CyberWire Daily – "The basics broke telecom"
Date: February 23, 2026
Host: Dave Bittner (N2K Networks)
Guests: Brandon Karpf (NTT), Maria Varmazes (T Minus Space Daily)
Episode Overview
This episode focuses on how lapses in basic cybersecurity led to telecom sector breaches, updates on ongoing global cyber threats and policies, the growing push for digital sovereignty in both space and cyber domains, and notable industry trends. An interview segment with Brandon Karpf and Maria Varmazes dives into sovereignty, shifting international alliances, and what these changes mean for tech, security, and policy on a global scale.
Key News & Analysis Segments
1. Salt Typhoon: Exploiting the Basics
[00:10 – 02:30]
- Background: The Chinese espionage group Salt Typhoon, responsible for the 2024 US telecom infrastructure compromise, remains an ongoing threat.
- Key Insights:
- Most successful organizations in limiting damage worked closely with the FBI and CISA (Michael Machtinger, FBI).
- Telecom cases revealed a clear pattern: attackers exploited basic weaknesses and fragmented networks, not advanced zero-days.
- Phishing and outdated legacy systems remain common attack vectors.
- Quote:
“Simple vulnerabilities, not advanced zero day exploits, were the primary entry points.” (02:00 – Michael Machtinger) - Urges for adoption of zero trust and least privilege models.
- Salt Typhoon’s global reach: affected infrastructure in over 80 countries.
2. AI-Generated Images and Data Privacy Concerns
[02:30 – 03:55]
- Global data protection authorities warn about AI systems creating realistic imagery/videos of people without consent.
- Risks Highlighted:
- Nonconsensual intimate content, defamation, and particular danger to children and vulnerable groups.
- Call to Action:
- Developers/deployers must comply with privacy laws and offer removal tools for harmful content.
- Emphasizes transparency on AI capabilities and risks.
- Quote:
“Technological advancement should not come at the expense of privacy, dignity and safety.” (03:50)
3. Ransomware Hits Japanese Semiconductor Company Advantest
[03:55 – 04:40]
- Advantest responded to ransomware after detecting unusual IT activity (Feb 15).
- Swift mitigation: isolated systems, engaged cybersecurity experts.
- Impact on customer/employee data and full extent still unknown.
- Operations not significantly disrupted as of report.
4. AI Drives New Number Formats
[04:40 – 06:00]
- Boom in AI fuels innovation in numeric data formats to reduce computational overhead.
- Laszlo Hunhold (OpenChip):
- Traditional 64-bit formats overkill for most AI but necessary for scientific computing.
- New format "Takum" offers better balance for scientific needs, inspired by but distinct from "Posits".
5. Low-Skilled, AI-Enabled Attacker Hacks 600+ Fortinet Firewalls
[06:00 – 07:10]
- Russian-speaking threat actor used commercial generative AI tools for credential attacks.
- Compromised 600+ Fortigate firewalls across 55 countries by scanning exposed interfaces and using AI for tool generation.
- AWS Security Blog:
- “Activity was opportunistic and usually failed on patched systems or closed ports.”
- Recommends: robust patching, credential hygiene, segmentation, and strong post-exploitation monitoring.
6. Spanish Authorities Dismantle Anonymous Fenix DDoS Group
[07:10 – 08:00]
- Four arrested for DDoS attacks targeting government entities post-2024 Dana floods.
- Social media and Telegram shut down.
- Group cited flood tragedy in justification for attacks.
7. CISA Demands Federal Patching of Roundcube Webmail Flaws
[08:00 – 08:40]
- Active exploitation of two Roundcube vulnerabilities (RCE and XSS).
- Federal agencies ordered to remediate by March 13.
8. AI Security Announcement Roils Cybersecurity Markets
[08:40 – 10:20]
- Anthropic’s new Claude AI model scans codebases for vulnerabilities, suggests fixes.
- Market response:
- Major cybersecurity stocks fell sharply (CrowdStrike -8%, Cloudflare -8.1%, SailPoint -9.4%, Okta -9.2%).
- Broader concern: AI may shrink need for traditional security products.
- Analyst view: Long-term, AI could benefit security field; short-term volatility expected.
9. Monday Business Breakdown: Funding, M&A, Innovation Sandbox
[10:20 – 12:59]
- RSAC’s Innovation Sandbox finalists announced—each granted $5 million.
- Multiple startups across fraud, AI code security, identity, app security attract significant capital.
- Major M&A: Palo Alto ($400M for Israeli startup COI), Check Point, Proofpoint and others acquiring AI security firms.
- Signal of strong investor appetite for AI-driven security and governance solutions.
Interview: Digital Sovereignty in Space and Cyber
Guests: Brandon Karpf (NTT) & Maria Varmazes (T Minus Space Daily)
[13:32 – 27:03]
Introduction
- Brandon and Maria discuss the global drive towards digital and space sovereignty.
Digital Sovereignty in Space
Maria Varmazes (14:07 – 15:40):
- Europe is investing billions of euros in sovereign space infrastructure, aiming for communication systems and satellite constellations built by, governed by, and for Europeans.
- Recent space conferences highlight explicit rhetoric around European self-sufficiency.
- Quote:
“It all needs to be made by Europeans, governed by Europeans, for Europeans. There’s no bones about it, basically.” (15:30 – Maria Varmazes)
Digital Sovereignty in Cyber
Brandon Karpf (15:44 – 16:44):
- Similar sovereignty push in cyber, especially visible in Japan and Taiwan—insistence that data never leave national borders (sovereign clouds).
- U.S. cloud providers struggle to meet these requirements; huge market for local infrastructure.
- Practicalities:
- Cost is high; U.S. standards lose ground to local approaches.
- U.S. tech giants increasingly forced to build in-country—major capital outlay.
- Sovereignty is personal: “...someone else has information about us that we don’t necessarily want them to have control over… That’s this principle of sovereignty.” (18:59 – Brandon Karpf)
True Sovereignty vs. Shifting Alliances
Discussion (20:05 – 23:15):
- Space sovereignty faces real-world bottlenecks: even Europe relies on US launch capacity and components.
- Progress is happening but “space is hard” and U.S. retains an edge—for now.
- Many policies and norms still borrow from the U.S., but change is accelerating.
- Maria Varmazes:
“There’s a lot of restrictions on what the nations are wanting to do versus what they actually can do, simply because we’ve had a large head start in the United States, but that’s not going to last forever... Other nations are quickly catching up.” (22:40 – Maria Varmazes)
The China Factor
Brandon Karpf (23:19 – 25:50):
- Geopolitical and market power is shifting; countries like China and Canada making major deals.
- China set to benefit most as markets regionalize and countries turn toward homegrown or alternative suppliers.
- “China is going to be getting deeper and deeper entrenched... both of those situations hurting the American market.” (25:47 – Brandon Karpf)
Practical Opportunities and Market Impact
- The trend towards sovereignty presents opportunities for emerging markets and new players, but challenges for U.S. tech dominance.
Conference Sneak Peek
Brandon Karpf (25:58 – 26:48):
- Announces upcoming risk analysis learning lab at RSAC (March, San Francisco).
- Hands-on, practical approach to risk forecasting.
“There’s only 56 available seats... practical risk analysis, risk forecasting for your organizations.” (26:13 – Brandon Karpf)
Memorable Quotes & Moments
- On the real risk to telecoms:
“Simple vulnerabilities, not advanced zero day exploits, were the primary entry points.”
(02:00 – Michael Machtinger, FBI) - On AI imagery risks:
“Technological advancement should not come at the expense of privacy, dignity and safety.”
(03:50 – Joint Statement Excerpt) - On European space ambitions:
“It all needs to be made by Europeans, governed by Europeans, for Europeans.”
(15:30 – Maria Varmazes) - On the meaning of digital sovereignty:
"...someone else has information about us that we don’t necessarily want them to have control over ... That’s this principle of sovereignty."
(18:59 – Brandon Karpf) - On US edge in space launch:
“They [Europe] do not have the launch capacity anywhere close to what the United States can do. They can’t get things into space nearly as quickly as we can.”
(21:40 – Maria Varmazes) - On China exploiting global shifts:
“China is going to be getting deeper and deeper entrenched... both of those situations hurting the American market.”
(25:47 – Brandon Karpf)
Timestamps: Key Segments
- 00:10 – 02:30 | Salt Typhoon threat and telecom sector weaknesses
- 02:30 – 03:55 | Global data privacy concerns with AI-generated imagery
- 03:55 – 04:40 | Advantest ransomware attack
- 06:00 – 07:10 | AI-enabled Russian threat actor hacks Fortinet firewalls
- 08:40 – 10:20 | AI’s impact on cybersecurity market and stocks
- 13:32 – 27:03 | Digital sovereignty in space, cyber, global impact (Interview with Karpf and Varmazes)
Tone & Style Notes
- The show maintains a direct, knowledgeable, and engaging tone.
- Interview segment blends expertise with light humor and personal anecdotes for accessibility.
- Language remains professional with occasional industry jargon and playful banter.