than they should. Paranoid? This is an easy way for foreign intelligence to exfiltrate technology or gain insights into what kind technology is being developed. Trade shows, symposiums, university forums are great opportunities to try and steal information and technology. 3) Manage the insider threat - indication of divided loyalty, attempts to break security policy, disgruntlement, unexplained affluence may all be indicators of someone who wants to or is attempting to steal information. Report this to the relevant authority. 4) Update your computer software - yes its annoying, but make sure your software is up to date. Patches often fix vulnerabilities and hasn’t been available long enough for new vulnerabilities to be exposed and manipulated. There have been some high profile breaches recently due to using outdated software. 5) Don't use public wifi without a VPN - it's insanely easy to sniff and spoof open wifi access points. Even with TLS/SSL on most internet connections, it's not hard to profile what someone is doing online even if it's harder to get passwords or other sensitive information. Other things you can do: avoid made in China technology, be aware of what cloud services you use and where their servers are located, and use 2 factor authentication on your major technology providers; passwords are not good security on their own. Sorry about the data dump, but this is information I think anyone concerned about China stealing proprietary or sensitive information might find useful if they're looking for ways to fight back against them. These tips are also just good practice in general. You don't need to be a fortress, but do enough so an attacker will choose to go after a softer target. Just because what you do or what you know seems unimportant, it doesn’t mean bad actors won’t take advantage of you to get what they can.