We are honored to announce that H Sama Nwana has been appointed the new Chair of GCA’s Board of Directors.

“Cybersecurity today is not just a technical issue—it is a matter of public trust, economic resilience, and social stability,” said Nwana. “GCA’s work focuses on the parts of the Internet that everyone depends on but few understand, helping prevent systemic failures before they occur.”

Prof. Nwana succeeds William Pelgrin, who will continue to serve on the Board.

Read the full announcement:

https://globalcyberalliance.org/gca-appoints-prof-h-sama-nwana-as-chair-of-the-board-reinforcing-its-mission-to-secure-the-internet-for-all/

The Domain Trust Community met on December 2nd, providing a comprehensive snapshot of where Domain Trust stands today: a maturing initiative with tangible technical progress, growing community engagement, and a clear focus on sustainability and impact heading into 2026.

2025 highlights include:

💡 A significant data re-architecture to support scale and flexibility

💡 A new user interface and API to serve both technical and non-technical users

💡 Growth of the Action Working Group, which has identified nearly 20 concrete actions to reduce domain abuse and is ready to move to the measurement and implementation stages, with the final objective of building a Domain Trust Badge

Read the recap and view the slides: https://globalcyberalliance.org/domain-trust-upgrades-community-momentum-and-whats-ahead/

“It’ll never happen to me”… until it does.

From hijacked social accounts to stolen phones and drained wallets, cyber incidents are no longer rare or abstract, they’re personal.

Cyber resilience isn’t about being paranoid or technical. It’s about being prepared, limiting the damage, and recovering quickly when something goes wrong.

We break down what cyber resilience means for everyday people, the small steps that make a big difference, and how to build a simple cyber hygiene kit to protect what matters most.

Read the full article:

https://globalcyberalliance.org/why-cyber-resilience-is-personal-building-your-own-cyber-hygiene-kit/

GCA just released its 2025 cyber trends review and our response strategies for 2026, outlining where the Internet proved fragile this year and what we are doing to strengthen it.

👉 Persistent Telecom Hacks (like #SaltTyphoon) Exposed Infrastructure Fragility

👉 #AI Became a Force Multiplier

👉 The Cyber Skills Gap Deepened as AI Automated Routine Tasks

👉 Cybercriminals Capitalized on Crisis and Seasonal Giving

👉 Cybersecurity-focused #Nonprofits Struggled in an Uncertain Funding Landscape

“As we look to 2026, our focus is enabling everyday resilience,” said Brian Cute, Interim CEO of GCA. “If we give people simple, proven tools and pair them with infrastructure-level improvements and global collaboration, we can meaningfully bend the curve on cyber risk.”

Read more: https://globalcyberalliance.org/five-cybersecurity-forces-that-defined-2025-and-will-shape-2026/

Our new report from Meghal Donde Pradhan, “Salt Typhoon Across the Internet: What AIDE Honeypots Reveal About a Persistent State-Linked Campaign,” uses AIDE data to demonstrate Salt Typhoon’s operational characteristics through observable attack patterns spanning 2+ years. Salt Typhoon has been publicly attributed to actors based in China and assessed as state-sponsored; AIDE’s findings focus only on behavioral evidence and do not directly attribute the activity to Chinese authorities.

Between August 2023 and August 2025, AIDE recorded more than 72 million China-origin attack attempts against decoy systems emulating telecommunications networks. Within this broader dataset, AIDE identified patterns consistent with Salt Typhoon’s tactics, techniques, and procedures (TTPs)—providing an empirical view of the campaign’s operational tempo and corroborating indicators described in public advisories by CISA, the FBI, and industry partners.

Salt Typhoon is an active, evolving campaign requiring immediate action from infrastructure operators. This report offers defensive measures provides concrete protection against documented attack vectors.

Read the blog post summary and download the report here:

https://globalcyberalliance.org/new-report-salt-typhoon/

#salttyphoon #cybersecurity #AIDE

Our new report from Meghal Donde Pradhan, “Salt Typhoon Across the Internet: What AIDE Honeypots Reveal About a Persistent State-Linked Campaign,” uses AIDE data to demonstrate Salt Typhoon’s operational characteristics through observable attack patterns spanning 2+ years. Salt Typhoon has been publicly attributed to actors based in China and assessed as state-sponsored; AIDE’s findings focus only on behavioral evidence and do not directly attribute the activity to Chinese authorities.

Between August 2023 and August 2025, AIDE recorded more than 72 million China-origin attack attempts against decoy systems emulating telecommunications networks. Within this broader dataset, AIDE identified patterns consistent with Salt Typhoon’s tactics, techniques, and procedures (TTPs)—providing an empirical view of the campaign’s operational tempo and corroborating indicators described in public advisories by CISA, the FBI, and industry partners.

Salt Typhoon is an active, evolving campaign requiring immediate action from infrastructure operators. This report offers defensive measures provides concrete protection against documented attack vectors.

Read the blog post summary and download the report here: https://globalcyberalliance.org/new-report-salt-typhoon-across-the-internet/

#salttyphoon #cybersecurity #AIDE

With the transformation into an AI-driven society comes a growing need for professionals who understand its potential and its risks. That’s the vision behind GCA’s new AI+Cyber Curriculum, an initiative to teach students about AI safety and equip them to build real, deployable solutions before they graduate. Launched with a pilot cohort of ten STEM students at Carnegie Mellon University Africa, the program blends technical foundations, responsible-use frameworks, and hands-on capstone projects that mirror real-world cybersecurity challenges.

We had the opportunity to chat with Ineza Karangwa Joseph (Joe), one of the students in the pilot project who helped shape the first set of student-built tools emerging from the curriculum. In this interview, we explore what drew him to the program, what he built, challenges he faced, and how he sees AI shaping the cybersecurity landscape of the future.

https://globalcyberalliance.org/building-ai-tools-that-matter-inside-the-student-experience-at-cmu-africa/

#ai #artificialintelligence #workforcedevelopment #cybersecurity #cybersecuritycurriculum

Nonprofits must protect the systems and data that power their mission. From donor data to case notes to volunteer and employee communications, one missed update or successful phish can disrupt services, erode confidence, and drain already-limited capacity.

The good news: raising your security baseline doesn’t require a big budget or a dedicated IT team. Practical, right-sized steps and mission-aligned tools can dramatically reduce risk.

Interim CEO Brian Cute wrote about this in a new article for the Nonprofit Times, including the online threats nonprofits face today and simple moves to mitigate those threats.

A few key takeaways:

🔢 A “Core 4” foundation — strong passwords, multifactor authentication (MFA), scam awareness, and updates — blocks many common attacks.

🛠️ Nonprofit-friendly tools already exist (like GCA’s Cybersecurity Toolkit for Mission-Based organizations, @quad9dns, and the Nonprofit Cyber Solutions Index).

🏃‍♀️‍➡️ You don’t need perfection — you need momentum. Small steps, done consistently, strengthen the trust your community places in you.

Read the full article for practical checklists, 30-day wins, and resources you can use immediately.

https://thenonprofittimes.com/npt_articles/mission-under-digital-siege-closing-the-cybersecurity-gap/

"Cybersecurity isn’t just about what people do online — it’s about how we protect the Internet itself." — Leslie Daigle, GCA's Chief Technical Officer.

Today in Tech Times, she shares more about the need to protect all Internet users from weaknesses in the Internet's core infrastructure.

Leslie's team focuses on preserving the integrity of the Internet itself — monitoring global attack traffic, helping networks adopt stronger routing security through #RPKI and Mutually Agreed Norms for Routing Security (MANRS), and giving organizations tools to reduce risk and build trust.

Her messages are clear:

🌍 The Internet is a shared resource.

🔗 Its security depends on collaboration across borders and sectors.

🤝 Protecting it is everyone’s responsibility.

https://www.techtimes.com/articles/312473/20251104/why-cybersecurity-must-evolve-protect-internet-itself-not-just-people-using-it.htm

RE: https://mastodon.social/@quad9dns/115424672350991693

What a team!! #RIPE91