InfoSecBulletin Cybersecurity for mankind
Two Chinese nationalists who previously excelled in Cisco’s training academy are now leading attacks on the company’s devices. These devices, pivotal in many network infrastructures, are being targeted by Yuyang and Qiu Daibing. They were identified as key operators behind the notorious Salt Typhoon campaign.
In 2012, Yuyang and Qiu Daibing took part in the Cisco Network Academy Cup at Southwest Petroleum University in China. Qiu’s team placed third nationally, while Yu’s team was second in Sichuan province.
LastPass says hackers stole customer data via Klue, supply chain breach
New Apple Exploit Bypasses Boot Defenses, Possibly Affects Millions of iPhones Worldwide
India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record
Anthropic’s Mythos reportedly broke NSA classified systems in hours
OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment
AryStinger botnet infected thousands of D-Link routers globally
Hacker suspected of sending alerts across Brazil
CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT
Barracuda hosts Dhaka roundtable on cyber resilience
CISA Alerts Fortinet Users as FortiBleed Affects 86,644 FortiGate Devices
Their education through Cisco’s program covered many of the devices they would later exploit, including Cisco IOS and ASA Firewalls. The Cisco Network Academy started in China in 1998 and has trained more than 200,000 students.
In 2024, Yuyang and Qiu Daibing emerged as co-owners of companies named in a Joint Cybersecurity Advisory published by the United States and more than 30 allied nations, highlighting their influence over the compromised devices.
SentinelOne Labs reports that its Salt Typhoon operation affected over 80 telecom companies globally. Intercepting unencrypted communications among US presidential candidates, key staff, and China policy experts.
Hackers also compromised CALEA systems that telecom companies use to intercept criminal communications. The devices involved in this campaign, reported in September 2024, are part of one of the biggest intelligence collection efforts in the last decade.
The data suggests this is not just some weird name collision and a case of mistaken identity. A database of 1.2 billion Chinese last names from 1930 to 2008 compiled by Bruce H.W.S.Bao at East China Normal University finds the last name “Qiu” (邱) is used by 0.27% of China’s population.
A second database of 30,282,623 first names from 1920-2019 shows a frequency of the first name “Daibing” (代兵) at a rate of 0.000845%. In other words, there are approximately 3,194 “Qiu Daibings” in China, or 0.000228% of the population. Yu Yang is a much more common name, so is less useful for trying to de-duplicate these characters.
