Beijing tells Chinese firms to stop using US and Israeli cybersecurity software - https://news.ycombinator.com/item?id=46618949 - January 2026
I know 2 companies in that list that have done that very thing because otherwise it would have put their FedRAMP and CMMC pipelines at risk.
I initially was in the Huawei client engagement where they wanted copies of all of our source code. We said “no, nobody gets that”. They just keep asking over and over.
Seems like a situation where getting the interests to align is just very difficult.
I understand it's a good way to make money but it comes with some tail risk.
That said, most companies decide not to operate in the Chinese market - the TAM is too small for the headaches that it entails (losing Gov and NATO+ defense procurement opportunities).
and Venezuela govt is not corrupt?
So saying "every government is bad" is simply a bad faith argument and you should shamefully sink towards the planet core for using it. Andorra is not as bad as russia or iran.
Just yesterday there was a video where russian soldiers tie an anti tank mine around the torso of a black African mercenary soldier from Mali before forcing him on a suicide meat assault towards Ukrainian positions. Some countries are evil on another level.
"So rape isn't?!"
Come on.
Actually, poor countries can leverage cyber to pose a much bigger threat than they could traditionally.
Or in other words: Cyber can be used for asymmetric warfare. In relative terms, poor countries cause a lot more damage than rich ones.
> The power failures caused sporadic outbursts of looting and unrest, bringing the government close to collapse.
IIRC both Texas and California had widespread power outages in the last few years. I am not convinced that US power grid is much better defended than the one in the EU.
Didn't russia claim to have the full Epstein files, so how did they get them if not by hacking US government?
Attribution of cyber attacks is extremely difficult, and US seems to notoriously under invest into infrastructure. Unlike other countries, most of the power grid is above ground. How can you be so sure that it is safe?
I didn't say it was safe by virtue of defensive capabilities, but it's safe by virtue of the US will very likely come bomb you or use its own cyber capabilities if you do something to the US. This is in contrast to the EU which was the comparison point, which is unable and unwilling to do much against cyber attacks.
If the damage is done, of course the US can massively retaliate. But ideally no damage is done :)
USA is only willing to fight very asymmetrical wars.
But if one of those countries shut down the US power grid we absolutely would respond and you're naive to think that the US would not respond out of some "fear" about only fighting very asymmetric wars.
Amongst some there seems to be this idea that because the US has taken military action in other countries over the years, more recent being more important, and because those countries "couldn't fight back" that the US is unable or unwilling to take further action against other nation states that theoretically could fight back (India could not, for example as a weak military power with nuclear weapons), but instead I'd caution you look at those action with respect to the ability of other countries to take action.
In other words, it feels good to throw in zingers like the US only beats up on weaker countries or something which, let's be frank would be every country or bloc except China, but you're missing the fact that those countries are not even able to project power to or willingness or ability to attack other countries.
Generally I think you are using a lot of big words to compensate for the fact that the US ignored the Minsk agreement.
The russian government has been publicly joking about Trump, broadcasting nude pictures of the first lady and boasting about possessing the Epstein tapes. Before that was the hack of Hillary's mail server and fake news campaigns. No kinetic repercussions, even red carpet for putin's visit in Alaska.
Apart from all this a modern drone war would be a big problem for the US, and countries like Ukraine, russia and china are much better prepared for such a scenario.
Yea that's obviously dumb, but the difference is you hear about America's problems, but not the problems in other countries. Russia has its oil facilities regularly bombed. China has institutionalized corruption down to the local level. It's not all peaches and rainbows in every country on earth.
> It'd be great progress to actually detect what caused it in a timely manner and then do a proper cyber attribution.
Who says we aren't?
> Generally I think you are using a lot of big words to compensate for the fact that the US ignored the Minsk agreement.
Can you elaborate? What's the broader point you want to get at here?
> The russian government has been publicly joking about Trump, broadcasting nude pictures of the first lady and boasting about possessing the Epstein tapes. Before that was the hack of Hillary's mail server and fake news campaigns. No kinetic repercussions, even red carpet for putin's visit in Alaska.
Yes, totally. The United States should have bombed Russia for publicly joking about Donald Trump. Give me a break. Why even post stuff like this?
> Apart from all this a modern drone war would be a big problem for the US, and countries like Ukraine, russia and china are much better prepared for such a scenario.
Who do you think is operating in Ukraine and advising the Ukrainians and learning from their drone warfare techniques and capabilities? Do you really not know how this stuff works? Are you not aware that the United States is actively testing weapons in Ukraine to prepare for drone warfare? Is that why you're saying stuff like the US should have a kinetic response against Russia for posting pictures and joking about Donald Trump?
1. You don't actually know what actions the US has taken.
2. The only country outside of one using nuclear bombs that could theoretically "hit back" is China.
3. Flying some balloons across the US doesn't necessarily necessitate some sort of massive response. There's levels.
> Yes, you're missing that if you mess with the power grid the US will go and kinetically strike back (read: bomb your country) or attack you with its own cyber warfare capabilities, unlike the EU.
Bare minimum it gives chinese tech suppliers a great pitch to convince buyers to choose their products over US suppliers. Even if theirs are also full of backdoors, at least they have no history of taking advantage of them to kidnap heads of state far away.
Ha. Someone else wrote:
> USA is only willing to fight very asymmetrical wars.
I say:
> China is only willing to kidnap defenseless people
"why doesn't the US go after these hackers and designate targeting civilian infrastructure as a crime?"
To which the response was essentially "The US would like to reserve those types of cyber attacks for their own uses"
These quotes are very loose, I read it last year, but essentially, the US didn't make a stink about older grid attacks in order to save face when the US does it.
Additionally, much of VZ's difficulty was due to the massive sanctions against the nation. Sanctions are effectively attacks on a nation's citizens to pressure the government. Disabling power infrastructure is absolutely in-line with the motives of sanctions and embargos.
In this case, it fits squarely in with American foreign policy, especially their orientation towards Venezuelan chavismo.
I understand the US's foreign policy is a global threat, but let's not let that be an excuse for the atrocities and corruption of tyrants in Venezuela and other places.
https://en.wikipedia.org/wiki/Energy_crisis_in_Venezuela
[1] https://en.wikipedia.org/wiki/Energy_crisis_in_Venezuela
Their human intelligence is much better prepared to "convince" someone to act against their own interest if they can look at your last ten years of communication, family pictures, and web browsing history before they even meet you.
Imagine working in a foreign country where death penalty is applied to certain crimes, like blasphemy or homosexuality. They just need to find one person in the target organization who has a secret twitter account that talked badly about god and then they hit them up and tell them to plug in a certain USB stick to a certain system. Cyber operation succeeded because they have a shell.
Also: Why is India on your list? "Biggest", certainly, but in what way are they a threat?
The country has its hands full enough coping with its state of quasi-chaos and belligerent nuclear-armed neighbors without taking on the worlds leading superpower for absolutely no reason at all.
Extraordinarily wrong on the first part.
Some countries have even outsourced some of their cyberattack capability to Indian companies in the past, and not for cost reasons.
sylware•2h ago
fidotron•1h ago
Maybe they need to use RISC-V assembly ;).