OSINT Update for 18 June 2025 🇨🇳 China — Cyberattack • Online Censorship ➤ Chinese-state hackers MirrorFace (MICROSTaT linked) credited with over 210 attacks on Japanese defence, aerospace, semiconductor sectors—phishing and malware led to persistent intrusions. ➤ PLA doctrine emphasises AI-driven information warfare: networked disinformation campaigns and C4ISR integration. ➤ Reports of suppression of encryption tools and AI-driven content controls at home. 🇯🇵 Japan — Cyberattack • AI Regulation ➤ Targeted by MirrorFace attacks since 2019; JAXA, Foreign/Defence ministries, industry hit. ➤ Active Cyber Defence Bill advanced—empowers pre-emptive network disruption of cyber actors. ➤ Needed deep-tech supply chain resilience in response to repeated attacks. 🇮🇷 Iran — Cyberattack • Drones • War ➤ Sepah Bank hit by destructive malware campaign (“Predatory Sparrow”); services disrupted and data destroyed. ➤ Crypto exchange ParsEx drained—backend breach in admin portal confirmed. ➤ Drone units remain at heightened readiness; signals intelligence shows Quds Force coordination with proxies. 🇮🇱 Israel — Cyberattack • Drones • War ➤ Increased drone missions over Gaza; reinforced northern air defence. ➤ Reactive cyber sweeps targeting Iranian control nodes continuing. ➤ Elevated domestic surveillance tech deployment; civil-liberty concerns rising. 🇪🇺 EU — MiCA • CBDC • AI Regulation ➤ Malta and Luxembourg overseeing MiCA licensing; France proposing stablecoin issuer limits. ➤ CBDC sandbox arm EU innovation; encrypted backdoor resistance in Germany and Czech Parliament. ➤ AI Act binds facial recognition and biometric use in public spaces. 🇷🇺 Russia — Cyberattack • Drones • BRICS ➤ APT and DDoS attacks continue against Baltic and Ukrainian logistic networks. ➤ Unmanned Systems Regiment activated; laser-drone defence deployed. ➤ BRICS digital-ruble pilot nearing deployment; capital outflow restrictions announced. 🇺🇦 Ukraine — Drones • Cyberattack • Capital Controls ➤ AI-capable drone swarms used in Kharkiv; first kills confirmed. ➤ NATO cyber-drills ongoing; no major breach announcements. ➤ Regulators continue to monitor, capital control review paused; IMF engaged. 🇺🇸 USA — Cyberattack • Immigration • AI Regulation ➤ FBI warns Chinese ("Volt Typhoon") and Russian/Middle‑East actors targeting U.S. infrastructure. ➤ ICE raids continue; expanded domestic-terror threat classifications debated. ➤ Senate committee weighs facial-recognition limits in AI Bill framework. 🇩🇪 Germany — Crypto Regulation • Facial Recognition • Palantir ➤ Bundestag reviewing Palantir Gotham’s predictive policing use—court hearing next month. ➤ MiCA crypto service registry launching Q3. ➤ Facial-recognition pullbacks in public transit following backlash. 🇨🇳 vs 🇯🇵 / Intelligence Agencies ➤ NSA alert flags Volt Typhoon access to U.S. OT networks; CISA/NSA/FBI/UK/NZ/AUS/BND jointly warn on PRC threat. ➤ BND warning echoes EU partners on APT40/31 targeting. ➤ No fresh updates found from CIA, Mossad, MSS or FSB—monitoring in place. 📌 Forward Triggers ➤ China spyware targets Japanese supply chains; supply-chain espionage escalates. ➤ Japan’s Active Cyber Defence regime: first strikes or counter strikes. ➤ Attribution and response to Iranian banking and exchange hacks. ➤ EU’s encryption ban or stablecoin regulation outcomes. ➤ APT-driven cyber or drone escalations via Russia/Ukraine border. ➤ U.S. domestic-terror labelling of ICE riots finalized. ➤ German court ruling on Palantir predictive policing.