Skip to main content
The Gate 15 Podcast Channel

The Gate 15 Podcast Channel

By Gate 15

The Gate 15 Company is a leader in helping organizations by providing threat-informed, risk-based approaches to analysis, preparedness and operations.
Available on
Apple Podcasts Logo
Google Podcasts Logo
Overcast Logo
Pocket Casts Logo
RadioPublic Logo
Spotify Logo
Currently playing episode

Nerd Out Security Panel Discussion: EP 17. Lessons of the past to prepare the future

The Gate 15 Podcast ChannelSep 28, 2021

00:00
49:00
Weekly Security Sprint EP 57. Terrorism threats, IoT labeling, Exploitation threats, and more.

Weekly Security Sprint EP 57. Terrorism threats, IoT labeling, Exploitation threats, and more.

In this week's Security Sprint, Dave and Andy talked about the following topics: Warm Start: Growing need to address cybersecurity challenges across US healthcare sector for improved resilience Health-ISAC Supports Health Industry Cybersecurity Strategic Plan; Joint effort gives measurable objectives toward resilience within 5 years   Terrorism & Extremism Gaza War could spark radicalization for years to come: https://theintercept.com/2024/03/14/fbi-gaza-war-domestic-radicalization-hamas/ U.S. Senate Select Committee on Intelligence: Worldwide Threats C-SPAN: Intelligence Officials Testify on Global Threats Before Senate Cmte. 2024 Annual Threat Assessment of the U.S. Intelligence Community Top threats to watch in Intel’s worldwide forecast Four things we learned when US spy chiefs testified to Congress FBI director warns of 'dangerous individuals' coming across southern border US Intelligence Chiefs Deliver Grim Warning on Ukraine U.S. intelligence officials warn of global security threats during Senate hearing The Terrorist: How a devout Christian kid became a radicalized mass murderer A New Terror Threat Is Emerging in Europe Linked to Iran, Gaza War Illegal migrant from Lebanon caught at border admitted he’s a Hezbollah terrorist hoping ‘to make a bomb’ — and was headed for NY FB-ISAO: March 2024 Threat Level Statement Update   PSA - Extortion: On popular online platforms, predatory groups coerce children into self-harm. Using flattery and guile, he persuaded the 14-year-old girl to send a nude photo. It instantly became leverage. Over the following two weeks in April 2021, he and other online predators threatened to send the image to the girl’s classmates in Oklahoma unless she live-streamed degrading and violent acts, the girl’s mother told The Washington Post. They coerced her into carving their screen names deep into her thigh, drinking from a toilet bowl and beheading a pet hamster — all as they watched in a video chatroom on the social media platform Discord. The pressure escalated until she faced one final demand: to kill herself on camera. Related: There Are Dark Corners of the Internet. Then There's 764. What to Know About the Proposed TikTok Legislation   IoT: https://www.nextgov.com/cybersecurity/2024/03/fcc-approves-cyber-labeling-program-iot-devices/394946/ Quick Hits: Earth just had its warmest February on record European Environment Agency: Europe is not prepared for rapidly growing climate risks Ransomware: Ransomware: Attacks Continue to Rise as Operators Adapt to Disruption Malwarebytes: Ransomware review: March 2024 GRIT Ransomware Report: February 2024 Haiti: Haitian PM tenders resignation after Jamaica talks Haitian gangs abduct churchgoers amid escalating violence: 'Kidnappings everywhere' Haiti security mission in limbo as urgency grows Rush to deploy multinational force sets conditions on Haiti Plan to install new leaders in Haiti appears to crumble after political parties reject it American missionaries trapped in Haiti seek prayers and help Undersea cable failures cause Internet disruptions for multiple African countries   Info Ops:  Blinken Warns of Disinformation Threat to Democracies. South Korea hosted summit warns of AI risks to democracy How a Foul Ball From 2014 Became Part of a Russian Disinformation Campaign White House’s Efforts to Combat Misinformation Face Supreme Court Test Exclusive: Trump launched CIA covert influence operation against China US is still chasing down pieces of Chinese hacking operation, NSA official says UK NCSC: Cloud-hosted supervisory control and data acquisition (SCADA) US GAO - Science & Tech Spotlight: Combating Deepfakes HHS Office for Civil Rights Issues Letter and Opens Investigation of Change Healthcare Cyberattack The water industry wants to write its own cybersecurity rules. Will Biden and Congress go for it? CISA: Secure Cloud Business Applications: Hybrid Identity Solutions Guidance  
Mar 18, 202425:18
Weekly Security Sprint EP 56. IC3 Report, Information Ops, Religious Holidays, Domestic Threats

Weekly Security Sprint EP 56. IC3 Report, Information Ops, Religious Holidays, Domestic Threats

In the latest episode of the Security Sprint, Dave and Andy covered the following topics. Warm Start  Healthcare: Health-ISAC: Facing a major incident? Don't navigate it alone. Here's how Health-ISAC's community stepped up during the recent Change Healthcare event. Opinion: Conflicting government cyber mandates risk undermining US security. “Our nation faces a complex range of cyber threats Quote of the week: Risky Biz News: The aftermath of Microsoft's SVR hack is rearing its ugly head. In an update on the same incident posted late Friday afternoon—as is the practice of every respectable corporate company—Microsoft says it found new evidence over the past weeks that the Russian hackers were now weaponizing the stolen information.    Main Topics FBI IC3 2023 Internet Crime Report FBI: Critical infrastructure suffers spike in ransomware attacks Americans lost a record $12.5 billion to online fraud last year   Info Ops: Spate of Mock News Sites With Russian Ties Pop Up in U.S Proliferating 'news' sites spew AI-generated fake stories TAG Bulletin: Q1 2024 AI Tools Are Still Generating Misleading Election Images Fake U.S. local news network exposed as Russia-linked propaganda front: report ElevenLabs Block on Cloning Biden's Voice Easily Bypassed Russian influence operations against Baltic states and Poland having ‘significant impact’ on society A New Playbook for Addressing Health Misinformation AI will likely increase energy use and accelerate climate misinformation – report   Upcoming Holiday Security Awareness   Domestic Threats Inspired Terror: In Video Uploaded To Internet, Teenage Stabber Of Jew In Zürich Swears Allegiance To Islamic State (ISIS), Calls On Muslims To Target Jews And Christians Everywhere Insider Threats: Air Force Employee Indicted for Unlawful Disclosure of Classified National Defense Information.  Air National Guardsman Agrees to Plead Guilty to Unlawfully Disclosing Classified National Defense Information.  Chinese National Residing in California Arrested for Theft of Artificial Intelligence-Related Trade Secrets from Google   Quick Hits  4 tabletop exercises every security team should run. European Environment Agency: Europe is not prepared for rapidly growing climate risks EXECUTIVE SUMMARY European climate risk assessment TH-AL-24-001-EN-N.pdf  Ransomware tracker: The latest figures [March 2024] Learning Lessons from The Cyber-Attack: British Library cyber incident review, March 2024 The Week in Ransomware - March 8th 2024 - Waiting for the BlackCat rebrand The clowns and fools behind ransomware attacks BlackCat ransomware shuts down in exit scam, blames the "feds" No security issues as Super Tuesday draws to a close, CISA official says Canadian Centre for Cyber Security Security tips for organizations with remote workers - ITSAP.10.016 UK NPSA: Insider Events - Communications Guidance CISA and NSA Release Cybersecurity Information Sheets on Cloud Security Best Practices European court favors strong encryption, calling it key to privacy rights Update to national cybersecurity strategy implementation plan coming before the end of summer JetBrains TeamCity under attack by ransomware thugs after disclosure mess CISA Adds One Known Exploited JetBrains Vulnerability, CVE-2024-27198, to Catalog International:  As gangs attack a critical port, ‘Haiti will go hungry soon’ Tabletop exercise hosted by Europol to disrupt terrorist content online Tesla Berlin Gigafactory to be without power for another week following eco-terrorist attack Germany: Sabotage case launched against Tesla protesters German police carry out raids against people suspected of posting misogynistic hate speech online Sweden officially joins NATO, ending decades of post-World War II neutrality Sweden police arrest suspected Islamists believed to prepare attack U.S. Embassy & Consulates in Russia Security Alert: Avoid Large Gatherings over the Next 48 Hours U.S. warns of imminent Moscow attack by 'extremists,' urges citizens to avoid crowds
Mar 12, 202429:10
Venue Security, The IAVM Podcast Series EP 3: Stella Salyer on Leadership, First Aid and Emergency Response: (way) better safe than sorry.

Venue Security, The IAVM Podcast Series EP 3: Stella Salyer on Leadership, First Aid and Emergency Response: (way) better safe than sorry.

In this episode of Venue Security, The IAVM Podcast Series, Andy Jabbour talks with Stella Salyer, Assistant General Manager, Sales & Services, Virginia Beach Convention Center. Stella is a Nationally Registered Advanced Emergency Technician and volunteers every weekend in Virginia Beach’s 911 system. She holds certifications in Mass Casualty and Tactical Emergency Critical Care, Stop the Bleed instructor, and is a Proctor for Virginia Beach EMS’s Advanced EMT Academy. Read more at her complete LinkedIn profile. Contact Stella by email: ssalyer@vbgov.com.In the discussion we address:

  • Stella’s background.
  • First Aid and Emergency Response.
  • Leadership during incidents.
  • What’s on Stella’s mind.
  • With a shoutout to Farrow Bouton, New Orleans Director of Event Services, for his and Smoothie King Center’s kind support to IAVM and AVSS 2024.

Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15’s founder and Managing Director, Andy Jabbour, hosts short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.

Mar 11, 202425:32
Weekly Security Sprint EP 55. MDM, hostile events, health, and ransomware

Weekly Security Sprint EP 55. MDM, hostile events, health, and ransomware

On this week's Security Sprint, Dave and Andy discussed the following topics: Opening TribalHub hosts online Tribal Cybersecurity Summit March 7. Gate 15 is grateful to contribute to Tribal-ISAC and to facilitate the Opening Welcome and Keynote: Cybersecurity Organizational Structures and Best Practices Based Upon Tribe Size and Cyber Maturity Level! Health-ISAC Workshop: Enhancing Threat Awareness and Preparedness for Active Shooter/Hostile Event Response (ASHER) Attacks in Health Services Facilities Healthcare sector “stretched thin” in fight against cyber attacks warns CSO of Health-ISAC PCAST Releases Report on Strategy for Cyber-Physical Resilience   Main Topics   Info Ops – Dave BP article Content Farms. https://www.bleepingcomputer.com/news/security/content-farm-impersonates-60-plus-major-news-outlets-like-bbc-cnn-cnbc/ AI Chatbots Provide False Information About November Elections 2024 Elections Misinformation Tracking Center Pennsylvania creates fact-checking website ahead of 2024 election Media Habits and Misinformation Susceptibility of Adults Aged 55 Years and Older: Findings from a RAND American Life Panel Survey Germany accuses Moscow of ‘disinformation attack’ in leaking senior officers’ call   Man Pleads Guilty to Firebombing Planned Parenthood Clinic and Plotting to Attack Electrical Substation CDC: Immunization and Respiratory Diseases Bulletin.  Wenstrup Announces Hearing on White House’s Role in Pandemic Preparedness and Response   Ransomware Updates: Proofpoint: 2024 State of the Phish 69% of Organizations Infected by Ransomware in 2023. Trend Micro: LockBit Attempts to Stay Afloat With a New Version Top 10 Issues General Counsel Need to Know About Ransomware in 2024 CISA, FBI, and MS-ISAC Release Advisory on Phobos Ransomware Fulton County, Georgia, refuses to pay ransom, again The Mysterious Case of the Missing Trump Trial Ransomware Leak A large US health care tech company was hacked. It’s leading to billing delays and security concerns Health-care hack spreads pain across hospitals and doctors nationwide   Quick Hits CORRECTED: SAVE THE DATE! CISA Hosts CISA Live! – Open Source Software Security on Thursday, March 7 at 1:00 PM EST!  The White House Warns Cars Made in China Could Unleash Chaos on US Highways Statement from President Biden on Addressing National Security Risks to the U.S. Auto Industry FACT SHEET: Biden-⁠Harris Administration Takes Action to Address Risks of Autos from China and Other Countries of Concern US to probe if Chinese cars pose national data security risks U.S. launches investigation of Chinese vehicles, citing security risks Senator asks FTC to investigate automakers’ data privacy practices CISA and Partners Release Advisory on Threat Actors Exploiting Ivanti Connect Secure and Policy Secure Gateways Vulnerabilities FACT SHEET: President Biden Issues Executive Order to Protect Americans’ Sensitive Personal Data AI & Tech As House task force work begins, Rep. Bonamici is ‘very worried’ about AI — ‘and we all should be’ Google working to fix Gemini AI as CEO calls some responses "unacceptable" US tech giants refuse to work with Britain’s top secret military censorship board How AI Will Help the World's Top Hospital CEOs Transform Health Care OpenAI claims the Times cheated to get ChatGPT to regurgitate articles Tumblr and WordPress to Sell Users’ Data to Train AI Tools Apple to disclose AI plans later this year, CEO Tim Cook says Denmark closes probe into Nord Stream blasts saying there’s not enough grounds for a criminal case NIST Cybersecurity Framework 2.0 Officially Released. PRESS RELEASE: Future Software Should Be Memory Safe Joint Statement Endorsing Principles for 6G: Secure, Open, and Resilient by Design Scammers Use Couriers to Retrieve Cash and Precious Metals from Victims of Tech Support and Government Impersonation Scams
Mar 05, 202429:08
Weekly Security Sprint EP 54. Board talks, AI, event preparedness, ransomware and more

Weekly Security Sprint EP 54. Board talks, AI, event preparedness, ransomware and more

Dave and Andy discussed the following topics: NCSC / Boards. https://www.ncsc.gov.uk/blog-post/cyber-security-governance-the-role-of-the-board AI. Air Canada Has to Honor a Refund Policy Its Chatbot Made Up. Gab’s Racist AI Chatbots Have Been Instructed to Deny the Holocaust Bobbi Althoff deepfake spotlights X’s role as a top source of AI porn AI-generated video is here to awe and mislead From ChatGPT to Gemini: how AI is rewriting the internet Google pauses AI-generated images of people after ethnicity criticism Exclusive: Reddit in AI content licensing deal with Google FCC advisory committee to focus on how AI can defend against unwanted calls Ransomware U.S. and U.K. Disrupt LockBit Ransomware Variant Ransomware Operation LockBit Reestablishes Dark Web Leak Site Trend Micro: LockBit Attempts to Stay Afloat With a New Version US pharmacy outage triggered by 'Blackcat' ransomware at UnitedHealth unit, sources say Change Healthcare Cyberattack: Network Connectivity Issues, Indicators of Compromise Health-ISAC: Change Healthcare / Optum Network Connectivity and Additional Recommendations Venue Consideration. https://www.stuff.co.nz/culture/350189027/spark-arena-gives-training-security-staff-after-seat-stealers-ruin-50-cent   Quick Hits   SAVE THE DATE! CISA Hosts CISA Live! – K-12 School Safety on Thursday, February 29 at 12:30. On Thursday, February 29, we will mark the 4th year of SchoolSafety.gov on our next CISA Live!.  Weather. https://www.cnn.com/2024/02/26/weather/thunderstorms-midwest-heat-weather-climate/index.html Health. https://www.cidrap.umn.edu/influenza-general/us-flu-levels-stubbornly-high-covid-declines-further   Resources Canadian Centre for Cyber Security Best practices for passphrases and passwords (ITSAP.30.032). Cybersecurity Emotions Canadian Centre for Cyber Security Digital footprint (ITSAP.00.133) Canadian Centre for Cyber Security Secure your accounts and devices with multi-factor authentication (ITSAP.30.030) UK NCSC: Private Branch Exchange (PBX) best practice Updated: Top Cyber Actions for Securing Water Systems   AT&T. $5! AT&T to Reimburse Customers Struck by Outage AT&T is mocked by customers after network outage downed 70,000 phones and triggered fears of 'Leave the World Behind' apocalypse Russia Biden announces 500 new sanctions targeting Russia over war on Ukraine, Navalny death US and EU pile new sanctions on Russia for the Ukraine war’s 2nd anniversary and Navalny’s death Statement from President Joe Biden Ahead of the Two-Year Anniversary of Russia’s Brutal Assault Against Ukraine Senate Majority Leader Chuck Schumer is in Ukraine to meet Zelenskyy as US aid hangs in the balance President Biden to hit Russia with 'major sanctions' in response to death of Navalny Other.  New Biden order would stem flow of Americans’ sensitive data to China CISA, NCSC-UK, and Partners Release Advisory on Russian SVR Actors Targeting Cloud Infrastructure Brussels spyware bombshell: Surveillance software found on officials’ phones East coast cable issues hit operators Israeli daily claims Yemeni attacks harmed telecom lines in Red Sea Damage causes outage for Africa's first subsea cable  
Feb 28, 202424:48
The Gate 15 Interview with Kirk Cerny EP 43. Security, old wagons, leadership integrity, Wyoming, and… the afterlife?

The Gate 15 Interview with Kirk Cerny EP 43. Security, old wagons, leadership integrity, Wyoming, and… the afterlife?

In this episode of The Gate 15 Interview, Andy Jabbour welcomes Kirk Cerny, Chief Operating Officer at Haystax. Kirk is a security and counterintelligence professional with 20 years of leadership experience in public & private C-suites. Kirk specializes in threat prevention and mitigation, compliance, and more! Kirk on LinkedIn. Kirk’s Background Haystax School and Facility Security Public Safety & First Responders The new Dragon Pipeline What’s on Kirk’s mind We play Three Questions and talk old wagons, great states, and magic eight balls. Plus: Leadership, values, Gary Fisher, and lots more! Haystax Haystax School Safety in Action: Houston UASI Threat Response CISA Reflecting on the Parkland tragedy, its lasting impacts, and work still to be done, 14 February 2024 In the discussion we address:A few references mentioned in or relevant to our discussion include:
Feb 26, 202441:02
Nerd Out EP 45. Venue security, extremist news, and what to look for in 2024.

Nerd Out EP 45. Venue security, extremist news, and what to look for in 2024.

In the latest episode of Nerd Out, Dave is joined by stalwarts Bridget Johnson and Joe Levy to talk about the latest security news. They talked about the impacts of the Lakewood Church shooting, and what to take away from it. Then they talked about other incidents, and the latest news from the terrorism front. Is it all quiet or is this just a ruse. Finally, they talk about what to look forward to in 2024, and it really shouldn't be a surprise.
Joe Levy is the Assistant General Manager at the Barclays Center.
Bridget Johnson is a terrorism and extremism expert who has decades worth of experience analyze threat activities.
Feb 20, 202444:07
Special Podcast. Lakewood Church Shooting with Faith-Based ISAO

Special Podcast. Lakewood Church Shooting with Faith-Based ISAO

In this special podcast, Andy welcomes in Dave and key members of the Faith-Based Information Sharing and Analysis Organization (FB-ISAO) to talk about the Lakewood church shooting. They looked at how the event unfolded, security processes, and lessons learned. Guests include: Mayya Saab, the Executive Director of FB-ISAO Ed Heyman, Co-Chair of the FB-ISAO ORG Phil Froehlich, Co-Chair of the FB-ISAO ORG


Feb 14, 202443:19
Weekly Security Sprint EP 53. A Super Bowl amount of information - Church shooting, AI (good and bad), and much more.

Weekly Security Sprint EP 53. A Super Bowl amount of information - Church shooting, AI (good and bad), and much more.

In this week's Security Sprint, Dave and Andy discussed the following topics: Warm Start:  Announcement! WaterISAC is excited to announce that this Spring, it will be hosting H2OSecCon as a one-day virtual event on Thursday, May 23 from 11 AM - 5 PM ET! T National Rural Water Association and WaterISAC Collaborate to Benefit Small Water Utilities Nationwide AMWA reiterates cybersecurity views to Homeland Security Subcommittee   Lakewood Church Shooting Shooting at Joel Osteen's Lakewood Church in Houston: Female shooter killed, 5-year-old child shot Joel Osteen statement in response to this incident, post to Threads Woman Opens Fire at Joel Osteen’s Texas Megachurch During Live TV Broadcast   Additional physical security items of note: Philadelphia Man Charged with Making Antisemitic and Islamophobic Threats Islamic State, Al-Qaeda Call for Violence Against Jewish Communities Following October 7 Attack Tennessee man who was working with militias planned to act as a sniper and attack Southern border, feds say.  U.S. Strike in Baghdad Kills Iranian-Backed Militia Commander Iraq Criticizes US Strikes After Baghdad Attack Killed Iran-Backed Militant Group Commander CISA Releases Violence Prevention through De-escalation Video.   AI. FCC Confirms that TCPA Applies to AI Technologies that Generate Human Voices AI-Generated Voices in Robocalls Are Now Illegal How a Biden AI robocall in New Hampshire allegedly links back to a Texas strip mall Taylor Swift deepfakes on X falsely depict her supporting Trump AI Deployed Nukes 'to Have Peace in the World' in Tense War Simulation  NYPD and WhatsApp. https://nypost.com/2024/02/05/business/nypd-tests-old-school-tactics-in-the-bronx-to-combat-shoplifting/   Info Ops:  Russia Is Boosting Calls for 'Civil War' Over Texas Border Crisis. Chinese Websites Posing as Local News Outlets Target Global Audiences with Pro-Beijing Content CISA Launches #Protect2024 Resources Webpage for State and Local Election Officials Quick Hits:   Severe Weather: Historic storm sends debris through LA’s Hollywood Hills and leaves 1.1 million without power 3 dead as storm pummels California, causing flooding and dozens of mudslides in L.A. area More than 120 people are dead and entire neighborhoods have been reduced to ashes in record-breaking Chile wildfires The growing inadequacy of an open-ended Saffir–Simpson hurricane wind scale in a warming world Hurricanes are getting so intense, scientists propose a Category 6 More on Scams & Fraud:  Think you know what the top scam of 2023 was? Take a guess As Nationwide Fraud Losses Top $10 Billion in 2023, FTC Steps Up Efforts to Protect the Public IRS warns tax professionals to be aware of EFIN scam email; special webinars offered next week   Ransom where? Everywhere.  Chainalysis: Ransomware Payments Exceed $1 Billion in 2023, Hitting Record High After 2022 Decline Ransomware Payments Hit a Record $1.1 Billion in 2023 GRIT Ransomware Annual Report 2023 (Q1-Q4) The Record: Ransomware tracker: The latest figures [February 2024] Malwarebytes 2024 State of Malware: Known ransomware attacks up 68% in 2023   Nation States   Subcommittee Chairman Garbarino Statement On PRC Persistent Access To U.S. Critical Infrastructure. CISA and Partners Release Advisory on PRC-sponsored Volt Typhoon Activity and Supplemental Living Off the Land Guidance NSA: Combatting Cyber Threat Actors Perpetrating Living Off the Land Intrusions.  NSA and Partners Spotlight People’s Republic of China Targeting of U.S. Critical Infrastructure More Cyber News.  Verizon insider data breach hits over 63,000 employees Ivanti: CVE-2024-22024 (XXE) for Ivanti Connect Secure and Ivanti Policy Secure Researchers say attackers are mass-exploiting new Ivanti VPN flaw UK NCSC: Vulnerability management Canadian Centre for Cyber Security How updates secure your device (ITSAP.10.096)


Feb 12, 202428:22
Venue Security, The IAVM Podcast Series EP 2: Gil Fried, The Crowd Management Doctor on Training and Supervising Security Staff
Feb 12, 202429:36
Weekly Security Sprint EP 52. Geo-political impacts, cyber warnings, BEC, scams, ransomware and more!

Weekly Security Sprint EP 52. Geo-political impacts, cyber warnings, BEC, scams, ransomware and more!

In this week's Security Sprint, Dave and Andy covered the following topics: In our warm start we address cyber threats from China and threats to the Water Sector, see quick hits for links. And we celebrate Pod friend Bridget Johnson on her new role.   Main Topics:   Cyber Warnings - BEC Evolving Threat Landscape: Crime, Confusion, Deepfakes, BEC, fake data breaches, fake political robocalls… Deepfake Scam Video Cost Company $26 Million, Hong Kong Police Says.  Europcar says someone likely used ChatGPT to promote a fake data breach. OpenAI: Building an early warning system for LLM-aided biological threat creation FBI PSA: Scammers Use Couriers to Retrieve Cash and Precious Metals from Victims of Tech Support and Government Impersonation Scams   Ransomware: Corvus: Q4 Ransomware Report: 2023 Ends as a Record-Breaking Year Ransomware Retrospective 2024: Unit 42 Leak Site Analysis.  The year saw a 49% increase in victims reported by ransomware leak sites, with a total of 3,998 posts from various ransomware groups. The ransomware business is booming, even as enforcers shut down some major players; Palo Alto Networks’ Unit 42 found a 49 percent bump in victims reported by ransomware leak sites in 2023   Quick Hits Brothers Charged After Seizure of Homemade Explosives, Ghost Guns in Their Astoria Apartment Queens bust: 2 brothers kept homemade explosive devices, 'hit list' in Astoria apartment, authorities allege. Investigators also recovered notebooks with hit lists that included police officers, politicians and celebrities, along with a scanner radio set to the frequency of the neighboring police precinct…The apartment is located right across from a Con Ed power facility. Cyber Threats to Critical Infrastructure and the United States  Hearing Notice: The CCP Cyber Threat to the American Homeland and National Security Exclusive: US disabled Chinese hacking network targeting critical infrastructure FBI director to warn Congress of dangers Chinese hackers pose to American infrastructure, innovation Opening Statement by CISA Director Jen Easterly CISA: People's Republic of China Cyber Threat   Water, Water, Everywhere!  Announcement! WaterISAC is excited to announce that this Spring, it will be hosting H2OSecCon as a one-day virtual event on Thursday, May 23 from 11 AM - 5 PM ET!  Sign Up For Updates Here! Securing Operational Technology: A Deep Dive into the Water Sector Environment, Manufacturing, and Critical Materials Subcommittee Hearing: "Ensuring the Cybersecurity of America's Drinking Water Systems" Chair Rodgers Opening Remarks on the Cybersecurity of America’s Drinking Water System More Cyber. The U.S. economy is booming. So why are tech companies laying off workers? Statement From Secretary of Defense Lloyd J. Austin III on U.S. Strikes in Iraq and Syria Geo-politics. Sullivan: Middle East strikes "not the end" of U.S. drone attack response Houthis may sabotage western internet cables in Red Sea, Yemen telecoms firms warn Iran Says Yemen Strikes 'Contradict' US, UK Policy Hostages at Procter & Gamble plant outside Istanbul rescued after 9-hour ordeal US Senate Judiciary Committee Hearing: Big Tech and the Online Child Sexual Exploitation Crisis Senator to Big Tech: ‘Collectively, your platforms really suck at policing themselves’ Ivanti Updates: Supplemental Direction V1: ED 24-01: Mitigate Ivanti Connect Secure and Ivanti Policy Secure Vulnerabilities CISA orders Ivanti devices targeted by Chinese hackers be disconnected QAnon-aligned son decapitates federal employee dad, shows off ‘traitor’s’ head in sick YouTube video Virtual Event: Preventing Mass Attacks In Our Communities. In this event, researchers from the US Secret Service National Threat Assessment Center discuss their findings on mass attacks perpetrated in public and semi-public spaces, including businesses, restaurants, bars, retail outlets, houses of worship, schools, open spaces and more. Click Here To Register.    
Feb 07, 202424:36
Weekly Security Sprint EP 51. Confiscated weapons, new DOJ / FTC guidance, AI, and more cyber news.

Weekly Security Sprint EP 51. Confiscated weapons, new DOJ / FTC guidance, AI, and more cyber news.

Dave and Andy discussed the following topics. Swatting! Police Arrest Teen Said to Be Linked to Hundreds of Swatting Attacks CISA's Easterly the target of ‘harrowing’ swatting incident Nikki Haley targeted in 'swatting' incident at her home Physical Security.  Cleveland Clinic confiscated 30K weapons last year Security guard accused in Edmonton city hall shooting makes court appearance   DOJ: Justice Department and the FTC Update Guidance that Reinforces Parties’ Preservation Obligations for Collaboration Tools and Ephemeral Messaging FTC: FTC and DOJ Update Guidance That Reinforces Parties’ Preservation Obligations for Collaboration Tools and Ephemeral Messaging Risky Biz News: DOJ and FTC tell companies to stop deleting chats   Artificial Intelligence (AI) and Investment Fraud: Investor Alert UK NCSC: Global ransomware threat expected to rise with AI, NCSC warns UK NCSC: The near-term impact of AI on the cyber threat. British intelligence warns AI will cause surge in ransomware volume and impact CISA Joins ACSC-led Guidance on How to Use AI Systems Securely UK NCSC: The near-term impact of AI on the cyber threat NZ NCSC: Joint Guidance: Engaging with Artificial Intelligence OpenAI and Other Tech Giants Will Have to Warn the US Government When They Start New AI Projects Fact Sheet: Biden-⁠Harris Administration Announces Key AI Actions Following President Biden’s Landmark Executive Order OpenAI Quietly Scrapped a Promise to Disclose Key Documents to the Public   23andMe admits it didn’t detect cyberattacks for months Ransomware-palooza! Symantec - The 2024 Ransomware Threat Landscape Annual GRIT Ransomware Report – 2023 Dragos Industrial Ransomware Analysis: Q4 2023 Who pays, and why: A researcher examines the ransomware victim’s mindset The Conjoined Triangle of Ransomware Ransomware Attacks Spotlight Need for FIs to Gauge Third-Party Risk Water Sector ransomware and other updates: Veolia Responds to Cyber Incident – company statement Water services giant Veolia North America hit by ransomware attack Water facility operator says ransomware attack affected North America division Chairs Rodgers and Carter Announce Subcommittee Hearing on Ensuring Cybersecurity of America’s Drinking Water Systems CISA's Water Sector Guide Puts Incident Response Front & Center WaterISAC: 15 Security Fundamentals You Need to Know West Virginia Department of Health Takes Steps to Prevent Cyberattacks Against Water Systems   Quick Hits: In major gaffe, hacked Microsoft test account was assigned admin privileges Florida Bill Seeks Safe Harbor for Organizations with Robust Cybersecurity Programs HHS Releases New Voluntary Performance Goals to Enhance Cybersecurity Across the Health Sector and Gateway for Cybersecurity Resources NCTC First Responder’s Toolbox: Responses to Overseas Conflicts May Impact Public Safety Agencies in the Homeland Mother of all breaches - a historic data leak reveals 26 billion records: check what's exposed UK tells business leaders to ‘toughen up’ against cyberattacks CISA Blog: We Must Consider Software Developers a Key Part of the Cybersecurity Workforce Guidance: Assembling a Group of Products for SBOM
Jan 30, 202426:06
Weekly Security Sprint EP 50. Uvalde Report, Sextortion, Ransomware and new Resources

Weekly Security Sprint EP 50. Uvalde Report, Sextortion, Ransomware and new Resources

Dave and Andy discussed the following topics:

New Tribal-ISAC podcasts!

Raise Your Tribes Cybersecurity IQ: Part 1
Raise Your Tribes Cybersecurity IQ: Part 2
CISA Releases 2023 Year in Review!


Uvalde. ⁠Justice Department Releases Report on its Critical Incident Review of the Response to the Mass Shooting at Robb Elementary School in Uvalde, Texas⁠.
Ransomware

Ransomware Resilience: You can’t afford _not_ to exercise!
Check Point Research: 2023 – The year of Mega Ransomware attacks with unprecedented impact on global organizations

New ransomware:

Pings Ransomware
Slug (via X, victim claimed in today’s ransomware listings)
Insane (via X, victim claimed in today’s ransomware listings)
First American cyber incident expected to impact Q4 2023 financials; Delayed closing due to the Dec. 20, 2023, cyber incident are expected to lead to weaker fourth quarter financials at the title firm
Toronto Zoo says staff personal info stolen in ransomware cyberattack
Ransomware negotiation: When cybersecurity meets crisis management


⁠Sextortion: A Growing Threat Targeting Minors⁠.
UK NPSA: Counter-State Threats⁠.
⁠UK NPSA: SCaN for Line Managers⁠.

Quick Hits

New USGS map shows where damaging earthquakes are most likely to occur in US.
US Secret Service: Live Virtual Presentations on Targeted Violence Prevention.
CISA - Active Shooter Preparedness Webinar, Region 9 - 7 FEB 2024
CISA and FBI Release Known IOCs Associated with Androxgh0st Malware
CISA: Cybersecurity Guidance: Chinese-Manufactured UAS


Election 2024

Authorities map out potential threats ahead of New Hampshire primary
OpenAI bans bot impersonating US presidential candidate Dean Phillips
AI is destabilizing ‘the concept of truth itself’ in 2024 election
Former Jan. 6 Select Committee deleted more than 100 encrypted files from its probe in the days before Republicans took over the House majority





Jan 23, 202423:34
The Gate 15 Interview EP 42: Foster on building high-performing cybersecurity teams, complex threats, bringing the noise and musical obsessions

The Gate 15 Interview EP 42: Foster on building high-performing cybersecurity teams, complex threats, bringing the noise and musical obsessions

In this episode of The Gate 15 Interview, Andy Jabbour welcomes Eric Foster, Chief Operating Officer at Stairwell. Prior startups include Cyderes.com (co-founder under Gary Fish, sold to Apax Partners / merged with Robert Herjavec’s Herjavec Group), RiskIQ.com (sold to Microsoft), MMAjunkie.com (founder, sold to USA Today) and eScout.com (incubation team, sold to PerfectCommerce). Active advisory roles include: Onspring.com, Stairwell.com. Past advisory roles: PhoneFactor (sold to Microsoft). Eric is a recognized domain expert in Information Security, Regulatory Compliance, and CusEricer Success.
In the discussion we address:

Eric’s origin story
His experience as a founder and entrepreneur, and the importance of mentorship
Building high-performance teams and developing corporate culture
Eric’s work from founding CYDERES to his current work with Stairwell
The complex intersection of geopolitical threats and increased conflict in a world that is rapidly accelerating in positive directions in technology
We play Three Questions and talk careers in an alternate universe, flying through space with Elon, Eric’s musical obsessions, and more – including Radiohead and Sleep Token!

A few references mentioned in or relevant to our discussion include:

CYDERES
Stairwell
Learn more about the Stairwell Culture
Google Blog: A new approach to China, January 12, 2010 (in late 2009, Google was the victim of a major cybersecurity attack, code named Operation Aurora)

Jan 22, 202449:29
Nerd Out EP 44. The Middle East, threats to Houses of Worship, and 2024 Outlook

Nerd Out EP 44. The Middle East, threats to Houses of Worship, and 2024 Outlook

In the latest episode of Nerd Out, Dave is joined by Alec Davison and Ed Heyman for the first episode of 2024. They opened the discussion recapping some of the events over the past several weeks to include the Prague and Iowa school shootings, cyber threats, natural disasters and health conditions before getting into the ever-expanding conflict in the Middle East and what it may mean for security teams. The group also looks at the impacts these events have had on faith-based organizations and then look ahead to events that could shape 2024. Ed Heyman is a security professional with over 30 years of experience in the intelligence and security community and he is the co-chair of the Faith-Based Information Sharing and Analytical Organization (FB-ISAO) Organizational Resilience Group. Alec Davison is a threat and risk analyst with Gate 15 where he works with various industries on threat awareness and security preparedness matters. Some of the links mentioned in this episode include: https://www.politico.com/news/2024/01/10/american-intel-officials-hezbollah-u-s-attac[…]4?utm_source=iterable&utm_medium=email&utm_campaign=8745640_ https://foreignpolicy.com/2023/12/19/hamas-terrorism-threat-global-europe-germany-arrests/ https://www.jpost.com/international/islamic-terrorism/article-782053 https://www.ic3.gov/Media/Y2023/PSA231212 https://www.ic3.gov/Media/Y2024/PSA240112 https://www.voanews.com/a/us-faith-based-groups-face-increased-threat-this-holiday-season/7387281.html https://abcnews.go.com/Politics/threats-jews-muslims-arabs-continue-social-media-dhs/story?id=106291629 https://www.lawfaremedia.org/article/the-signal-in-the-noise-the-2023-threats-and-those-on-the-horizon
Jan 16, 202401:00:59
Weekly Security Sprint EP 49. ISAC news, weather impacts, plus your dose of cyber and physical security news

Weekly Security Sprint EP 49. ISAC news, weather impacts, plus your dose of cyber and physical security news

In this week's Security Sprint, Dave and Andy covered the following topics.

ISAC Exciting Announcements!

Tribal-ISAC joins National Council of ISACS for cyber security, information sharing


Japanese Auto-ISAC and Auto-ISAC Formalize Agreement to Enhance Vehicle Cybersecurity


Severe Weather Awareness

Iowa Caucus Impacts
Texas "Freeze"
Buffalo Bills great stadium dig-out


Main Topics

School Data Base Leak.
www.wired.com/story/us-school-shooter-emergency-plans-leak/

SEC X Compromise.

SEC account hack renews spotlight on X's security concerns
US SEC says breach of its X account did not lead to breach of broader SEC systems
A Hacker's Perspective: Social Media Account Takeover Prevention Guide


Scams. news.trendmicro.com/2024/01/12/fake-apple-and-capital-one-notifications-top-scams-of-the-week/

Physical Threats.

Malicious Actors Threaten U.S. Synagogues, Schools, Hospitals, and Other Institutions With Bomb Threats, 12 Jan. “Since 8 December 2023, the FBI has opened investigations on more than 100 separate threats targeting more than 1,000 institutions in 42 states and the District of Columbia."
New FB-ISAO Newsletter! FB-ISAO Newsletter, v6, Issue 1.
US, UK launch retaliatory strikes against Houthis in Yemen
Protests erupt outside Yemen Mission in NYC to condemn US attacks on Houthi rebels — some protesters attacking couple holding Israeli flag: ‘Long live Hamas, you piece of s–t!’
Joint Statement from the Governments of Australia, Bahrain, Canada, Denmark, Germany, Netherlands, New Zealand, Republic of Korea, United Kingdom, and the United States
Statement from President Joe Biden on Coalition Strikes in Houthi-Controlled Areas in Yemen
Statement by Secretary of Defense Lloyd J. Austin III on Coalition Strikes in Houthi-Controlled Areas of Yemen
Background Press Call by Senior Administration Officials and Senior Military Official on Developments in the Middle East
Houthi rebels say US will pay a ‘heavy price’ for strikes that killed 5, injured
Lulzsec Hacktivists Leak American Bank Logins in Protest Against Yemen Airstrikes
Moscow Blasts U.S.-British Strikes in Yemen
Who Are the Houthis and Why Did the US and UK Launch Strikes on Them?


Quick Hits

FBI arrests Florida man accused of threatening ‘mass casualty event’
American intel officials warn of risk of Hezbollah attacking U.S.
Ivanti Vulnerabilities. Ivanti Blog Post: Active Exploitation of Two Zero-Day Vulnerabilities in Ivanti Connect Secure VPN
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CERT-NZ: Vulnerabilities in Ivanti Connect gateways actively exploited
Canadian Centre for Cyber Security Ivanti security advisory (AV24-020)
Ivanti warns of Connect Secure zero-days exploited in attacks
Ivanti customers urged to patch vulnerabilities allegedly exploited by Chinese state hackers
Cutting Edge: Suspected APT Targets Ivanti Connect Secure VPN in New Zero-Day Exploitation.
Canadian Centre for Cyber Security Ivanti Connect Secure and Ivanti Policy Secure gateways zero-day vulnerabilities
Risky Biz News: Chinese APT exploits two Pulse Secure zero-days
Ivanti Zero-Day Vulnerabilities (CVE-2023-46805 and CVE-2024-21887)
State-backed hackers are exploiting new Ivanti VPN zero-days — but no patches yet
Zero-Day Exploitation of Ivanti Connect Secure and Policy Secure Gateways
Hundreds of Thousands of Dollars Worth of Solana Cryptocurrency Assets Stolen in Recent CLINKSINK Drainer Campaigns
The vulnerability forecast for 2024
WEF: Global Cybersecurity Outlook 2024
Joint Report on the Implementation of the Cybersecurity Information Sharing Act of 2015

Jan 15, 202427:47
Weekly Security Sprint EP 48. Physical Security Galore!

Weekly Security Sprint EP 48. Physical Security Galore!

In this Week's Security Sprint, Dave and Andy talked about the following topics:

New! Venue Security, The IAVM Podcast Series: Mark Herrera on leadership, resilience and partnership. In this inaugural episode of Venue Security, The IAVM Podcast Series, Andy Jabbour talks with Mark Herrera, Director of Education for the International Association of Venue Managers (IAVM).


Physical Security Incidents and Challenges

Motive sought for mass shooting at Prague university that left more than a dozen dead
1 killed, 5 injured by Iowa school shooter on the first day after winter break
FBI calls bomb threats that led to brief lockdowns and evacuations of some state capitols a hoax
Bomb Hoaxes and ‘Swatting’ Attempts Target Public Officials as 2024 Begins
CA synagogues on high alert after receiving threatening emails
Suspects held over alleged Argentina parcel plot
Blasts kill nearly 100 at slain commander Soleimani's memorial; Iran vows revenge
Islamic State claims responsibility for deadly Iran attack, Tehran vows revenge
CAIR: Join the Jan. 13th ‘March on Washington for Gaza’ in Washington, D.C.
Groups plan massive march for Gaza cease-fire in DC next week. The Council on American-Islamic Relations (CAIR) and other organizers will begin the Gaza solidarity event at the National Mall on Jan. 13 at 1 p.m., gathering near the Washington Monument.

CISA: Personal Security Considerations Action Guide. This action guide provides actionable recommendations and resources intended to prevent and mitigate threats to a critical infrastructure worker’s personal safety.

Election Season Challenges

FBI Washington Field Office Marks Third Anniversary of January 6 Violence at the U.S. Capitol
A quarter of Americans believe FBI instigated Jan. 6, Post-UMD poll finds
Pence dismisses conspiracy theory FBI instigated Jan. 6 attack


Quick Hits: Enduring Threats!

Multiple Hazard Storm Impacting the Central and Southern U.S.
Exceptional winter storm to bring travel woes as it wallops central and eastern US
President Joseph R. Biden, Jr. Approves Rhode Island Disaster Declaration
NOAA: Get your snow smarts on: 9 forecast tools you can use; Find out if rain, snow, sleet and hail are coming your way

Ransomware.

TribalHub: Ransomware Resilience Best Practices.
British Library ransomware cyber attack ‘set to cost £7million’
The State of Ransomware in the U.S.: Report and Statistics 2023
Xerox says subsidiary XBS U.S. breached after ransomware gang leaks data
After injecting cancer hospital with ransomware, crims threaten to swat patients
LockBit leveraging vulnerable drivers to disable security solutions in latest campaigns
Motor Mouth: Ransomware is coming for the auto industry
PS99, hopes for free diamonds leads to ransomware
The Week in Ransomware - January 5th 2024 - Secret decryptors
Law firm that handles data breaches was hit by data breach
San Bernardino housing authority cyberattack affected nearly 19,000 people
At Least 141 Were Hospitals Directly Affected by Ransomware Attacks in 2023
Electronic Ransomware
Zeppelin ransomware source code sold for $500 on hacking forum
Uncovering Rhysida and their activities
Ransomware Roundup - 8base
Albabat Ransomware
Another covid wave hits U.S. as JN.1 becomes dominant variant.
COVID Mask Mandates Return to Hospitals in Five States
FBI PSA: Chinese Police Imposters Incorporate Aggressive Tactics to Target U.S.-Based Chinese Community.
Ukraine says Russia hacked web cameras to spy on targets in Kyiv

Jan 09, 202425:55
Venue Security, The IAVM Podcast Series EP 1: Mark Herrera on leadership, resilience and partnership
Jan 08, 202426:35
Weekly Security Sprint 47. New SEC rules, AI, embezzlement, ransomware and more.

Weekly Security Sprint 47. New SEC rules, AI, embezzlement, ransomware and more.

In this week's Security Sprint, Dave and Andy talk about the following topics: Happy Holidays and Happy New Cyber Incident Reporting Requirements!  New SEC cyber rules are about to go into effect. Expect some bumps Justice Department Issues Guidelines in Response to National Security and Public Safety Exemption in SEC Rule FCC Approves Major Updates to Data Breach Notification Rules CISOs Gear Up For Compliance with SEC Cyber Regulation   Main Topics:   AI threats and terrorism. https://gnet-research.org/2023/12/15/artificial-intelligence-as-a-terrorism-enabler-understanding-the-potential-impact-of-chatbots-and-image-generators-on-online-terrorist-activities/   Seasonal Security Reminders Denmark, Germany, Netherlands arrest 7 terror suspects, including alleged Hamas members, authorities say. FBI PSA: Threat of Violence Likely Heightened Throughout Winter. ‘Exponential increase’ in antisemitic swatting threats in US this weekend DHS Center for Faith-Based and Neighborhood Partnerships Invitation: Non-Profit Security Grant Program FY2024 Winter Webinar Series + Other DHS Resources 13-year-old accused of plotting mass shooting at Canton Jewish synagogue Juvenile Arrested for Conducting Swatting Attacks Targeting Synagogues and Other Institutions UK NPSA: Social Media Auditors.    Embezzlement. Cardinal found guilty of embezzlement in Vatican ‘trial of the century’   Ransomware & Cyber Threat Updates Another Record-Breaking Month for Ransomware: November Up 110% YoY eCrime Cybersecurity Advisory: Karakurt Data Extortion Group GRIT Ransomware Report: November 2023 Malwarebytes: Ransomware review: December 2023 3 Ways Threat Actors Will Kick Off the New Year, According to Corvus Intel Vulnerabilities Now Top Initial Access Route For Ransomware Spider-Man And Wolverine Devs Hit By Alleged Ransomware Attack [Update] French Authorities Arrested a Russian National For His Role In The Hive Ransomware Operation Hackers Popped a Porn Site for Inflation Fetishists   Quick Hits Earth had its warmest November on record; 2023 still on track to be the globe’s warmest year recorded Former Special Agent in Charge of the New York FBI Counterintelligence Division Sentenced to 50 Months for Conspiring to Violate U.S. Sanctions on Russia. Recorded Future: Aggressive Malign Influence Threatens to Shape US 2024 Elections China’s cyber army is invading critical U.S. services Multistakeholder cooperation to protect water sector from growing threats See Something Say Something Campaign: Everyone Plays a Role in “If You See Something, Say Something®.” The Case for Memory Safe Roadmaps CISA and Partners Release Advisory on Russian SVR-affiliated Cyber Actors Exploiting CVE-2023-42793 Operation Blacksmith: Lazarus targets organizations worldwide using novel Telegram-based malware written in DLang CISA Releases Social Media Threat Guidance for School Staff and Authorities Infographic Intelligence Sharing is Caring: Collective Defense for a Safer Nation NSA Releases Recommendations to Mitigate Software Supply Chain Risks Statement by Marc Rogers on the CTI League
Dec 18, 202325:40
The Gate 15 Interview EP 41. Cyware’s Tom Stockmeyer on info sharing, threat intel, collective defense, popcorn and The Big House

The Gate 15 Interview EP 41. Cyware’s Tom Stockmeyer on info sharing, threat intel, collective defense, popcorn and The Big House

In this episode of The Gate 15 Interview, Andy Jabbour welcomes Tom Stockmeyer, Cyware’s Director, Enterprise East, ISAC's and Federal. Cyber security leader with experience in helping threat sharing communities such as ISACs and ISAOs and their Member companies improve the fidelity of their intel and accelerate threat intel sharing amongst Members. Tom served in the Marine Corps from 1979 to 1983. He has an MBA from the Michael Coles School of Business, Kennesaw University. Tom has held several executive positions, has served on numerous technology Boards.

 

In the discussion we address:

  • Tom’s background from the Marine Corps to technology, entrepreneurship, to Cyware.
  • Information Sharing successes and challenges, ISACs, ISAOs and Cyware helping to secure organizations across the Fortune 1000 and more.
  • Challenges to effective info sharing.
  • A shoutout to the good work being done at Aviation ISAC.
  • Cyware, continuous innovation and automated collective defense.
  • Long weekends and holiday threats.
  • We play Three Questions and talk microwave food, the Marines, classic rock, classic movies and more!

 

A few references mentioned in or relevant to our discussion include:

 

Dec 18, 202346:48
Nerd Out EP 43: Reviewing security predictions, and security news of the year

Nerd Out EP 43: Reviewing security predictions, and security news of the year

In the latest episode of Nerd Out Dave welcomes back his old Risk Roundtable partners as Jennifer Lyn Walker makes time way from her media tour to join Andy Jabbour on a special year-end review. Dave takes the gang through some of the security predictions for 2023 and determine if they hit the mark, were slightly off target, or missed the target. Then they looked at the top security news of the year ranging from ransomware to casino breaches and geopolitical events.
Dec 13, 202343:41
Weekly Security Sprint EP 46. Hostile Events, Scams, Cyber Threats, and the Weatherman

Weekly Security Sprint EP 46. Hostile Events, Scams, Cyber Threats, and the Weatherman

The following topics were discussed during this week's Security Sprint.
US critical infrastructure sector faces cyber threats surge in 2023, calls for urgent action, enhanced measureswith input from Denise Anderson, President and CEO of the Health Information Sharing and Analysis Center (Health-ISAC), and Gate 15’s own Jennifer Lyn Walker, in her capacity as Director of Infrastructure Cyber Defense for WaterISAC

UNLV Shooting.
www.cnn.com/us/live-news/unlv-shooting-12-06-23/index.html

DHS Releases Physical Security Performance Goals for Faith-Based Communities. Building on longstanding efforts and redoubling work to support faith-based communities in response to the ongoing conflict in the Middle East, the Department of Homeland Security (DHS), through Cybersecurity and Infrastructure Security Agency (CISA), released new resources to help houses of worship and other faith-based organizations enhance their security. These Physical Security Performance Goals – modeled after the successful Cybersecurity Performance Goals – are a collection of cost-effective actions specifically tailored for faith-based organizations that can be implemented to reduce risk without sacrificing accessibility.

Severe Weather.

Winter weather. www.newsweek.com/winter-storms-warnings-states-snow-wind-1851154
Tornados. www.tennessean.com/story/news/local/2023/12/09/tennessee-tornadoes-clarksville-springfield-nashville-madison-hendersonville-fatalities-severe-storm/71866438007/


Scams.

FBI Warning. www.fbi.gov/contact-us/field-offices/norfolk/news/fbi-warning-tis-the-season-for-holiday-scams
FTC consumer.ftc.gov/consumer-alerts/2023/11/stay-scam-free-no-matter-how-far-away-you-roam


Cybersecurity Publications.

The Record at Recorded Future: FBI explains how companies can delay SEC cyber incident disclosures
CrowdStrike: How Malicious Insiders Use Known Vulnerabilities Against Their Organizations
Trend Micro’s 2023 Review: Reflecting on Cybersecurity Trends


Quick Hits

Texas Bomb Threats. www.msn.com/en-us/news/us/statewide-bomb-threat-hoax-hits-texas-schools/ar-AA1ldyG2
ORC. homeland.house.gov/hearing/from-festive-cheer-to-retail-fear-addressing-organized-retail-crime/
FEMA Advisory: FEMA’s National Preparedness Report Highlights Cyber Security, Building Codes and Individual Preparedness for a Resilient Nation
Google’s Year in Search
CISA: Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk
CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard
Two Russian Nationals Working with Russia’s Federal Security Service Charged with Global Computer Intrusion Campaign
Apple Report: 2.6 billion personal records compromised by data breaches in past two years — underscoring need for end‑to‑end encryption
Forescout Vedere Labs discloses 21 new vulnerabilities affecting OT/IoT routers
Sellafield nuclear site hacked by groups linked to Russia and China
Ministers pressed by Labour over cyber-attack at Sellafield by foreign group
Britain dismisses report claiming Sellafield nuclear site hacking, says no malware exists on our system


Burglaries at over 40 Denver-area marijuana dispensaries lead to charges for members of two organized crime groups
Police Log: Man Arrested for Armed Robbery at Dispensary, Employee Busted for Stealing Packages
Suspect charged in break-in at Ferndale cannabis store
'Horrifying': Store clerk kicked unconscious in string of violent cannabis robberies
Why was the Ontario Cannabis Store sitting on a CA$500 million cash stockpile?






Dec 12, 202327:17
Weekly Security Sprint EP 45. Physical Security incidents, geo-political considerations, weather updates, and more.

Weekly Security Sprint EP 45. Physical Security incidents, geo-political considerations, weather updates, and more.

In this week's Security Sprint, Dave and Andy talk about the following topics.


  • TribalHub's Fall 2023 Magazine is Here!
  • ZeroFox Unspoken Security Podcast: Build Diverse Teams...or Die! In this episode of Unspoken Security, AJ Nash and Errol Weiss - Chief Security Officer for the Health Information Sharing and Analysis Center (Health-ISAC) - talk about the importance of building diverse intelligence teams.  They share their insights on the evolution of program and team building over the last decade (or more) and focus on how the exponential growth of hybrid and remote work as a result of the COVID-19 pandemic has changed our world. 

 

Terrorism & Extremism

 

Severe Weather

 

Geopolitics & Cascading Effects

 

Quick Hits

 

Dec 05, 202326:00
Weekly Security Sprint EP 44. False alarms, scams, holiday risks and more!

Weekly Security Sprint EP 44. False alarms, scams, holiday risks and more!

In this week's Security Sprint, Dave and Jen talk about the following topics: Buffalo Border Explosion: https://abc7chicago.com/niagara-falls-rainbow-bridge-explosion-border/14100486/ Scams and Black E-commerce threats. FBI Report. https://www.fbi.gov/contact-us/field-offices/elpaso/news/fbi-el-paso-warns-of-not-so-jolly-holiday-scams How to shop online safely. https://www.cyber.gc.ca/en/guidance/how-shop-online-safely-itsap00071 Thanksgiving Cyber feast: Safeguarding against seasonal scams. https://cybersecurity.att.com/blogs/security-essentials/thanksgiving-cyber-feast-safeguarding-against-seasonal-scams ‘Tis the Season for Cybercrime: What to Watch for and How to Protect Yourself. https://www.fortinet.com/blog/industry-trends/protecting-yourself-against-cybercrime-this-season Black Friday & Cyber Monday | A Guide to Avoiding Cyber Scams During the Holiday. https://www.sentinelone.com/blog/black-friday-cyber-monday-a-guide-to-avoiding-cyber-scams-during-the-holidays/ The dark side of Black Friday: decoding cyberthreats around the year’s biggest shopping season. https://securelist.com/black-friday-cyberthreat-report-2023/111076/ How to stay protected on the web this holiday season. https://www.zscaler.com/blogs/product-insights/how-stay-protected-web-holiday-season Black Friday & Cyber Monday Ecommerce Security Threats. https://blog.sucuri.net/2023/11/ecommerce-security-black-friday-cyber-monday-threats.html Guide to Retail Security: Protecting Against Cyber and Physical Threats During the Holidays. https://flashpoint.io/blog/2023-holiday-retail-security/ Quick Hits. Shopping Safety. https://fox4kc.com/news/after-shootings-at-kc-area-shopping-centers-police-stress-black-friday-safety/ Vermont Hate-Based Shooting. https://www.cnn.com/2023/11/26/us/palestinian-students-shot-burlington-vermont/index.html Ohio Walmart Shooting. https://abcnews.go.com/US/ohio-walmart-shooting-suspect-motived-racial-extremism-fbi/story?id=105110784&cid=social_twitter_abcn
Nov 28, 202326:02
The Gate 15 Interview EP 40: Akmal Ali on the four core tenants of effective security management, dodging wrenches, and enjoying the Monday mornings!

The Gate 15 Interview EP 40: Akmal Ali on the four core tenants of effective security management, dodging wrenches, and enjoying the Monday mornings!

In this episode of The Gate 15 Interview, Andy Jabbour welcomes Akmal Ali, Founder & CEO of Aluma and inOrbit. Formerly serving as the Deputy Director of the SAFETY Act program within U.S. Department of Homeland Security, Akmal was a key contributor in expanding the scope of the program, as the department considered how to responsibly leverage the granted protections to further its mission to protect the homeland. These efforts included the expansion of for security services, cybersecurity and venue security-related applications from the private sector. The impact of this expansion is still a hallmark of the program today, as operators of many high-profile venues rely upon and engage with DHS in seeking SAFETY Act protections. At DHS, Akmal participated in extensive intra- and inter-agency collaboration with other government agencies to include the Transportation Security Administration, Customs and Border Protection, Domestic Nuclear Detection Office, U.S. Department of Defense, U.S. Department of Energy, and the Federal Aviation Administration. As a result of this experience, Akmal was exposed to a wide range of industries and perspectives that helped forge the underlying principles for how Aluma serves its clients today. Since departing DHS in 2011, Akmal has carried those ideals with him as he’s worked some of the country’s most high-profile and innovative companies. Akmal is based in the Washington, DC area. Akmal on LinkedIn.    In the discussion we address: Akmal’s background, from Afghanistan to Jacksonville to Washington, D.C. The SAFETY Act, venue security, resilience and risk management Akmal’s companies, Aluma and inOrbit (and the great story of that name) Volunteering with the International Association of Venue Managers, IAVM’s Academy for Venue Safety and Security and serving with “The Avengers of Security Professionals” including Brad Mayne, Mark Herrera, Joe Levy, Alex Keen Akmal shares the four core tenants of effective security management Dodgeball, Patches O'Houlihan, the Detroit Lions and the Jacksonville Jaguars, great pizza, great movies, a dip into the philosophy of Akmal, and more!   A few references mentioned in or relevant to our discussion include: Aluma inOrbit DHS: The Office of SAFETY Act Implementation
Nov 27, 202347:24
Weekly Security Sprint EP 43. Workplace Violence, passwords, and security quick hits.

Weekly Security Sprint EP 43. Workplace Violence, passwords, and security quick hits.

In this week's Security Sprint, Dave and Andy talk about the following topics:

Workplace Violence. CISA: Preventing Workplace Violence: Security Awareness Considerations Infographic. The Preventing Workplace Violence: Security Awareness Considerations Infographic is a new CISA product designed for critical infrastructure leaders, human resources personnel, managers, and workers of any level.

Passwords. The worst passwords of 2023 are also the most common, "123456" comes in first. NordPass has published their 2023 edition of the top 200 most common passwords and unsurprisingly very few of the entries are secure. The top 10 can all be cracked in under a second using simple brute-force tools.

Dave Round-UP

CDC - Flu season.
www.cidrap.umn.edu/influenza-general/us-flu-activity-continues-rise-steadily
Taylor Swift. abcnews.go.com/International/Culture/taylor-swift-fan-dies-eras-tour-concert-rio/story?id=105006498
Security guard incident in Canada which was captured on Social Media.


FBI IC3 PSA: 2023 Holiday Shopping Scams

2023 Holiday Scam Predictions—Here’s What You Should Know


FBI Warns of Scammers Targeting Senior Citizens in Grandparent Scams and Demanding Funds by Wire, Mail, or Couriers


Pro Bono Investigations for Elderly Scam Victims


Threats to Homeland

The Committee on Homeland Security: Worldwide Threats to the Homeland
Witness testimony can be found here
Director Wray's Opening Statement to the House Committee on Homeland Security.
U.S. political violence driven by new breed of ‘grab-bag’ extremists


Ransomware

CSA - Scattered Spider


#StopRansomware: Rhysida Ransomware


CISA Releases Update to Royal Ransomware Advisory


AlphV files an SEC complaint against MeridianLink for not disclosing a breach to the SEC (2)


Quick Hits

Faith-Based and Israel-Gaza Related Updates: FB-ISAO Newsletter, v5, Issue 11.


Official Tribal-ISAC Announcement: Tribal-ISAC Announces Membership as an Approved Expense of the Tribal Cybersecurity Grant Program


CISA turns 5 and looks to the future


Critical infrastructure policy rewrite expected to ‘emphasize’ CISA, NSC official says
Readout of President Joe Biden’s Meeting with President Xi Jinping of the People’s Republic of China
China is using the world’s largest known online disinformation operation to harass Americans, a CNN review finds
NCSC Annual Review 2023 - Looking back at the National Cyber Security Centre's seventh year and its key developments and highlights, between 1 September 2022 and 31 August 2023
CISA: Secure Tomorrow Series Toolkit
ACSC and CISA Release Business Continuity in a Box
HHS Factsheet: National Climate Assessment 5 Unveiled
FCC Adopts Rules to Protect Consumers' Cell Phone Accounts
Nov 20, 202323:25
Weekly Security Sprint EP 42: Ransomware, Resilience, MDM and more.

Weekly Security Sprint EP 42: Ransomware, Resilience, MDM and more.

In the latest epsiode of the Weekly Security Sprint, Dave and Andy talked about the following topics: Announcement! Venue Security, The IAVM Podcast Series! A new monthly podcast starting in 2024. Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15’s founder and Managing Director, Andy Jabbour hosts short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.  SHIELDS READY. The Department of Homeland Security (DHS), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Emergency Management Agency (FEMA) launched the new Shields Ready campaign to encourage the critical infrastructure community to focus on strengthening resilience. Resilience is the ability to prepare for, adapt to, withstand, and rapidly recover from disruptions caused by changing conditions. CISA Launches Critical Infrastructure Security and Resilience Month 2023   Scams. ‘with sales come scams’. https://www.ncsc.gov.uk/news/black-friday-bargain-hunters-warned-of-enhanced-online-scams-after-millions-lost-last-year  MDM The Truth Crisis | The Rising Threat of Online Misinformation and Disinformation The Gate 15 Interview: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction. Nerd Out: EP 41. Dave Clark joins to talk about MDM and other nerd topics.   Ransomware. Ransomware Actors Continue to Gain Access through Third Parties and Legitimate System Tools. CYBERSECURITY ADVISORY - #StopRansomware: Royal Ransomware, November 13, 2023 update Security Affairs: DOLLY.COM PAYS RANSOM, ATTACKERS RELEASE DATA ANYWAY Brazen ransomware attack on US unit of Chinese banking giant has financial sector on alert Risky Biz News: Clop is coming after your SysAid servers Basically all of Maine had data stolen by a ransomware gang; Maine's state agencies are the latest victims in the far-reaching MOVEit file transfer tool hack. Boeing data published by Lockbit hacking gang Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518 Same threats, different ransomware; A threat cluster's switch from Vice Society to Rhysida Hive Ransomware's Offspring: Hunters International Takes the Stage Ransomed[.]vc Sunsets Operations, Auctions Off Infrastructure Critical Vulnerability: SysAid CVE2023-47246   Quick Hits Critical infrastructure Updates: Major Australian Ports Affected By Cyber Incident Operations at DP World Australia resume, though ‘doesn’t mean the incident has concluded’ Washington state transportation services partially restored after cyberattack The NSA Seems Pretty Stressed About the Threat of Chinese Hackers in US Critical Infrastructure Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology International Terrorism: Five right-wing terrorists arrested throughout Europe with the support of Eurojust and Europol Israel: Mossad foils Hezbollah terror plot against Jews in Brazil FEMA and CISA Release Joint Guidance on Planning Considerations for Cyber Incidents Faith-Based and Israel-Gaza Related Updates: OpenAI blames DDoS attack for ongoing ChatGPT outage. In a series of Telegram messages seen by TechCrunch, hacktivist group Anonymous Sudan took credit for the alleged attack. In the messages, Anonymous Sudan said the reason it targeted OpenAI is due to the company’s “general biasness towards Israel and against Palestine”. Earthquake Preparedness. FEMA’s Earthquake & Wind Programs Branch, along with the National Earthquake and Hazard Reduction Program (NEHRP), is excited to announce the updated Earthquake Safety Checklist (FEMA B-526). CISA, NSA, and Partners Release New Guidance on Securing the Software Supply Chain FEMA’s National Business Emergency Operations Center (NBEOC) - YouTube  
Nov 20, 202321:53
Nerd Out: EP 42. A holiday extravaganza with security tips and the annual holiday food review!

Nerd Out: EP 42. A holiday extravaganza with security tips and the annual holiday food review!

In the latest episode of Nerd Out, Dave, Joe and Bridget catch up on the latest activity related to the Israeli-Hamas conflict before getting into some holiday security tips. Each Nerd took a spin through some important security preparedness reminders that include increased awareness, impacts from potential protests and demonstrations, winter weather concerns, and holiday travel tips. Finally, the team turned their focus to an annual tradition - their holiday food reviews.

Joe Levy is the Assistant General Manager at the Barclays Center.
Bridget Johnson is a terrorism and extremism expert who has decades worth of experience analyze threat activities.
Nov 14, 202340:50
Weekly Security Sprint EP 41. Normalizing violent threats, Critical Infrastructure Security and Resilience month, cybersecurity resources and tools.

Weekly Security Sprint EP 41. Normalizing violent threats, Critical Infrastructure Security and Resilience month, cybersecurity resources and tools.

In this week's Security Sprint, Dave and Andy talked about the following topics: Physical Security. Increasing acceptance of threats of violence MAGA Commentator Wants People to Shoot Charity Workers Assisting Migrants 'Be looking over your shoulder': MAGA man arrested for threats against Fani Willis Threats to U.S. senator amid spike in anti-Jewish, anti-Muslim activity; U.S. officials say they are responding to a rise in threats against Arab, Jewish and Muslim communities as Gaza war intensifies DOJ: Nevada Man Arrested And Charged For Making Threats To United States Senator Vehicle Ramming. Nuclear Power Plant. https://www.nbcnews.com/news/us-news/police-searching-suspect-drove-fence-south-carolina-nuclear-station-at-rcna123489 CISA Security Planning Workbook. https://www.cisa.gov/sites/default/files/2023-10/CISA_AASB_Security_Planning_Workbook_508_Compliant_20230929.pdf   US Senate Hearing: Threats to the Homeland Secretary Mayorkas Testimony to Committee on Homeland Security & Governmental Affairs FBI Director Wray: Threats to the Homeland   Cybersecurity. CISA Launches Critical Infrastructure Security and Resilience Month 2023. The Cybersecurity and Infrastructure Security Agency (CISA) announced the kickoff of Critical Infrastructure Security and Resilience Month. Yesterday, the White House issued a Presidential Proclamation to commemorate November as Critical Infrastructure Security and Resilience Month and called on Americans to recognize the importance of this month to enhance our collective national security and resilience… This November, CISA is asking everyone to Resolve to be Resilient by preparing and investing in resilience today, so that, as a nation, we can recover quickly in the event of an incident tomorrow.  We are highlighting practices critical infrastructure organizations can implement to recover rapidly in the aftermath of any significant disruption: Assess Your Risk. Make a Plan and Exercise It.  Continuously Improve and Adapt. NCSC. https://www.ncsc.govt.nz/news/record-high-financially-motivated-cyber-activity/ Zero-Day. https://cyberscoop.com/cisa-zero-day-ransomware/   Quick Hits Maine gunman’s family contacted police months before massacre, sheriff says NIJ: Five Things About Protecting Against Mass Attacks FACT SHEET: Biden-⁠Harris Administration Convenes Third Global Gathering to Counter Ransomware 2022 RTF Global Ransomware Incident Map: Attacks continue worldwide, groups splinter, education sector hit hard w reference to our good friends at eCrime – the single best source for ransomware information U.S. officials hold their breath for Iranian cyberattacks Man Armed with Weapons Found Dead at Colorado Amusement Park, Investigation Underway; Authorities said that the 22-year-old suspect wore body armor and had with him a semi-automatic rifle and IEDs FIRST has officially published the latest version of the Common Vulnerability Scoring System (CVSS v4.0) FBI Tech Tuesday: Beware of Scams on Popular Peer-to-Peer Payment Apps SEC Charges SolarWinds and Chief Information Security Officer with Fraud, Internal Control Failures Citrix Bleed: Two ransomware groups now exploiting bug for initial access “This vulnerability is now under mass exploitation.” Citrix Bleed bug bites hard; By some estimates, 20,000 devices have already been hacked. Unveiling Socks5Systemz: The Rise of a New Proxy Service via PrivateLoader and Amadey GCA Launches a User-friendly Cybersecurity Tools Wiki NZ NCSC: The NCSC announces record-high financially motivated cyber activity  
Nov 06, 202327:42
Weekly Security Sprint EP 40. Maine, expanded conflict, scams, and more!

Weekly Security Sprint EP 40. Maine, expanded conflict, scams, and more!

In this week's Security Sprint, Dave and Andy talked about the following topics:

Maine Shootings

 

FB-ISAO: October 2023 Threat Level Statement Update – Threat Levels Raised to ELEVATED.

  • The Physical Threat Level is “ELEVATED.” ELEVATED means that FB-ISAO is unaware of any specific threats, but there is concern that an event is more likely than normal. We are also closely monitoring events and are considering an escalation to “SEVERE,” meaning that an event is highly likely, but decided to not escalate to that level at this time.
  • The Cyber Threat Level is “ELEVATED.” ELEVATED means that FB-ISAO is unaware of any specific threats, but there is concern that an event is more likely than normal.

Scams


AI. FACT SHEET: President Biden Issues Executive Order on Safe, Secure, and Trustworthy Artificial Intelligence.

 

Quick Hits

 

Oct 30, 202323:36
Weekly Security Sprint EP 39. ISIS call to action, ransomware, and FBI reporting

Weekly Security Sprint EP 39. ISIS call to action, ransomware, and FBI reporting

In this week's Security Sprint, Dave and Andy talked about the following Topics.

Hurricane season thoughts.

ISIS Calls for Jewish Attacks Around the World. “Terrorist group ISIS has called for violent targeting of Jewish people worldwide in response to the ongoing conflict between Israel and Hamas… Published on Friday in Arabic in Al-Naba, a weekly magazine by ISIS, it advocates for violence and murder against Jewish people worldwide.

Ransomware

New Portman Report Demonstrates Threat Ransomware Presents to the United States. “This report details the attacks by Russia-based ransomware group REvil on three American companies, and the experiences of those companies during the incident response."
CISA, NSA, FBI, MS-ISAC Publish Updated #StopRansomware Guide
UK NCSC: Principles for ransomware-resistant cloud backups; Helping to make cloud backups resistant to the effects of destructive ransomware.
Our new principles to help make cloud backups more resilient; Introducing a new set of NCSC principles to strengthen the resilience of organisations' cloud backups from ransomware attackers.
Canadian Centre for Cyber Security - Social engineering – ITSAP.00.166, Social engineering – ITSAP.00.166 (PDF, 267 KB)
Phishing Guidance: Stopping the Attack Cycle at Phase One


FBI Releases 2022 Crime in the Nation Statistics. The FBI released detailed data on over 11 million criminal offenses reported to the Uniform Crime Reporting (UCR) Program… The FBI’s crime statistics estimates for 2022 show that national violent crime decreased an estimated 1.7% in 2022 compared to 2021 estimates.

Statement from President Joe Biden on Hate Crime Statistics
FBI report: Violent crime decreases to pre-pandemic levels, but property crime is on the rise
Violent crime down, carjackings up, according to FBI crime statistics
FBI: Violent Crime Down To Pre-Pandemic Levels, But Property Crimes Rising
ADL: FBI Data Reflects Deeply Alarming Record-High Number of Reported Hate Crime Incidents in the U.S. in 2022
UCR’s Crime Data Explorer


Quick Hits:

Russia, shifting tactics, fans doubt in election integrity, U.S. says; A new intelligence assessment indicates the Kremlin appears to be expanding its long-running efforts to weaken the world’s democracies
CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
"The Phantom Hacker:" FBI Phoenix Warns Public of New Financial Scam
CISA: Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks
FBI IC3 PSA: Additional Guidance on the Democratic People's Republic of Korea Information Technology Workers



Oct 23, 202325:57
The Gate 15 Interview EP 40: The Return of Kim Milford! On being a CISO, cyber resilience in higher ed and… cumquats?

The Gate 15 Interview EP 40: The Return of Kim Milford! On being a CISO, cyber resilience in higher ed and… cumquats?

In this episode of The Gate 15 Interview, Andy Jabbour welcomes back Kim Milford, Deputy Chief Information Officer (CIO) and Chief Information Security Officer (CISO) at the University of Illinois Urbana-Champaign. In April 2023, Kim Milford accepted the role of Deputy CIO and Chief Information Security Officer (CISO) at Illinois. In this role, Ms. Milford draws on her experience in research and education to lead strategy, direction, and innovation related to cybersecurity, identity protection, and privacy. Prior to this role, Kim was the Executive Director and CISO at the REN-ISAC, working with research and education institutions and partners to provide member institutions with the information and tools to better defend their environments from threats. Her service in higher education began in 1998 having held leadership positions at Indiana University, the University of Rochester, and University of Wisconsin-Madison. Kim provides cybersecurity expertise and presentations at national and regional conferences and seminars. She guest lectures and teaches cybersecurity courses and training, and has authored/co-authored many articles on the subject. Ms. Milford has a B.S. in Accounting from Saint Louis University in St. Louis, Missouri and a J.D. from John Marshall Law School in Chicago, Illinois.

Kim on LinkedIn.

In the discussion we address:

Life as a CISO
Social engineering and taking a more human-centric approach to security
Identity as an initial attack vector
Challenges around regulated research
Private-Public Partnership
Cyber Resilience
Liberated thinking on strategy and technology
Digital Twins and privacy (link to Gartner)
And we play Three Questions with Kim Milford

A few references mentioned in or relevant to our discussion include:

University of Illinois Urbana-Champaign, Office of the Chief Information Officer Technology Services
EDUCAUSE
CISA The Power of Resilience, 09 Aug 2023
The Gate 15 Interview: From Blended Threats to Pandemic Lessons Learned, a Candid Conversation on Higher Education Security and Resilience with REN-ISAC’s Kim Milford (23 November 2020)
Gate 15: Security Spotlight: An Interview with REN-ISAC Executive Director, Kim Milford (11 June 2018)

Oct 23, 202335:26
Nerd Out: EP 41. Dave Clark joins to talk about MDM and other nerd topics.

Nerd Out: EP 41. Dave Clark joins to talk about MDM and other nerd topics.

In the latest episode of Nerd Out, Dave brings in another Dave and fellow Nerd. Dave Clark joins the show to talk all things mis/dis/mal-information (MDM) as well as some other nerd topics. Dave Clark shared his journey from being a linguist in the Army to a sports journalist to working with MDM. He also talked about some of the challenges and then some important steps for individuals and organizations to take to verify the information is as complete as possible. Then taking a break from work, Dave and Dave talked about what they are watching and some of the challenges with some great shows.

Dave Clark is....
Oct 18, 202347:09
Weekly Security Sprint EP 38. Protests, hostile events, security vulnerabilities and reports and more.

Weekly Security Sprint EP 38. Protests, hostile events, security vulnerabilities and reports and more.

In this week's security sprint, Dave and Andy talk about the following topics:

Israel War

Director Wray Addresses International Association of Chiefs of Police Conference.
FBI director warns of rise in terror threats against Americans, potential copy-cat attacks on US soil.


Faith Based Updates: FB-ISAO Newsletter, v5, Issue 10

The White House Office of Faith-Based and Neighborhood Partnerships releases Allied Against Hate: A Toolkit for Faith Communities - Tools and Resources to Protect Places of Worship
DHS: Resources and Information for Faith and Community Leaders Regarding the Situation in Israel


Hostile Events

State Fair of Texas evacuated after shooting, one suspect in custody
Suspect charged in State Fair of Texas shooting that injured 3
School plot:
www.news4jax.com/news/local/2023/10/06/3-creekside-high-students-facing-charges-for-school-threat-hit-lists-deputies-say/


Nation State.

12 October 2023 NCSC / FBI Safeguarding Our Future bulletin – Russian Intelligence Poses a Persistent Threat to the United States.


IBM Security Intelligence: 10 years in review: Cost of a Data Breach

Quick Hits

Signal says there is no evidence rumored zero-day bug is real.
Ransomware: CISA Releases New Resources Identifying Known Exploited Vulnerabilities and Misconfigurations Linked to Ransomware. As part of the Ransomware Vulnerability Warning Pilot (RVWP), CISA launched two new resources for combating ransomware campaigns:
Ransomware Vulnerability Warning Pilot updates: Now a One-stop Resource for Known Exploited Vulnerabilities and Misconfigurations Linked to Ransomware
Colonial Pipeline was hacked. No, wait, Accenture was hacked. No, wait….. untangling claims. (2)
Colonial Pipeline Denies Breach by RANSOMEDVC Ransomware Group
Reports of second cyberattack on Colonial Pipeline false, company says
Robert M. Lee on ransomware group statement.
Newest Ransomware Trend: Attackers Move Faster with Partial Encryption
The Week in Ransomware - October 13th 2023 - Increasing Attacks
US Secret Service: Announcing a New Series of Live Virtual Presentations on Targeted Violence Prevention.
CISA, FBI, NSA, and Treasury Release Guidance on OSS in IT/ICS Environments
CISO Research Reveals 90% of Organizations Suffered At Least One Major Cyber Attack in the Last Year; 83% Report Ransomware Payments
FTC Data Shows Consumers Report Losing $2.7 Billion to Social Media Scams Since 2021
UK NCSC: Mastering your supply chain: A new collection of resources from the NCSC can help take your supply chain knowledge to the next level
EPA calls off cyber regulations for water sector



Oct 16, 202325:19
Weekly Security Sprint EP 37. Conflict in the Middle East, CISA advisories, lessons learned, and more!

Weekly Security Sprint EP 37. Conflict in the Middle East, CISA advisories, lessons learned, and more!

In this week's Security Sprint, Dave and Andy talked about the following topics.

War in Israel

CISA Top 10 Cybersecurity Misconfigurations.

NSA and CISA Release Advisory on Top Ten Cybersecurity Misconfigurations


Virginia Beach Shooting Lessons Learned.

State commission reviewing Virginia Beach mass shooting offers little new insight but recommends more tools for its work.
Gate 15 offers our Hostile Event Preparedness Series and check out the Gate 15 White Paper on The Hostile Event Attack Cycle (HEAC). and we’d be happy to help your organization with active shooter/hostile events planning, exercising and overall preparedness. Don’t wait.


CISA: National School Safety Summit. The National Summit on K-12 School Safety and Security, hosted by the Cybersecurity and Infrastructure Security Agency (CISA), brings federal, state and local school leaders together to share actionable recommendations that enhance safe and supportive learning environments in kindergarten through grade 12 (K-12) schools. To register, please visit
2023cisaschoolsummit.eventbrite.com.

Red Cross Issues Wartime Hacktivist Rules; Attackers Shockingly Don’t Care

Quick Hits

Microsoft: Espionage fuels global cyberattacks
Ransomware: MGM Resorts Refused to Pay Ransom in Cyberattack on Casinos; Fallout will have a $100 million negative impact on quarterly earnings, Las Vegas-based company says
CISA and NSA Release New Guidance on Identity and Access Management
FBI Highlights Online Safety Tips During Cybersecurity Awareness Month.
Germany Political Event (or something). apnews.com/article/germany-afd-chrupalla-rally-incident-hospital-61606f839d8563ee77228dbd914ae35f

Oct 09, 202326:28
Weekly Security Sprint EP 36. Cybersecurity Awareness Month, Physical Security issues, Ransomware and much more!

Weekly Security Sprint EP 36. Cybersecurity Awareness Month, Physical Security issues, Ransomware and much more!

In this week's Security Sprint, Dave and Andy talk about the following topics:
Cybersecurity Awareness Month.

A Proclamation on Cybersecurity Awareness Month, 2023.
CISA Kicks Off 20th Anniversary of Cybersecurity Awareness Month with New Public Awareness Campaign to Secure Our World
Transforming Vulnerability Management: CISA Adds OASIS CSAF 2.0 Standard to ICS Advisories
NSA Releases Guidance on Acceptance Testing for Supply Chain Risk Management
Procurement and Acceptance Testing Guide for Servers, Laptops, and Desktop Computers
CISA: Cyber Training Bulletin
Transforming Vulnerability Management: CISA Adds OASIS CSAF 2.0 Standard to ICS Advisories
NSA Launches 10th Annual Codebreaker Challenge for 2023
Check out NSA Cyber Director Rob Joyce’s social media meme-fest! Here, on Threads.
Gate 15, along with many ISACs, ISAOs and other great organizations, is Cybersecurity Awareness Month Champion!


Headlines

Beware of Floor Plans.
www.cnn.com/2023/09/28/politics/dhs-investigating-ransomware-attack
FBI PIN: Two or More Ransomware Variants Impacting the Same Victims and Data Destruction Trends
Most dual ransomware attacks occur within 48 hours.
Ransomware attack on Johnson Controls may have exposed sensitive DHS data
Meet LostTrust ransomware — A likely rebrand of the MetaEncryptor gang
The Week in Ransomware - September 29th 2023 - Dark Angels


FB-ISAO: September 2023 Threat Level Statement Update – Threat Levels Remain at GUARDED.

The U.S. National Strategy to Counter Antisemitism: Key Actions by Pillar | The White House
Fact Sheet: Biden-Harris Administration Takes Landmark Step to Counter Antisemitism | The White House
Secretary Mayorkas Delivers Remarks at the Protecting Places of Worship Roundtable.
Peruvian National Arrested In Peru For Sending Over 150 Hoax Bomb Threats To Schools And Other Institutions In The United States And Soliciting Child Pornography.
VA man who made threats against church arrested after showing up to Sunday service armed with gun, knive
Armed suspect arrested at Haymarket church, while service in progress Sept. 24 - Bull Run, VA
Pastor says ‘miracle of God’ led to peaceful arrest of armed man at Va. church


Target Press Release: Target Closes Select Stores to Prioritize Team Member and Guest Safety

US GAO - Critical Infrastructure Protection: National Cybersecurity Strategy Needs to Address Information Sharing Performance Measures and Methods.


Quick Hits

FCC Net Neutrality. techcrunch.com/2023/09/26/fcc-announces-plans-to-reinstate-net-neutrality/
Apple updates. www.securityweek.com/macos-14-sonoma-patches-60-vulnerabilities/
Prepare for the unlikely. www.dhs.gov/science-and-technology/news/2023/09/25/preparing-unlikely


FBI PSA: "Phantom Hacker" Scams Target Senior Citizens and Result in Victims Losing their Life Savings
FEMA and FCC Plan Nationwide Emergency Alert Test for Oct. 4, 2023. Test Messages Will be Sent to All TVs, Radios and Cell Phones
Massive emergency alert test scheduled to hit your phone on Wednesday. Here's what to know.


Bridging the gender gap in the public sector.
Bipartisan Senate Intelligence Committee Report Warns of New Threats from China and Russia (PDF report)
CISA, NSA, FBI and Japan Release Advisory Warning of BlackTech, PRC-Linked Cyber. People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices
Global Engagement Center Special Report: How the People’s Republic of China Seeks to Reshape the Global Information Environment.


Critical vulnerabilities in Exim threaten over 250k email servers worldwide.
CISA releases Hardware Bill of Materials (HBOM) Framework for Supply Chain Risk Management.
A Hardware Bill of Materials Framework for Supply Chain Risk Management
A Hardware Bill of Materials Framework for Supply Chain Risk Management Fact Sheet
The Cybersecurity 202 - Want to learn what’s in your hardware? CISA has an idea for that.
Oct 02, 202324:34
Weekly Security Sprint EP 35. Yes, Virginia, Jen is a big deal, plus security planning, scams, threat TTPs, and more!

Weekly Security Sprint EP 35. Yes, Virginia, Jen is a big deal, plus security planning, scams, threat TTPs, and more!

In this week's Security Sprint, Dave and Andy talked about the following topics. Security Planning CISA: New Product - Protecting Houses of Worship: Perimeter Security Considerations Infographic. The Cybersecurity and Infrastructure Security Agency (CISA) released the Protecting Houses of Worship: Perimeter Security Considerations Infographic. CISA: Security Planning Workbook. Security Planning Workbook (PDF) DHS: This #SeeSayDay Take the Pledge to Protect Your Community If You See Something, Say Something® #SeeSayDay.  Selected FB reports: Statement from President Joe Biden on Yom Kippur Synagogues brace for bomb threats, ‘swatting’ attacks as Yom Kippur begins Escambia County church a 'total loss' after overnight fire Bomb Threat Forces Evacuation at Screening of John MacArthur’s ‘The Essential Church’ at G3 National Conference Anne Arundel police announce arrests in three hate bias cases at area churches FBI WARNED SIKHS IN THE U.S. ABOUT DEATH THREATS AFTER KILLING OF CANADIAN ACTIVIST INVITATION: Protecting Places of Worship Weeks of Action Virtual Events + DHS Resources Bomb threats target US synagogues during Rosh Hashanah West Virginia Man Admits to Obstructing Tree of Life Trial TikTok Shoplifting Threats. https://www.the-sun.com/news/9148713/retail-chains-tiktok-videos-shoplifting-warning-employees/ Jen Walker, Superstar, and Ransomware Resilience Congratulations to our 2023 SC Media Women in IT Security honorees. “Today SC Media shines a spotlight on 20 business leaders as part of our 2023 Women in IT Security program. Thank you to SC Media for recognizing Gate 15's very excellent Jennifer Lyn Walker in the 2023 Women in IT Security list‼️ Private Public Partnership. FBI Director Christopher Wray Speaks at 2023 mWISE Cybersecurity Conference. Cyberspace Solarium Commission’s (CSC’s) 2023 Annual Report on Implementation. Key Takeaways from the 2023 Security Summit Hosted at the Fortinet Championship. Ransomware. House Oversight Committee: Combating Ransomware Attacks MGM Resorts are operating ‘normally’ after hacks, sort of TribalNet: Cyber experts wrap up MGM hack at San Diego conference. The MGM Breach and the Role of IdP in Modern Cyber Attacks TribalNet: Gaming tech exec says it’s time finally to talk about cybersecurity MGM vs. Caesars: Cybersecurity Expert Rates Hacking Responses PhilHealth hit by Medusa ransomware, aims for site restoration by Monday Ransomware group claimed to have hit a New Jersey cardiology group. Did they? Growing Ransomware Threats: Looming Danger for ICS, Industrial Companies   Morroco disaster scams / misinformation on social media, scams The Gate 15 Interview: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction. Misinformation research is buckling under GOP legal attacks GOP legal attacks create a chilling effect on misinformation research The Rise of Generative AI and the Coming Era of Social Media Manipulation 3.0   Quick Hits: Perspective: Homeland Security and the Shutdown Threat: Planning for an Unnecessary Contingency Alarm bells ring as lawmakers prep for possible shutdown U.S. braces for calamitous, costly government shutdown in eight days IT-ISAC: Cyber experts set out plan to secure crucial 2024 US election Health-ISAC QR Codes. https://www.aha.org/h-isac-white-reports/2023-09-19-h-isac-tlp-white-observed-increase-qr-code-phishing-attacks-september-19-2023 Harmonization of Cyber Incident Reporting to the Federal Government. El Nino winter. https://www.cnn.com/2023/09/25/weather/el-nino-winter-us-climate/index.html    
Sep 25, 202322:22
The Gate 15 Interview EP 39: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction.

The Gate 15 Interview EP 39: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction.

In this episode of The Gate 15 Interview, Andy Jabbour talks with Robert (Bob) Kolasky, “Advancing National Security Risk Management through Technology, Innovation and Governance,” who is presently serving as Senior Vice President for Critical Infrastructure at Exiger, where he is focusing on developing cutting-edge risk management solutions for critical infrastructure companies and supporting government agencies. Leads market strategy for addressing third party and supply chain risk in critical infrastructure and delivering analysis to support enhanced business and government operations. He also serves in a number of other roles including:

  • Nonresident Scholar, Technology and International Affairs Program, Carnegie Endowment for International Peace
  • Senior Associate, Center for Strategic and International Studies (CSIS)
  • Senior Fellow, McCrary Institute at Auburn University
  • We talk on Information Sharing Operations including the grouping of Mis- Dis- and Mal- info and what those terms mean, free speech and private-public coordination, solutions, and a speed round!
  • We revisit our discussion on space as critical infrastructure.
  • We explore what’s on Bob’s mind, including protecting our supply chains and cloud security.
  • Three (more!) Questions with Bob Kolasky as we talk about scooters, the City of Light/the City of Love, and nudging the world in a better direction.
  • And more!

Previously, Bob served as Cybersecurity and Infrastructure Security Agency’s (CISA) Assistant Director, leading the National Risk Management Center (NRMC) and in a number of other critical homeland security roles and responsibilities.
In the discussion:
 
A few references mentioned in or relevant to our discussion include:

Sep 25, 202349:51
Nerd Out: EP 40. The Homeland's 50 Trailblazers, Homeland Threat Assessment, Fall events and some fun!
Sep 19, 202340:09
Weekly Security Sprint EP 34. MGM breach, disaster planning, Homeland Threat Assessment and more!

Weekly Security Sprint EP 34. MGM breach, disaster planning, Homeland Threat Assessment and more!

In this week's Security Sprint, Dave, Andy and Jen cover the following topics: Casino, Ransomware Washington Post Cybersecurity 202 - What’s behind recent hacks of casinos?  Tactics of MGM-Caesars attackers were known for several months. High-profile cyberattacks will be talk of tribal technology conference this week. Very good perspective and tips from social engineering SME, Rachel Tobac, on LinkedIn BlackCat/ALPHV reportedly encrypted more than 100 MGM ESXi hypervisors Hackers tied to Las Vegas attacks known for sweet-talking their way into company systems The chaotic and cinematic MGM casino hack, explained MGM wrestling with fallout from days-long apparent cyberattack Two Vegas casinos fell victim to cyberattacks, shattering the image of impenetrable casino security Ransomware Resources! UK NCSC: Ransomware, extortion and the cyber crime ecosystem.   Weatherman Segment. Nipah virus outbreak. https://www.cnn.com/2023/09/14/india/kerala-nipah-virus-india-outbreak-intl-hnk/index.html Libya flooding. https://apnews.com/article/libya-floods-derna-storm-daniel-mass-graves-72307547f3e0ff4fbf715a7f64c69383 Homeland Threat Assessment. DHS Continues to See High Risk of Foreign and Domestic Terrorism in 2024 Homeland Threat Assessment. Annual Threat Assessment to Replace Regular NTAS Bulletins and Provide the Public and our Partners with More Comprehensive Analysis of Most Pressing Threats and Challenges.  HS Today: Homeland Threat Assessment Says Violent Extremists Are Improving Online Materials, Information Sharing, and Collaboration Cybersecurity 202 - DHS warns about 2024’s cyberthreats WaterISAC - H2O Surging Towards Safety & Security. 2023 Sponsorship Prospectus.   Quick Hits: Faith Based Security: FB-ISAO Newsletter, v5, Issue 9 At least 49 synagogues have been evacuated due to bomb threats in the last 2 months. Next up, the High Holidays. Ahead of High Holidays, US Jewish leaders stress need for security vigilance as antisemitism surges Synagogues are doing active shooter training amid rise in antisemitism On Telegram, Accelerationist Group Claims Responsibility For Calling In Bomb Threats To Synagogues, Black Churches, LGBTQ+ Bar, Vows To Continue 'Swatting' Activities; Posts Livestreams Of Religious Services Online As They Call In Threats Altoona man with swastika tattoo charged for taping razor blade on church handrails, police say ‘Unacceptable’: North Shore church, crosswalk defaced amid rash of anti-LGTBQ vandalism across city Third Buddhist temple break-in in just weeks Man slugged unconscious outside mosque in Long Island City: NYPD MIAMI JEWISH SCHOOL EVACUATED OVER BOMB THREAT Experts: Hatred links Jacksonville shooting, antisemitic displays in Central Florida Athens neighborhood targeted by anti-Semitic flyers NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats CISA: Vulnerability Scanning for Water Utilities FBI PSA - Violent Online Groups Extort Minors to Self-Harm and Produce Child Sexual Abuse Material CISA Releases its Open Source Software Security Roadmap White House urging dozens of countries to publicly commit to not pay ransoms The world just sweltered through its hottest August on record; Both hemispheres saw record-warm seasons. Identity of NSA hacker behind cyberattack on China’s leading aviation university identified; to be disclosed in due course China blacklists US defence companies over Taiwan arms sales US to revamp its aerospace forces as it faces China threat Speculation grows over whereabouts of China’s Defense Minister Li Shangfu   Automotive Security: Stolen Auto Accounts: The $2 Price Tag on Your Car’s Identity Nearly 15,000 accounts raided at automaker sites to harvest vehicle IDs, report says Car Hackers Are Out for Blood EU to probe ‘flood’ of cheap Chinese electric vehicles, sparking trade war fears Have a SAFE ride – Cyber Threats in the Automotive Sector  
Sep 18, 202325:40
Weekly Security Sprint EP 33. Embezzlement, See Something - Say Something, Morocco, Blended Threats and more!

Weekly Security Sprint EP 33. Embezzlement, See Something - Say Something, Morocco, Blended Threats and more!

In this week's Security Sprint, Dave and Andy talked about the following topics:

9/11. Bells toll as the U.S. marks 22 years since 9/11, from ground zero to Alaska

Embezzlement.
www.8newsnow.com/news/local-news/las-vegas-casino-employee-accused-of-stealing-776k-from-resort-property/

Blended Threats. innotechtoday.com/how-to-bridge-the-gap-between-cybersecurity-and-physical-security/

See Something , Say Something.

If You See Something, Say Something® Awareness Day | Homeland Security. Play a role on national "If You See Something, Say Something®" Awareness Day, on September 25. We can all help keep safe by learning the indicators.
FBI Director Wray issues warning about number of Russian spies in the US
Terrorism and Immigration: A Risk Analysis, 1975–2022
Yet Another Study Debunks The ‘YouTube’s Algorithm Drives People To Extremism’ Argument


Devastation in Morocco.

Morocco earthquake live briefing: Almost 2,500 dead; officials accept search-and-rescue help
The destruction in Morocco in maps, videos and photos
Morocco earthquake: foreign aid teams join efforts to find survivors
Great ShakeOut Earthquake Drills. This year's International ShakeOut Day is October 19, when millions of people worldwide will participate in earthquake drills at work, school, or home! At 10:19 a.m. (local time) on 10/19, you can join millions of people across the world practicing earthquake safety.


Swatting: Click Here podcast: 83. "Ding-dong ditch" on steroids

Bomb threat at Arlington National Cemetery delays funeral services
Swatting started in the gaming world and it’s coming for the rest of us
Los Altos Hills synagogue evacuated after Shabbat bomb threat


Quick Hits:

China’s military seeks to exploit U.S. troops, veterans, general warns
Pro-China Disinformation Campaign Claims US Started Maui Fires in a ‘Weather Weapons’ Experiment, Falsely Citing the UK’s MI6
Chinese Gate-Crashers at U.S. Bases Spark Espionage Concerns; Washington has tracked about 100 incidents involving Chinese nationals trying to access American military and other installations
Hongkonger John Shing-wan Leung ‘posed as philanthropist’ to spy on China for US
US, Canadian warships transit Taiwan Strait in latest joint mission
Health-ISAC Members Prove To Be Resilient and Avoid the Wall of Shame, by Errol Weiss on LinkedIn. This is a great post and a great example of the power of a healthy ISAC/ISAO.
MGM Resorts says it identified ‘cybersecurity issue’ that’s affecting some of company’s systems
Annual Peak Of Atlantic Hurricane Season Has Arrived
International report confirms record-high greenhouse gases, global sea levels in 2022
Earth had hottest three-month period on record, with unprecedented sea surface temperatures and much extreme weather
DOJ: Multiple Foreign Nationals Charged in Connection with Trickbot Malware and Conti Ransomware Conspiracies
CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack


This and so much on ransomware, hate crimes, much, much more, daily in the Gate 15 SUN. To be subscribed for free please email Gate15@Gate15.global
Sep 11, 202322:25
Weekly Security Sprint EP 32. National Preparedness Month, Burning Man, Insider Threat Awareness, Ransomware and more!

Weekly Security Sprint EP 32. National Preparedness Month, Burning Man, Insider Threat Awareness, Ransomware and more!

In this week's Security Sprint, Dave and Andy talk about the following topics: Burning Man. https://www.cnn.com/2023/09/04/us/burning-man-storms-shelter-monday/index.html   Alphabet months begins! FEMA Advisory: FEMA, Ready Campaign Launch National Preparedness Month (September 1, 2023). September marks National Preparedness Month, the annual recognition set to remind everyone in America how important it is for individuals, families and communities to prepare for disasters and emergencies that can happen at any time. Earlier this year, FEMA Administrator Deanne Criswell announced this year’s theme would focus on preparing older adults and their caregivers ahead of disasters.  NCSC And Federal Partners Focus on “Bystander Engagement” During National Insider Threat Awareness Month 2023. This year’s NITAM campaign focuses on bystander engagement. An engaged bystander is an individual who is aware of concerning behaviors and knows how to act on those concerns appropriately. The NITAM 2023 campaign encourages government and industry employees to recognize and report behaviors of concern to appropriate parties so early intervention can occur and at-risk employees can be connected to resources and assistance if appropriate.   Back to School Scams & Sextortion Parents reveal teen sons committed suicide after being ‘sextorted’: ‘This is terrorism’ FBI Tech Tuesday - Safe Online Surfing: https://www.fbi.gov/contact-us/field-offices/phoenix/news/fbi-tech-tuesday-safe-online-surfing FBI PSA. https://www.justice.gov/usao-wdwa/pr/fbi-and-partners-issue-national-public-safety-alert-financial-sextortion-schemes Ransomware  Subscribe to the SUN! Email Gate15@gate15.global TribalNet agenda set for San Diego conference TribalNet Conference and Tradeshow, by TribalHub Canadian Centre for Cyber Security - Baseline cyber threat assessment: Cybercrime   Quick Hits and Soap boxes. White House Advisory Group: Water Sector Needs Cybersecurity National Standard. A new article looks at the report and quotes Gate 15’s Jennifer Lyn Walker. “I agree that a specialized workforce is needed,” said Jennifer Lyn Walker, director of Cyber Defense for Gate 15, and director of Infrastructure Cyber Defense for WaterISAC. “The large (better resourced) utilities are more inclined to have specialized staff, although some may not offer truly competitive wages. I believe many (if not most) of the small utilities (less resourced) aren’t even considering specialized staff, let alone the ability to afford them.” PDF report. U.S. and International Partners Release Report on Russian Cyber Actors Using “Infamous Chisel” Malware; Joint report provides technical analysis of malware targeting Android devices used by Ukrainian military. The malware analysis report provides technical details of a new kind of malware used to target Android devices in use by Ukrainian military personnel. Andy gets on the soapbox and opines on bias in analysis. Dave Weatherman Report. Disaster scams. https://www.cisa.gov/news-events/alerts/2023/08/31/cisa-warns-hurricane-related-scams
Sep 04, 202330:58
Weekly Security Sprint EP 31. Hostile Events, Space, Doxxing, a PSA, and so much more!

Weekly Security Sprint EP 31. Hostile Events, Space, Doxxing, a PSA, and so much more!

In this week's Security Sprint, Dave and Andy discussed the following topics: Gate 15 is on Threads! @gate_15_resilience Jacksonville Murders and other physical security updates.  Gunman Kills 3 in Racially Motivated Attack on Jacksonville Dollar Store Jacksonville gunman was turned away from historically Black university before killing 3 in racist shooting at nearby store, authorities say Ryan Palmeter, Dollar General Suspect: 5 Fast Facts You Need to Know Ryan Palmeter Video: Dollar General Suspect Video Released Jacksonville Gunman Used Gun With Swastika on It to Kill 3 in Racist Attack, Police Say At least seven injured in shooting at Caribbean parade in Boston.   Safeguarding The US Space Industry; Keeping Your Intellectual Property In Orbit (PDF). “Foreign intelligence entities recognize the importance of the commercial space industry to the US economy and national security, including the growing dependence of critical infrastructure on space-based assets." OODA Loop: What To Do About The U.S. Intelligence Community Warning on Safeguarding The Space Industry. Axios: Space is the next cybersecurity frontier Scientists Still Looking For Reasons Cybercriminals Are Disabling These Space Telescopes Space ISAC   Swatting and Doxxing. Keep what you want, add what you want. Bomb threat at a Forest Park church induced panic, police say Threats against public officials on the rise as 2024 nears Surrenders and threats of arrest ahead of Trump’s booking in Georgia Bumbling alleged arsonist sets himself ablaze trying to burn down Florida church Trump’s Georgia arraignment expected to be televised, Fulton County judge says 3 killed, 6 injured in mass shooting at Orange County biker bar Bomb threat at Fulton County Courthouse after Trump arrest: report   PSA: FEMA and FCC Plan Nationwide Emergency Alert Test for 04 Oct 2023. The Federal Emergency Management Agency, in coordination with the Federal Communications Commission, will conduct a nationwide test of the Emergency Alert System (EAS) and Wireless Emergency Alerts (WEA) on Oct 4 at 2:20 p.m. FCC’s Public Notice   EMR-ISAC InfoGram Aug. 24 – S&T report evaluates gunshot detection technology for first responders; Nationwide emergency alert test on Oct. 4 Radio World   Quick Hits Idalia Intensifying and Forecast to Become a Major Hurricane. NHC issuing advisories for the Atlantic on Hurricane Franklin and TS Idalia Governor Ron DeSantis Issues Updates on Tropical Storm Idalia Key Messages regarding Tropical Storm Idalia Tropical Storm Franklin leaves a body count and damage in the Caribbean 7 tornadoes confirmed as Michigan storms down trees and power lines; 5 people killed USG Updates TLP:CLEAR FBI FLASH: Suspected PRC Cyber Actors Continue to Globally Exploit Barracuda ESG Zero-Day Vulnerability CISA, NSA & NIST: Quantum-Readiness: Migration to Post-Quantum Cryptography FBI PSA - FBI Guidance for Cryptocurrency Scam Victims Of possible interest The Cheap Radio Hack That Disrupted Poland's Railway System UK air traffic control experiencing 'technical issue' Elon Musk stopped policing political misinformation Ransomware MOVEit, the biggest hack of the year, by the numbers Banning Ransomware Payments Brings New Challenges. With references to our friends Silas Cutler and eCrime! Surge in Cybercrime: Check Point 2023 Mid-Year Security Report Reveals 48 ransomware groups have breached over 2,200 victims Rhysida claims ransomware attack on Prospect Medical, threatens to sell data Thousands have SSNs leaked after ransomware attack on Ohio state archive org Connecticut hospital nurse says ransomware attack has affected payroll From Russia and Ukraine, with love Statement from President Joe Biden on Ukraine Independence Day THE CYBERSECURITY 202 - Without Prigozhin, expect some changes around the edges on Russian influence operations Intentional explosion downed Prigozhin’s plane, says US intelligence
Aug 28, 202322:43
The Gate 15 Interview EP 38: Jeff Troy, President, Aviation ISAC, on public service, cybersecurity, understanding threats (and… colonizing the ocean?)

The Gate 15 Interview EP 38: Jeff Troy, President, Aviation ISAC, on public service, cybersecurity, understanding threats (and… colonizing the ocean?)

In this episode of The Gate 15 Interview, Andy Jabbour visits with Jeff Troy, President, CEO at Aviation Information Sharing and Analysis Center (A-ISAC). Over the past five years, Jeff has led the Aviation ISAC, a trust-based community focused on the sharing of threat intelligence and best practices. He has developed the strategic plans, driven the team’s expansion of services and overseen extensive growth in membership. He established relationships with global regulators, industry associations and private sector companies to drive cyber risk reduction across the aviation eco-system. He co-authored a white paper on Ransomware and continues to partner with international groups on the ransomware threat. Concurrently, Jeff is on the National Defense ISAC Board of Directors. Jeff spent 25 years as a Special Agent of the FBI. He served as Chief, Cyber Division, and retired as the Deputy Assistant Director for Cyber National Security and Cyber Criminal Investigations.
· Jeff on LinkedIn.
· Email:
jtroy@a-isac.com
· Web: a-isac.com

In the discussion we address:
· Serving in the FBI and ideas for young people thinking about their futures
· Transitioning from the public sector to the private sector
· Key ideas on how to building a successful information sharing community
· Understanding how to think about threats
· Responsibly and thoughtfully reducing risk and building reslience
· Blended Threats
· The importance of patching and baking security into technology
· The upcoming Aviation ISAC Summit in Ireland
· The Ocean State
· Deep ocean colonies
· More!

Some links from our discussion include:
· Aviation Cybersecurity Summit, 12-14 Sep 2023 in Dublin, Ireland
· NBC News: FBI says mastermind of botnet nabbed, 27 Jul 2010
Aug 28, 202344:34
Weekly Security Sprint EP 30. Hurricane Hilary and the aftermath (scams), Pride Flag attack, ransomware, and more!

Weekly Security Sprint EP 30. Hurricane Hilary and the aftermath (scams), Pride Flag attack, ransomware, and more!

In this week's Security Sprint, Dave and Andy covered the following topics:

ICYMI last week’s Nerd Out Security Panel Discussion presented the 2nd Annual Two-Thirds of the Year Awards.
Mother Nature and Severe Weather.

Heath Ledger Joker Award. Extreme Heat.
Dennis Green “They are who we thought they were” Award. Mother Nature

Selected links follow, much more being shared with some of our Gate 15 communities.

Hilary Impacting the Southwest. Read More
ESF #14 Cross-Sector Business and Infrastructure Partners Conference Series Concerning Tropical Storm Hilary - FOR WIDE DISSEMINATION. You are invited to join a Cross-Sector Business and Infrastructure partners conference series concerning Tropical Storm Hilary, hosted by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Emergency Management Agency (FEMA).

§ Date: Daily, starting Monday, August 21st until further notice
§ Time: 3:00 pm Eastern
§ Please click the link below to join the webinar:
fema.zoomgov.com/j/1614360427
o Local info on Hilary: San Diego, Los Angeles

Hilary releases fury on Southern California
Tropical Storm Hilary causes flooding in SoCal hospital
Hilary’s jagged path: How the storm wound up over Compton and Dodger Stadium
Natural Disasters and Investment Scams – Investor Alert
California Quake Rattled Nerves, but Didn’t Appear to Cause Major Damage
NHC issuing advisories for the Atlantic on TS Gert TS Emily TS Franklin
Key Messages regarding Tropical Storm Franklin
Key Messages regarding Post-Tropical Cyclone Hilary
Winds Push Destructive Fire Through Washington State
As fires rage in British Columbia, more residents prepare for evacuations


Hostile Event. LGBTQ+ Attack. California shop owner shot dead over LGBTQ+ Pride flag displayed at store

Ransomware: As with the above spotlight, selected links follow, much more being shared with some of our Gate 15 communities.

Ransomware Diaries: Volume 3 – LockBit’s Secrets.
Haggling With Hackers: Surprising Lessons From 50 Negotiations With Ransomware Gangs
The Week in Ransomware - August 18th 2023 - LockBit on Thin Ice
Ransomware Roundup – Trash Panda and A New Minor Variant of NoCry
TRACKING RANSOMWARE – JULY 2023
Cuba Ransomware Deploys New Tools: Targets Critical Infrastructure Sector in the U.S. and IT Integrator in Latin America
Cyberattack Still Disrupting Prospect Medical’s Hospitals, Clinic Services
Cyberattack on Popular Property Listing Software Throws Bay Area Real Estate Market into Chaos
Ransomware gang threatens Raleigh Housing Authority months after devastating attack
Bunker Hill Community College discloses May ransomware attack


Quick Hits

Risky Biz News: Twitter to remove block feature: Now completely to the other side of the spectrum, Twitter has announced plans to remove the ability for users to block other users, meaning trolls will be able to harass whoever they want.
FBI IC3 - Cyber Criminals Targeting Victims through Mobile Beta-Testing Applications
Report: Tesla Data Breach Was an Inside Job
Summer Break Isn’t a Vacation for Cybercriminals: Education and Research Organizations are Top Targets According to Check Point Research
Australian Lender Latitude Financial Reports AU$76 Million Cyberattack Costs
Friday Prayers in Washington DC Masjid Muhammad Interrupted by Bomb Threat
Brookline temple swatted
JEWISH CENTER AND SYNAGOGUE IN ATLANTA EVACUATED AFTER BOMB THREAT
Report spotlights 52 US doctors who posted potentially harmful COVID misinformation online

CISA:

CISA and Election Security Partners Hold Tabletop the Vote Election Security Exercise
CISA Releases Infrastructure Resilience Planning Framework Launchpoint
CISA Publishes JCDC Remote Monitoring and Management Systems Cyber Defense Plan
UK NCSC - 'Online safety' vs 'cyber security' - Fiona F explains why 'cyber security' is a vital part of online safety.
From cyber strategy to Implementation: what CEOs and boards need to Know

Aug 21, 202323:15
Weekly Security Sprint EP 29. MDM, Swatting, National Intelligence Strategy, Cyber Resilience, a Virginia history lesson and more!

Weekly Security Sprint EP 29. MDM, Swatting, National Intelligence Strategy, Cyber Resilience, a Virginia history lesson and more!

In the Weekly Security Sprint, Dave and Andy talk about the following topics: Mis/Dis/Mal-information (MDM) Hawaii and Chile heat weapons. Utah man suspected of threatening President Joe Biden shot and killed as FBI served warrant. From 2017, Over 12,000 tweets are calling for Trump's assassination. Here's how the Secret Service handles it 'Remember Waco and Ruby Ridge': Man killed by FBI for making Biden death threat memes already a far-right rallying cry   Faith-Based Security & False Reports ‘Online trolls’ target 26 synagogues in series of antisemitic swat calls and bomb threats: ADL. ADL Statement on Continued Series of Antisemitic Swatting Incidents Targeting Synagogues and Other Institutions US synagogues continuously targeted by 'swatting' Fake bomb threat forces Fullerton synagogue to evacuate during Sabbath service Lil Durk Calls Out Merch Thieves After False Active Shooter Report at Chicago Concert Eiffel Tower evacuated twice over bomb threat 3D-printed firearms plot exposes alarming antisemitism surge in LA. How Jewish community safety group tracked down suspect linked to extremist threat in Reseda Reseda Man Affiliated with Violent White Supremacist Group Charged in Federal Criminal Complaint with Drug and Ammunition Offenses Homeless man arrested, accused of threatening North Little Rock church Man arrested for threatening business, mosque Police Investigating Vandalism at Philadelphia Buddhist Temple PA Man Arrested for Making Ethnic Threats against Church   2023 National Intelligence Strategy (NIS). The 2023 National Intelligence Strategy (NIS) provides the Intelligence Community (IC) with strategic direction from the Director of National Intelligence (DNI) for the next four years.   CISA: The Power of Resilience. “This is resilience: Doing the work up front to prepare for a disruption, anticipating that it will in fact happen, and exercising not just for response but with a deliberate focus on continuity and recovery, improving the ability to operate in a degraded state and significantly reducing downtime when an incident occurs…”   Quick Hits NOAA forecasters increase Atlantic hurricane season prediction to ‘above normal.’ Top U.S. cyber official offers 'stark warning' of potential attacks on infrastructure if tensions with China escalate. China would consider attacks on US railroads, pipelines if it invades Taiwan, Easterly says China to disclose secret US ‘global reconnaissance system,’ claims official. Jen Walker spoke to this on a recent Gate 15 Security Sprint: Weekly Security Sprint EP 27. New SEC Rules and cybersecurity for everyone, not-so-subtle China cyber threat foot-stomping plus anger, radicalization and political violence, the critical-ist of infrastructure and…so much more! THE CYBERSECURITY 202 - China’s hacking of Japan’s defense networks ‘was bad — shockingly bad China's Plan to Rule the World Through Its Smart Devices, FCC Urged to Act President Biden Signs Executive Order on Addressing United States Investments In Certain National Security Technologies And Products In Countries Of Concern Cyber Updates Nexus Podcast: Jennifer Lyn Walker on Cybersecurity Risks in the Water Sector CISA: Review Of The Attacks Associated with Lapsus$ And Related Threat Groups Report, PDF.  CISA: Review Of The Attacks Associated with Lapsus$ And Related Threat Groups Executive Summary, PDF. Akamai Research: Rampant Abuse of Zero-Day and One-Day Vulnerabilities Leads to 143% Increase in Victims of Ransomware Key Findings from the 1H 2023 FortiGuard Labs Threat Report.  Administrator of ‘Bulletproof’ Webhosting Domain Charged in Connection with Facilitation of NetWalker Ransomware   AI Biden-⁠Harris Administration Launches Artificial Intelligence Cyber Challenge to Protect America’s Critical Software The “AI Cyber Challenge” (AIxCC) THE CYBERSECURITY 202 - The Biden administration wants to put AI to the test for cybersecurity   Virginia is For Lovers, a history
Aug 15, 202325:24
Nerd Out: EP 39. The 2nd Annual Two-Thirds of the Year Awards

Nerd Out: EP 39. The 2nd Annual Two-Thirds of the Year Awards

In the latest episode of Nerd Out Dave rolls out the second annual Two-Thirds of the Year Awards. The winners are:

Heath Ledger Joker Award. Extreme Heat.
Avengers Team Up Award. ISACs.
Scotty Doesn't Know Award. Insider Threats.
Dumpster Fire Award. MOVEit
Aldus Snow Award. Ransomware
Dennis Green "They are who we thought they were" Award. Mother Nature
The Cobra Award - "You're the disease and I'm the cure". Patching
MVP. eCrime

Aug 15, 202324:51
Weekly Security Sprint EP 28. The return of the weatherman, CISA strategic plans, espionage, exploited vulnerabilities and…so much more!

Weekly Security Sprint EP 28. The return of the weatherman, CISA strategic plans, espionage, exploited vulnerabilities and…so much more!

In this week's Security Sprint, Dave and Andy talk about the following topics. Hurricanes. CSU released its final forecast for the 2023 Atlantic hurricane season on Thursday, 3 August. CISA Cybersecurity Strategic Plan. CISA Cybersecurity Strategic Plan: Shifting the Arc of National Risk to Create a Safer Future. China Espionage. https://www.justice.gov/usao-sdca/pr/us-navy-sailor-arrested-and-charged-espionage More CISA. CISA, NSA, FBI, and International Partners Release Joint CSA on Top Routinely Exploited Vulnerabilities of 2022. Top 12 vulnerabilities list highlights troubling reality: many organizations still aren’t patching; The list includes well-known vulnerabilities impacting Fortinet's VPNs and Log4Shell that hackers still routinely exploit. Cloudflare: Unmasking the top exploited vulnerabilities of 2022   QH Biden-⁠Harris Administration Launches New Efforts to Strengthen America’s K-12 Schools’ Cybersecurity The Synagogue Attack Stands Alone, but Experts Say Violent Rhetoric Is Spreading Pensacola police arrest 4 teens in connection to string of antisemitic vandalism Man who allegedly fired shots at Jewish school shared grievances against it, flashbacks of father’s violent death & Former student fired gun at Jewish school, shot by police Police investigating vandalism at Utah’s oldest Black church Georgia man accused of breaking into Florida church, ‘baptizing’ himself Bomb threat shuts down OHSU clinic after anti-trans information posted online The USCP Remains Vigilant Following False Active Shooter Report The Senate went into a shelter-in-place and partial evacuation following reports of an possible active shooter on the Capitol campus. Outside of Trump’s arraignment, revelers mark dueling visions of justice Among MAGA extremists, Trump charges draw big talk, small crowds Security upped near Fulton courthouse as possible Trump indictment nears Malwarebytes: 2023 State of Ransomware Threat Intelligence. Report: Ransomware Command-and-Control Providers Unmasked by Halcyon Researchers Cloud company assisted 17 different government hacking groups -US researchers Dragos Industrial Ransomware Attack Analysis: Q2 2023 RUSI: Cyber Insurance and the Ransomware Challenge.  Threat Research Analysis of Ransomware Victims from Ransom Leak Site Data August 2023 Threat Horizons Report Provides Cloud-Focused Cybersecurity Insights and Recommendations SC Magazine: No evidence organizations with cyberinsurance more likely to pay ransom How Tampa General Hospital thwarted a ransomware attack The Week in Ransomware - August 4th 2023 - Targeting VMware ESXi Additional MOVEit-related health data breaches reported 1.7 Million Oregon Health Plan Members Affected by MOVEit Hack US govt contractor Serco discloses data breach after MoveIT attacks Crozer Health’s computer systems were knocked offline Thursday by a ransomware attack Ransomware Roundup - DoDo and Proton Ransomware attacks cost manufacturing sector $46 billion in downtime since 2018, report claims CYFIRMA: RANSOMWARE TRENDS : H1 2023 – Part 1 Qilin Ransomware Gang Adopts Uncommon Payment System: All Ransom Payments Funneled through Affiliates
Aug 08, 202323:53
Weekly Security Sprint EP 27. New SEC Rules, China cyber threat foot-stomping plus anger, radicalization, political violence, the critical-ist of infrastructure and…so much more!

Weekly Security Sprint EP 27. New SEC Rules, China cyber threat foot-stomping plus anger, radicalization, political violence, the critical-ist of infrastructure and…so much more!

In the week's Security Sprint, Andy and Jen talked about the following topics:  Jen’s Cyber Updates SEC: SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies. Final Rule; Fact Sheet.  Fortinet: Cybersecurity, A Necessity for the Sustainability of Society  Tenable: FAQ: What the New SEC Cybersecurity Rules Mean for Infosec Leaders  Florida mandates cybersecurity training for state workers   FACT SHEET: Biden-⁠Harris Administration Announces National Cyber Workforce and Education Strategy, Unleashing America’s Cyber Talent.   Survey: Political Violence is Justified ‘Anger and radicalization’: rising number of Americans say political violence is justified; Survey shows a small but significant share of Americans believe in use of force to attain political goals – on both the left and the right   Infrastructure Cyber Threats U.S. Hunts Chinese Malware That Could Disrupt American Military Operations; American intelligence officials believe the malware could give China the power to disrupt or slow American deployments or resupply operations, including during a Chinese move against Taiwan.  ICYMI: SAVE THE DATE! H2OSecCon Powered by WaterISAC. October 19 -20 Virtual 2023. H2OSecCon is coming back for a second year and will be held virtually from October 19 20. This two-day virtual conference will focus on IT and OT cybersecurity, physical security, and resilience for the water and wastewater sector. Space: If you’ve ever heard our Gate 15 podcasts, including our interviews with the team at Space ISAC, you know we’re on board with this: Bipartisan bill designates space as critical infrastructure sector. FYSA: TAG Cyber Announces Release of 2023 Q3 Edition: Focused on Cybersecurity in Outer Space.    Threats and Scams Attackers exploit Windows-based ‘search-ms’ protocol  Ransomware Delivery URLs: Top Campaigns and Trends & Web browsing is the primary entry vector for ransomware infections  USPS Phishing Scam Targeting iOS Users  CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse  CISA Releases Analysis of FY22 Risk and Vulnerability Assessments  CISA Releases Malware Analysis Reports on Barracuda Backdoors  Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins  Known Exploited Vulnerabilities Catalog  US contractor says info of up to 10 million leaked in MOVEit breach: An IT firm that provides services to Medicaid, Medicare, U.S. student loan servicers and other government programs confirmed that the information of up to 10 million people may have been accessed by hackers exploiting the MOVEit file transfer software. Quick Hits Severe Weather – this is being covered every day in the Gate 15 SUN CISA Establishes Regional Election Security Advisors to Strengthen Front Line Support to the Election Community CISA: Cybersecurity Performance Goals: Sector-Specific Goals President Biden Announces Key Nominees, including Harry Coker, Jr., Nominee for National Cyber Director.  2023 Cofense Phishing Intelligence Trends Review: Q2 CISA, USCG Publish Analysis Report on Findings During 2022 Risk and Vulnerability Assessments CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse Ivanti Releases Security Updates for Endpoint Manager Mobile (EPMM) CVE-2023-35078 Google - The Ups and Downs of 0-days: A Year in Review of 0-days Exploited In-the-Wild in 2022 Categorizing the CISA KEV by Technology Type  
Aug 01, 202331:57
Weekly Security Sprint EP 26.

Weekly Security Sprint EP 26.

In the week's Security Sprint, Andy and Jen talked about the following topics:
Jen’s Cyberthreat Mash-Up
Citrix!

CISA Releases Cybersecurity Advisory on Threat Actors Exploiting Citrix CVE-2023-3519.
New critical Citrix ADC and Gateway flaw exploited as zero-day
Citrix Releases Security Updates for NetScaler ADC and Gateway. Citrix has released security updates to address high and critical vulnerabilities (CVE-2023-3519, CVE-2023-3466, and CVE-2023-3467) affecting NetScaler ADC and NetScaler Gateway.
ACSC: Citrix Products NetScaler ADC and NetScaler Gateway Zero Day Vulnerability
2023-050: Citrix NetScaler Critical Vulnerability. PDF.

MOVEit!

EMSISOFT - Unpacking the MOVEit Breach: Statistics and Analysis.
The tail of the MOVEit hack may be longer than we realize.
Clop now leaks data stolen in MOVEit attacks on clearweb sites.
Clop gang to earn over $75 million from MOVEit extortion attacks
Microsoft expanding cloud logging to give customers deeper security visibility.
CISA: CISA and Microsoft Partnership Expands Access to Logging Capabilities Broadly
CISA: Microsoft to Offer Some Cybersecurity Free After Suspected China Hack

More ransomware!

Coveware Q2 Ransomware Report: Ransom Monetization Rates Fall to Record Low Despite Jump In Average Ransom Payments.
Quarterly GRIT Ransomware Report – Q2 2023. Complete Q2 GRIT Ransomware Report here. “
DOJ merges cyber, cryptocurrency units to go after ransomware attacks
The FBI’s Cynthia Kaiser on how the bureau fights ransomware
The Week in Ransomware - July 21st 2023 - Avaddon Back as NoEscape
Ransomware Roundup - Cl0p
QILIN Ransomware Report
Linux Ransomware Poses Significant Threat to Critical Infrastructure
Between Two Nerds: Shaping ransomware group behaviour (podcast)


New blog posts from CISA!

CISA: Take the First Steps Towards Better Cybersecurity With these Four Goals.
CISA: Evolving CDM to Transform Government Cybersecurity Operations and Enable CISA’s Approach to Interactive Cyber Defense

Jen manifests her Cybersecurity Evangelist to talk scams!

Called a bogus airline customer support number? Google is hustling to fix that
Plane sailing for ticket scammers: How to keep your flight plans safe
Increase in Tech Support Scams Targeting Older Adults and Directing Victims to Send Cash through Shipping Companies
Scams Targeting the Elderly: FBI IC3 Increase in Tech Support Scams Targeting Older Adults and Directing Victims to Send Cash through Shipping Companies
FBI: Tech support scams now use shipping companies to collect cash

Health Preparedness! FACT SHEET: White House Launches Office of Pandemic Preparedness and Response Policy and more on severe weather, climate and health: Mosquitos Are Moving to Higher Elevations—and So Is Malaria.

Tornado damage to Pfizer plant will probably create long-term shortages of some drugs hospitals need
WSJ: The World Bakes Under Extreme Heat
Boiling in Phoenix: City set to break U.S. record for consecutive days over 110 degrees
Texas power use hits record high as heatwave lingers
Heatwave brings health warnings as extreme weather grips globe
The heat index reached 152 degrees in the Middle East — nearly at the limit for human survival
Tokyo Heat Smashes 150-Year Trend as Extreme Weather Bakes Globe
Smoke from Canadian wildfires places 60 million US residents under air quality alerts
Ongoing rounds of rain to keep flash flood risk elevated in northeastern US


QH:

SAVE THE DATE! H2OSecCon Powered by WaterISAC.
United States tops 400 mass shootings in 2023
IBM Report: Half of Breached Organizations Unwilling to Increase Security Spend Despite Soaring Breach Costs. Report overview. PDF in DB.
What’s new in the 2023 Cost of a Data Breach report

New CISA Products Released.

CISA Develops Factsheet for Free Tools for Cloud Environments.
NSA, CISA Release Guidance on Security Considerations for 5G Network Slicing.
New Zealand shooter kills two ahead of Women's Soccer World Cup

Jul 24, 202328:24