The espionage campaign of the year lived on edge devices and quietly tunnelled data out. A secure internet gateway on Azure Firewall, billed at Azure cost, is where you stop that.
Draft outline · Security / cost lensCISA advisory AA25-239A documented the China-linked Salt Typhoon campaign compromising around 600 organisations across 80 countries, living on edge routers, adding GRE tunnels for persistence and capturing TACACS+ authentication traffic. The lesson for an agency: outbound is a control surface, not an afterthought.
Government and CNI-focused journalism tracking the campaign, its scale and its edge-device tradecraft.
Joint government advisory detailing the TTPs, including GRE tunnelling and TACACS+ capture.
Blends the security case (a campaign every government reader knows) with the commercial model that defines the product: fixed management fee, Azure at cost. It shows we manage the outcome, not resell Azure at a markup, which is a direct shot at the big-vendor opacity our persona is tired of.