This Week in Cybersecurity: The US government continues its counter-offensive against Chinese cyber espionage. The Treasury Department sanctioned Yin Kecheng, a Chinese hacker linked to the Salt Typhoon group, responsible for breaching US telecoms and compromising sensitive communications data. A separate investigation revealed that Chinese hackers infiltrated Treasury systems, accessing 400 computers and stealing 3,000 files related to sanctions and law enforcement. In a significant counter-move, the FBI remotely uninstalls PlugX malware from 4,200 devices worldwide, disrupting a Chinese state-sponsored hacking operation. This follows the successful takeover of the malware's command-and-control server by cybersecurity firm Sekoia and French law enforcement. Meanwhile, the education sector faces a major data breach. The attack on PowerSchool, an education technology platform used by millions of K-12 students, compromised "all" student and teacher data for affected school districts. Beyond these major incidents, the cybersecurity landscape remains complex. Huione Guarantee, a marketplace for online scammers, expands its services, while concerns grow over GitHub's ability to combat deepfake porn. The increasing use of predictive travel surveillance by governments and companies to identify potential "threats" raises serious privacy concerns.