Intelligence Summary: Salt Typhoon / APT28 (GRU)

Classification: Composite state-sponsored cyber threat actor designation encompassing PRC Ministry of State Security (MSS) ISP infiltration operations ('Salt Typhoon') and Russian military intelligence (GRU Unit 26165 / APT28) cyber-kinetic targeting infrastructure.

Operations:

• Infiltrated major U.S. Internet Service Providers to harvest communications metadata
• Penetrated Max Planck Institute networks to map the 'human connective tissue' of the Gray Track academic ecosystem
• Generated sociogram targeting packages used to identify and prioritize high-value human capital nodes
• Provided Command and Control (C2) infrastructure and weaponized Emotet malware to kinetic operators

Impact: The Salt Typhoon sociogram mapping directly enabled the identification and targeting of Dr. Nuno Loureiro as a critical single-point-of-failure.