The Gate 15 Podcast Channel (Gate 15)
Explore every episode of The Gate 15 Podcast Channel
Dive into the complete episode list for The Gate 15 Podcast Channel. Each episode is cataloged with detailed descriptions, making it easy to find and explore specific topics. Keep track of all episodes from your favorite podcast and never miss a moment of insightful content.
| Pub. Date | Title | Duration | |
|---|---|---|---|
| 30 Jul 2024 | Weekly Security Sprint EP 75. North Korea mischief, and physical security matters | 00:27:23 | |
In this week's Security Sprint, Dave and Andy covered the following topics. North Korea Cyber Threats to U.S. Businesses:
CISA: Resources for Onboarding and Employment Screening Fact Sheet. Resource Materials: Resources for Onboarding and Employment Screening Fact Sheet
Physical Incidents:
Quick Hits
Olympics:
CrowdStrike: Remediation And Guidance Hub: Falcon Content Update For Windows Hosts,
Donald Trump Assassination Attempt: Takeaways from FBI testimony: Trump shooter searched details of JFK assassination and flew drone near rally site
Other items that may be of interest:
| |||
| 18 Oct 2023 | Nerd Out: EP 41. Dave Clark joins to talk about MDM and other nerd topics. | 00:47:08 | |
In the latest episode of Nerd Out, Dave brings in another Dave and fellow Nerd. Dave Clark joins the show to talk all things mis/dis/mal-information (MDM) as well as some other nerd topics. Dave Clark shared his journey from being a linguist in the Army to a sports journalist to working with MDM. He also talked about some of the challenges and then some important steps for individuals and organizations to take to verify the information is as complete as possible. Then taking a break from work, Dave and Dave talked about what they are watching and some of the challenges with some great shows.
Dave Clark is....
| |||
| 04 May 2021 | The Risk Roundtable: EP 19. What becomes of the miscreants? | 00:36:52 | |
A year ago, as the pandemic had taken hold around the world, there was a lot of confusion and uncertainty. And while threats were equally as susceptible to COVID, they ultimately rose to exploit the situation. Now that vaccines are being distributed and the world is slowly reopening, does this change the threat environment? The Risk Roundtable crew discusses this potential, as well as other security matters that individuals and organizations should be on guard for moving into the summer months. Then after the risk roulette discussion, complete with music (thanks Dave), Andy leads the gang in a "get to know you" series of questions. Scams: https://www.ftc.gov/coronavirus/scams-consumer-advice Combatting Ransomware: https://securityandtechnology.org/ransomwaretaskforce/report/
| |||
| 05 Dec 2023 | Weekly Security Sprint EP 45. Physical Security incidents, geo-political considerations, weather updates, and more. | 00:26:00 | |
In this week's Security Sprint, Dave and Andy talk about the following topics.
Terrorism & Extremism
Severe Weather
Geopolitics & Cascading Effects
Quick Hits
| |||
| 18 May 2021 | Nerd Out Security Panel Discussion: EP 13. Cannabis ISAO! | 00:41:52 | |
In the latest episode of Nerd Out, Dave welcomes in Ben Taylor, Executive Director of the Cannabis Information Sharing and Analysis Organization (ISAO). Their conversation looked at the evolution of the industry and the needs that an ISAO can provide to help those in the ever-growing Cannabis industry look at threats and develop strategies to protect their customers and organizations. Ben talked through the announcement of the ISAO and the next steps including offerings on their website and social media platforms. Dave and Ben also looked at the challenges that ISAOs face in getting attention and gaining members, but highlighted the value that they bring and the value of information sharing to the overall strength of the industry.
To learn more about Cannabis ISAO, visit their website: https://cannabisisao.org or check out their social media accounts. Twitter: @CannabisISAO and LinkedIn: @CannabisISAO
Ben Taylor is the Executive Director of the Cannabis-ISAO. Ben also serves as a Risk Analyst to several Information Sharing & Analysis Centers, and has previous security and operations experience as an Army Officer as well as working through the Department of Homeland Security’s Office of Infrastructure Protection. Ben has also spent several years in marketing and partner development roles within the tourism industry, to include working to promote Cannabis tourism in Oakland, California.
| |||
| 04 Sep 2023 | Weekly Security Sprint EP 32. National Preparedness Month, Burning Man, Insider Threat Awareness, Ransomware and more! | 00:30:57 | |
In this week's Security Sprint, Dave and Andy talk about the following topics:
Burning Man. https://www.cnn.com/2023/09/04/us/burning-man-storms-shelter-monday/index.html
Alphabet months begins!
FEMA Advisory: FEMA, Ready Campaign Launch National Preparedness Month (September 1, 2023). September marks National Preparedness Month, the annual recognition set to remind everyone in America how important it is for individuals, families and communities to prepare for disasters and emergencies that can happen at any time. Earlier this year, FEMA Administrator Deanne Criswell announced this year’s theme would focus on preparing older adults and their caregivers ahead of disasters.
NCSC And Federal Partners Focus on “Bystander Engagement” During National Insider Threat Awareness Month 2023. This year’s NITAM campaign focuses on bystander engagement. An engaged bystander is an individual who is aware of concerning behaviors and knows how to act on those concerns appropriately. The NITAM 2023 campaign encourages government and industry employees to recognize and report behaviors of concern to appropriate parties so early intervention can occur and at-risk employees can be connected to resources and assistance if appropriate.
Back to School Scams & Sextortion
Parents reveal teen sons committed suicide after being ‘sextorted’: ‘This is terrorism’
FBI Tech Tuesday - Safe Online Surfing: https://www.fbi.gov/contact-us/field-offices/phoenix/news/fbi-tech-tuesday-safe-online-surfing
FBI PSA. https://www.justice.gov/usao-wdwa/pr/fbi-and-partners-issue-national-public-safety-alert-financial-sextortion-schemes
Ransomware
Subscribe to the SUN! Email Gate15@gate15.global
TribalNet agenda set for San Diego conference
TribalNet Conference and Tradeshow, by TribalHub
Canadian Centre for Cyber Security - Baseline cyber threat assessment: Cybercrime
Quick Hits and Soap boxes.
White House Advisory Group: Water Sector Needs Cybersecurity National Standard. A new article looks at the report and quotes Gate 15’s Jennifer Lyn Walker. “I agree that a specialized workforce is needed,” said Jennifer Lyn Walker, director of Cyber Defense for Gate 15, and director of Infrastructure Cyber Defense for WaterISAC. “The large (better resourced) utilities are more inclined to have specialized staff, although some may not offer truly competitive wages. I believe many (if not most) of the small utilities (less resourced) aren’t even considering specialized staff, let alone the ability to afford them.” PDF report.
U.S. and International Partners Release Report on Russian Cyber Actors Using “Infamous Chisel” Malware; Joint report provides technical analysis of malware targeting Android devices used by Ukrainian military. The malware analysis report provides technical details of a new kind of malware used to target Android devices in use by Ukrainian military personnel.
Andy gets on the soapbox and opines on bias in analysis.
Dave Weatherman Report. Disaster scams. https://www.cisa.gov/news-events/alerts/2023/08/31/cisa-warns-hurricane-related-scams
| |||
| 30 Mar 2022 | Nerd Out Security Panel Discussion: EP23. Ukraine, Outdoor Events and the gang! | 00:50:02 | |
The gang is back together as Bridget Johnson and Joe Levy join Dave on the podcast to catch up on what they've missed while turning their attention to Ukraine and outdoor events. Within Ukraine, the nerdites talked about the effects of the current conflict, TikTok and the evolving information wars to include disinformation and misinformation campaigns on all sides, and what some outcomes may be long term. The gang then turned to thoughts of warmer weather and the upcoming outdoor events and activities. Looking at it through a security lens the Bridget, Joe and Dave looked at some important considerations while also keeping focus on those other events leading up to the 2022 election season. Before wrapping up with some pointed security plugs, the team talked about hurricane predictions and outdoor events to look forward to. Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ | |||
| 01 Nov 2022 | The Risk Roundtable EP 35: Talking elections, pathway to violence, and our Top 5! | 00:42:08 | |
It's never a good thing when Jen takes time and leaves Andy and Dave to their own devices. With Jen away, Andy tried to cover down for her and gave a shout out to all the cyber work being down by great security practitioners. Then the boys dug into hostile events and some of the challenges that individuals and organizations can face, even when they do the right thing. At the same time, there are also inherent responsibilities that we all have in identifying behaviors or contributing to a threat actor's pathway to violence by inaction (Michigan school shooting). Dave and Andy then talked about the upcoming election and all the work that is going to make safe and secure elections. However, there are also some potential risks that could occur in the aftermath. Finally, Dave and Andy have some fun talking about their top 5 (or 50) movies that they just can't turn off when they happen to see them on. Some of the areas covered on the pod include:
| |||
| 19 Jun 2023 | Nerd Out Security Panel Discussion: EP 37. Counter-terrorism, redecorating and more - looking back and looking forward in 2023. | 00:50:32 | |
After a month off, the Nerdies get back together to look at 2023. Dave welcomes back Bridget Johnson and Joe Levy to catch up on what has happened in 2023, and talk about what is surprising, and not so surprising in 2023, as well as look ahead for the rest of the year before getting into some fun summer questions. The topics included a look at the various hostile events, to include inspiration from previous threat actors, climate change and challenges addressing it, protests and demonstrations, as well as a reminder not to forget about international terror threats, how economic conditions can affect the workplace and other security challenges. | |||
| 31 Jan 2023 | Weekly Security Sprint EP 5. Secret Service Report, Hive, attacks on houses of worship, insider threats and more. | 00:25:13 | |
In the latest Security Sprint, Dave and Andy talked about the following topics:
US Secret Service: New Secret Service Research Examines for the First Time Five Years of Mass Violence Data, 25 Jan
Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update
DoJ: U.S. Department of Justice Disrupts Hive Ransomware Variant, 26 Jan
FTC: FTC Finalizes Order with Ed Tech Provider Chegg for Lax Security that Exposed Student Data, 27 Jan
DoJ: Former Special Agent in Charge of the FBI New York Counterintelligence Division Charged with Violating U.S. Sanctions on Russia, 23 Jan
Washington Post: N. Carolina church says it lost nearly $800K in email scam, 28 Jan
Gate 15 SUN, US Section, faith-based incidents, 30 Jan
CISA: JCDC Focused on Persistent Collaboration and Staying Ahead of Cyber Risk in 2023, 26 Jan
Washington Post THE CYBERSECURITY 202: Anne Neuberger discusses work to protect critical infrastructure, 30 Jan
CISA: Secure Your Drone: Privacy and Data Protection Guidance, 27 Jan
Hawaii News Now: After signs are hacked, state warns changing roadwork message boards is illegal, 26 Jan
Risky Biz News: KeePass disputes vulnerability designation for feature that exposes cleartext passwords, 29 Jan
Webinar, REGISTER NOW! Ransomware: Planning and Protecting Your Organization, Recorded Future & Gate 15, 14 Feb: https://go.recordedfuture.com/ransomware-planning-and-protecting-your-organization?utm_campaign=ransomware-webinar&utm_source=gate15&
| |||
| 08 Jul 2024 | Venue Security, The IAVM Podcast Series EP 6: Throwing down the gauntlet with Brendan Farley as we discuss the art and science of crowd management. | 00:38:40 | |
In this episode of Venue Security, The IAVM Podcast Series, Andy Jabbour talks with Brendan Farley, Vice President of Operations & General Manager, San Diego Theaters.In the discussion we address:
“Safety and security is definitely a team sport.” – Brendan Farley, during our podcastAs discussed in the pod, for additional discussion on this topic, see: | |||
| 22 Aug 2022 | The Gate 15 Interview EP 26. Bill Flynn, Homeland Security Expert on Threats, Preparedness, DHS, the Yankees and More! | 01:07:07 | |
In this episode of The Gate 15 Interview, Andy Jabbour speaks with William (Bill) Flynn, the president of Garda Risk Management LLC, specializing in homeland and national security policy and operations with a focus on critical infrastructure security and resilience. Bill is a highly-sought after homeland security expert and is also a partner in The Power of Preparedness (TPOP) an e-learning company that goes beyond stand-up training to provide strategy and tactics to mitigate workplace violence and active assailant threats. He also serves on the board of the Faith-Based Information Sharing & Analysis Organization (FB-ISAO). Bill has served as a Senior Fellow at the George Washington University Center for Cyber & Homeland Security and was among the original leaders at DHS, where he served in a number of key leadership positions and including as the Principal Deputy Assistant Secretary of the Office of Infrastructure Protection (since renamed within what is today, CISA), where he led the coordinated national effort to reduce risk to our nation’s critical infrastructure. Read Bill’s complete bio below!
Follow Bill on LinkedIn! Follow The Power of Preparedness on LinkedIn! Follow The Power of Preparedness on Twitter! @TPOPtraining In the discussion we address: Bill’s career of public service including time in the U.S. Navy, with the NYPD, and at DHS Bill’s ongoing work leading Garda Risk Management and with The Power of Preparedness · Threats, hostile events, behavioral indicators and preparedness Executive security and organizational risk and mitigation Creating a culture of security, the cost of preparedness vs. the costs of recovery, and the “three C’s” The Yankees, national monuments and icons, and much more!
A few references mentioned in or relevant to our discussion include:
The Power of Preparedness: Online Training for Active Shooter Preparedness & Verbal De-Escalation
Customized for Your Industry or Organization
The Gate 15 Hostile Events Preparedness Series (HEPS) and The Power of Preparedness (TPOP)
Faith-Based ISAO & TPOP
Get the White Paper! The Hostile Event Attack Cycle (HEAC), 2021 Update.
NCTC, FBI & DHS: U.S. Violent Extremist Mobilization Indicators 2021 Critical Infrastructure Threat Information Sharing Framework
A Reference Guide for the Critical Infrastructure Community, October 2016
PERSPECTIVE: Mass Shootings Are a Homeland Security Risk; Change starts with an accounting that what has been done – much of it laudable – has not been sufficient to the challenge. (Bill Flynn and Bob Kolasky, in Homeland Security Today, 11 June 2022)
The crisis after the crisis: What grocers can expect after an active shooter incident. Food retail managers should be prepared to handle external communication and support for victims and their families in the aftermath of violence, writes security expert William Flynn.
International Association of Venue Managers (IAVM) FMI - The Food Industry Association The Restaurant Loss Prevention & Security Association (RLPSA)
Homeland Security - Office for Bombing Prevention (OBP)
Homeland Security - Protective Security Advisor (PSA) Program
Homeland Security - Regional Resiliency Assessment Program (RRAP)
On Executive Security, Bill and Andy discussed outspoken leaders and Andy shared comments made by Whole Foods CEO, John Mackey in this recent interview: Whole Foods' John Mackey (Reason, 10 Aug 2022) Gate 15 resources pages
Faith-Based Information Sharing & Analysis Organization Advisory Board
| |||
| 23 Oct 2023 | Weekly Security Sprint EP 39. ISIS call to action, ransomware, and FBI reporting | 00:25:56 | |
In this week's Security Sprint, Dave and Andy talked about the following Topics.
Hurricane season thoughts.
ISIS Calls for Jewish Attacks Around the World. “Terrorist group ISIS has called for violent targeting of Jewish people worldwide in response to the ongoing conflict between Israel and Hamas… Published on Friday in Arabic in Al-Naba, a weekly magazine by ISIS, it advocates for violence and murder against Jewish people worldwide.
Ransomware
New Portman Report Demonstrates Threat Ransomware Presents to the United States. “This report details the attacks by Russia-based ransomware group REvil on three American companies, and the experiences of those companies during the incident response."
CISA, NSA, FBI, MS-ISAC Publish Updated #StopRansomware Guide
UK NCSC: Principles for ransomware-resistant cloud backups; Helping to make cloud backups resistant to the effects of destructive ransomware.
Our new principles to help make cloud backups more resilient; Introducing a new set of NCSC principles to strengthen the resilience of organisations' cloud backups from ransomware attackers.
Canadian Centre for Cyber Security - Social engineering – ITSAP.00.166, Social engineering – ITSAP.00.166 (PDF, 267 KB)
Phishing Guidance: Stopping the Attack Cycle at Phase One
FBI Releases 2022 Crime in the Nation Statistics. The FBI released detailed data on over 11 million criminal offenses reported to the Uniform Crime Reporting (UCR) Program… The FBI’s crime statistics estimates for 2022 show that national violent crime decreased an estimated 1.7% in 2022 compared to 2021 estimates.
Statement from President Joe Biden on Hate Crime Statistics
FBI report: Violent crime decreases to pre-pandemic levels, but property crime is on the rise
Violent crime down, carjackings up, according to FBI crime statistics
FBI: Violent Crime Down To Pre-Pandemic Levels, But Property Crimes Rising
ADL: FBI Data Reflects Deeply Alarming Record-High Number of Reported Hate Crime Incidents in the U.S. in 2022
UCR’s Crime Data Explorer
Quick Hits:
Russia, shifting tactics, fans doubt in election integrity, U.S. says; A new intelligence assessment indicates the Kremlin appears to be expanding its long-running efforts to weaken the world’s democracies
CISA Releases Guidance for Addressing Cisco IOS XE Web UI Vulnerabilities
"The Phantom Hacker:" FBI Phoenix Warns Public of New Financial Scam
CISA: Threat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to Networks
FBI IC3 PSA: Additional Guidance on the Democratic People's Republic of Korea Information Technology Workers
| |||
| 26 Oct 2020 | The Gate 15 Interview EP 5: Elections Security 2020, with the FBI and the Elections Infrastructure ISAC | 01:01:32 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Ben Spear, Director of the Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC) and Al Murray, currently serving as the Assistant Special Agent in Charge over Cyber Investigations at FBI’s Washington Field Office (WFO). In our discussion we address:
Recent election history and security issues;
Threats to the upcoming 2020 election;
What to expect on election day (and after);
Words of wisdom for citizens and elections officials.
Please enjoy this episode of The Gate 15 Interview on Anchor, Apple, Spotify, as well as other locations.
| |||
| 18 Apr 2023 | Nerd Out Security Panel Discussion: EP 36. Making your way into the security profession | 00:39:02 | |
In the latest episode of Nerd Out, Dave took a break from the regular security news discussions and welcomed Alec Davison and April Zupan to talk about their paths to becoming security professionals. The group discussed how they got interested in security and provided some insight into their different paths and inspirations. They also shared some helpful pointers about navigating inside the analytical community, talking to senior leaders or executives, and some activities that ensure they stay on top of the news and latest threat. In between April's eloquent use of vocabulary and Alec's inspirational quotes, Dave interjected and shared some helpful hints as well.
| |||
| 25 Jun 2023 | The Gate 15 Interview EP 36: Chris Anderson, Lumen Technologies on ‘working hard, trying to make a difference,’ the wild west days of DHS, private-public partnership, the glory of coffee, and more! | 00:57:36 | |
In this episode of The Gate 15 Interview, Andy Jabbour visits with Chris Anderson, Principal Advisor, National Security & Emergency Preparedness, Lumen Technologies. Chris Anderson is an incident management and infrastructure protection expert with three decades of government, military, and private sector experience. He is currently the Principal Advisor for National Security & Emergency Preparedness at Lumen. In addition to his role at Lumen, he is the 2023 Industry Chair of the Communications Sector Information Sharing and Analysis Center.Chris previously held a variety of emergency management and national security positions at the Federal Communications Commission and US Department of Homeland Security. He served as the FCC’s Chief of Operations and Emergency Management, leading the Commission’s incident management activities, operations centers, national security coordination, and Continuity of Operations programs. Prior to joining the Commission, Chris worked in critical infrastructure protection at the Department of Homeland Security, serving in a variety of leadership positions in the Office of Infrastructure Protection, including serving as Director of the National Infrastructure Coordinating Center. Chris began his career with a decade on active duty in the U.S. Navy as a helicopter pilot and retired from the Navy Reserve in 2016.Chris is a 2010 graduate of the National War College with a master’s degree in National Security Strategy; he holds a second master’s degree in Management Information Systems from Bowie State University and received his undergraduate degree from the University of Virginia.
| |||
| 17 Aug 2022 | Nerd Out Security Panel Discussion: EP 28. The Nerd Out Two-Third of the Year Awards | 00:37:11 | |
In the latest episode of Nerd Out, Dave goes solo and tackles security awards at the two-thirds part of the year. Looking at the important security issues or challenges of the year, Dave goes through a series of award tied to various pop-culture references before arriving at his two-thirds of the year MVP, if there really is a doubt. Then Dave transitions to a new security book he's reading and a couple shows that are on his list. Enjoy the show!
Book mentioned: The Security Culture Playbook: An Executive Guide To Reducing Risk and Developing Your Human Defense Layer
| |||
| 21 Aug 2023 | Weekly Security Sprint EP 30. Hurricane Hilary and the aftermath (scams), Pride Flag attack, ransomware, and more! | 00:23:14 | |
In this week's Security Sprint, Dave and Andy covered the following topics:
ICYMI last week’s Nerd Out Security Panel Discussion presented the 2nd Annual Two-Thirds of the Year Awards.
Mother Nature and Severe Weather.
Heath Ledger Joker Award. Extreme Heat.
Dennis Green “They are who we thought they were” Award. Mother Nature
Selected links follow, much more being shared with some of our Gate 15 communities.
Hilary Impacting the Southwest. Read More
ESF #14 Cross-Sector Business and Infrastructure Partners Conference Series Concerning Tropical Storm Hilary - FOR WIDE DISSEMINATION. You are invited to join a Cross-Sector Business and Infrastructure partners conference series concerning Tropical Storm Hilary, hosted by the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Emergency Management Agency (FEMA).
§ Date: Daily, starting Monday, August 21st until further notice
§ Time: 3:00 pm Eastern
§ Please click the link below to join the webinar: https://fema.zoomgov.com/j/1614360427
o Local info on Hilary: San Diego, Los Angeles
Hilary releases fury on Southern California
Tropical Storm Hilary causes flooding in SoCal hospital
Hilary’s jagged path: How the storm wound up over Compton and Dodger Stadium
Natural Disasters and Investment Scams – Investor Alert
California Quake Rattled Nerves, but Didn’t Appear to Cause Major Damage
NHC issuing advisories for the Atlantic on TS Gert TS Emily TS Franklin
Key Messages regarding Tropical Storm Franklin
Key Messages regarding Post-Tropical Cyclone Hilary
Winds Push Destructive Fire Through Washington State
As fires rage in British Columbia, more residents prepare for evacuations
Hostile Event. LGBTQ+ Attack. California shop owner shot dead over LGBTQ+ Pride flag displayed at store
Ransomware: As with the above spotlight, selected links follow, much more being shared with some of our Gate 15 communities.
Ransomware Diaries: Volume 3 – LockBit’s Secrets.
Haggling With Hackers: Surprising Lessons From 50 Negotiations With Ransomware Gangs
The Week in Ransomware - August 18th 2023 - LockBit on Thin Ice
Ransomware Roundup – Trash Panda and A New Minor Variant of NoCry
TRACKING RANSOMWARE – JULY 2023
Cuba Ransomware Deploys New Tools: Targets Critical Infrastructure Sector in the U.S. and IT Integrator in Latin America
Cyberattack Still Disrupting Prospect Medical’s Hospitals, Clinic Services
Cyberattack on Popular Property Listing Software Throws Bay Area Real Estate Market into Chaos
Ransomware gang threatens Raleigh Housing Authority months after devastating attack
Bunker Hill Community College discloses May ransomware attack
Quick Hits
Risky Biz News: Twitter to remove block feature: Now completely to the other side of the spectrum, Twitter has announced plans to remove the ability for users to block other users, meaning trolls will be able to harass whoever they want.
FBI IC3 - Cyber Criminals Targeting Victims through Mobile Beta-Testing Applications
Report: Tesla Data Breach Was an Inside Job
Summer Break Isn’t a Vacation for Cybercriminals: Education and Research Organizations are Top Targets According to Check Point Research
Australian Lender Latitude Financial Reports AU$76 Million Cyberattack Costs
Friday Prayers in Washington DC Masjid Muhammad Interrupted by Bomb Threat
Brookline temple swatted
JEWISH CENTER AND SYNAGOGUE IN ATLANTA EVACUATED AFTER BOMB THREAT
Report spotlights 52 US doctors who posted potentially harmful COVID misinformation online
CISA:
CISA and Election Security Partners Hold Tabletop the Vote Election Security Exercise
CISA Releases Infrastructure Resilience Planning Framework Launchpoint
CISA Publishes JCDC Remote Monitoring and Management Systems Cyber Defense Plan
UK NCSC - 'Online safety' vs 'cyber security' - Fiona F explains why 'cyber security' is a vital part of online safety.
From cyber strategy to Implementation: what CEOs and boards need to Know
| |||
| 20 Jul 2021 | Nerd Out Security Panel Discussion: EP 15. Let’s talk about Health! | 00:44:40 | |
In the latest episode of Nerd Out, Dave is joined by everyone’s favorite Crimson Tide enthusiast - Jon Crosson. Jon is the Director of Critical Infrastructure – Vital Services for Gate 15.Jon currently supports the Health Information Sharing and Analysis Center (H-ISAC) as the Director, Special Interest Group Services. H-ISAC is a non-profit organization that is dedicated to protecting the healthcare and public health sector from physical and cyber attacks and incidents through dissemination of trusted and timely information. In the episode, Jon looks at the current security threats facing the health sector and healthcare organizations to include the impact that COVID has had, as well as the battle against mis/disinformation. Dave and Jon then look back at some of Jon's background and how he got in position to be a trusted partner in the community. And finally, turning to one of Jon's true loves, Dave and Jon talk about the upcoming college football season and the outlet for the Crimson Tide.
Prior to Gate 15, Jon was a senior operations specialist and project manager for Battelle Memorial Institute. Jon held various positions supporting the Department of Defense (DOD), Department of Homeland Security (DHS) and the U.S. Nuclear Regulatory Commission.Jon served in the U.S. Army as a Field Artillery Officer from 1999-2003. He is a member of InfraGard and a graduate of the FBI Citizens’ Academy.
Links to Training referenced by Jon in the pod:
FEMA Emergency Management Institute (EMI) Independent Study Course List
| |||
| 15 Apr 2020 | The Gate 15 Pod: EP 5 | 00:41:42 | |
This will be the first in a new podcast offering from The Gate 15 Company. In this episode we welcome security experts Bridget Johnson and Travis Moran as well as Gate 15 Managing Director Andy Jabbour to talk about terrorism, extremism, drones and surveillance measures in the COVID world. Bridget: Homeland Security Today - Twitter: @bridgetcj. HS Today is hosting a webinar on 23 April on domestic extremist motivations, targets and tactics. Travis: Vice President of Operations, Welund North American, travis.moran@welund.com - Twitter: @dronin_on
| |||
| 23 Jul 2024 | Weekly Security Sprint EP 74. Information sharing and resiliency; Crowdstrike, MDM, and Health | 00:27:25 | |
In this weeks Security Sprint, Dave and Andy covered the following topics:
Warm Start:
· FB-ISAO Releases an All-Faiths Analysis of Attacks on U.S. Houses of Worship in 2023.
· New Cyware Survey Reveals Critical Gaps in Cybersecurity Threat Intelligence Sharing and Collaboration.
· Private-public partnership releases new bank resources for cloud computing adoption.
o Financial Sector Cloud Outsourcing Issues and Considerations.
Main Topics:
CrowdStrike Outage:
· CISA: Widespread IT Outage Due to CrowdStrike Update (being updated; update 9:45 a.m., EDT, July 21, 2024)
· Canadian Centre for Cyber Security - Alert - Issue impacting CrowdStrike Falcon EDR
· UK NCSC: Statement on major IT outage
· NZ-NCSC: NCSC statement on global IT outage
· CrowdStrike says significant number of devices back online after global outage.
o Technical Details: Falcon Content Update for Windows Hosts, 20 Jul
· Microsoft: New Recovery Tool to help with CrowdStrike issue impacting Windows endpoints
· CrowdStrike CEO George Kurtz speaks out after failed tech update causes worldwide chaos at airports and banks
· Microsoft says 8.5M Windows devices were affected by CrowdStrike outage
· Brian Krebs: Global Microsoft Meltdown Tied to Bad Crowdstrike Update
· Blue Screens Everywhere Are Latest Tech Woe for Microsoft
· Don’t Fall for CrowdStrike Outage Scams
Donald Trump Assassination Attempt & Associated Physical Security:
· FBI, DHS warn of possible retaliation for attack on Trump.
· Trump’s would-be assassin researched previous mass shooter Ethan Crumbley and his family before attack.
· Gunman Might Have Scoped Out Site Six Days Before Trump Rally.
· Secret Service Arrests Florida Man Threatening to Kill Joe Biden.
· Roswell Man Indicted for Threatening FBI Director Christopher Wray.
· Secretary Mayorkas Delivers Remarks at White House Press Briefing.
· TIME: What We Know—and Don’t Know—So Far About the Trump Rally Gunman
· Militias Are Recruiting Off of the Trump Shooting
Misinfo:
o Conspiracy theories spread wildly after the first assassination attempt on a US president in the social media age
o One in Three Biden Supporters Think Trump Shooting Might Have Been Staged
o 4chan post claiming Secret Service told not to fire on Trump shooter explodes into full-on TikTok conspiracy
o Top Conspiracy Theories Around Trump Assassination Attempt Debunked
Health:
· CDC Confirms Human Cases of H5 Bird Flu Among Colorado Poultry Workers.
· In 2 years since the launch of 988, 10 million contacts have been answered
· Global childhood vaccination hits plateau, with 35 million not fully protected from measles
· UK Covid-19 Inquiry: Resilience and preparedness (Module 1)
Ransomware:
· CDK hack shows SEC disclosure standards are unsettled
· ReliaQuest: Ransomware and Cyber Extortion in Q2 2024
· California officials say largest trial court in US victim of ransomware attack.
· Two Foreign Nationals Plead Guilty to Participating in LockBit Ransomware Group
Quick Hits:
· China seeks space supremacy and to exploit it ‘to our detriment’: US intelligence head
· US to issue proposed rules limiting Chinese vehicle software in August
· Fragmented and multiplied cybercriminal landscape, warns new Europol report
· Europol: Internet Organised Crime Threat Assessment (IOCTA) 2024.
· Patagonia invaded privacy by using AI to analyze customer service interactions, lawsuit alleges
· CISA Releases Playbook for Infrastructure Resilience Planning.
· Software Bill of Materials (SBOM) FAQ Resource.
· Why the Pentagon Is Warning That ISIS Attacks Could Double This Year
· US says ISIL trying ‘to reconstitute’ amid uptick in Syria, Iraq attacks
· Neo-Nazi group demonstrates on Tennessee overpass
| |||
| 06 Jul 2021 | Nerd Out Security Panel Discussion: EP 14. Reports Galore! | 01:01:10 | |
In the latest episode of Nerd Out, Dave is joined by some old friends, Joe and Bridget, while they welcome in Amanda Mason to the panel where they discuss the latest series of reports from the FBI, the U.S. Senate, and from across the pond and the Manchester Arena bombing inquiry. They discuss the value of these type of reports, and the lessons that can be learned from the observations. Amanda then shares some of the insight from the January 6th incident from a first-hand view of the situation as it unfolded. After going through the reports and calling out some of the challenges highlighted the panel goes through a rapid fire session with questions ranging from security trends, ransomware (sorry Jen), and what the panel is reading or watching. The reports discussed include:
Active Shooter Incidents 20-Year Review, 2000-2019
Examining the U.S. Capitol Attack: A Review of the Security, Planning, and Response Failures of January 6
Manchester Arena Inquiry
Dave Pounder is a Senior Risk Analyst for Gate. Twitter: @dpounder; email: david@gate15.global
Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/
Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ
Amanda Mason is currently serving as the Vice President of Intelligence for the Related Companies. Her role is to integrate information from various sources and bridge the gap of cyber threats, national security, local law enforcement, physical security and business intelligence. In her role, she provides threat information and solutions to the various subsidiaries under Related, which include Real Estate, Infrastructure, Manufacturing, Hospitality, and International Finance. She is also a reservist currently serving as the Director of Intelligence for the District of Columbia, Air National Guard. With over 24 years of service, Amanda has held various positions in the Intelligence and Special Operations Communities.
| |||
| 25 Apr 2023 | Weekly Security Sprint EP 16. QHSR, a Faith-Based intervention, protests, and cannabis! | 00:22:31 | |
In the latest Weekly Security Sprint, Dave and Andy discussed the following topics. DHS!
See Something, Say Something – Possible Faith-Based Attack Averted & FB-ISAO Turns Five!
FB-ISAO: Five Years Strong. “Happy Anniversary to the Faith-Based Information Sharing and Analysis Organization. 18 April 2023, marks five years of serving the community of faith with information, analysis, and capabilities to help reduce risk while enhancing preparedness, security, and resilience across all-faiths and all-hazards. Our members include Houses of Worship, Charities, Faith-Based Schools, and their affiliated organizations. We are five years strong!” 4-20! Cannabis ISAO Shares Cybersecurity Best Practices for the Cannabis Industry Quick Hits:
Ransomware – March Was a Record Setting Month & Dragos Ransomware Report
Blended Threats – Critical Infrastructure Space Asset Disruption Impacts Farming Operations New FBI Elder Fraud Report 3CX – Attack x Within x Attack
SBOM, SBOM, You’re my SBOM!
Chinese Police Outposts
| |||
| 27 Nov 2023 | The Gate 15 Interview EP 40: Akmal Ali on the four core tenants of effective security management, dodging wrenches, and enjoying the Monday mornings! | 00:47:23 | |
In this episode of The Gate 15 Interview, Andy Jabbour welcomes Akmal Ali, Founder & CEO of Aluma and inOrbit. Formerly serving as the Deputy Director of the SAFETY Act program within U.S. Department of Homeland Security, Akmal was a key contributor in expanding the scope of the program, as the department considered how to responsibly leverage the granted protections to further its mission to protect the homeland. These efforts included the expansion of for security services, cybersecurity and venue security-related applications from the private sector. The impact of this expansion is still a hallmark of the program today, as operators of many high-profile venues rely upon and engage with DHS in seeking SAFETY Act protections. At DHS, Akmal participated in extensive intra- and inter-agency collaboration with other government agencies to include the Transportation Security Administration, Customs and Border Protection, Domestic Nuclear Detection Office, U.S. Department of Defense, U.S. Department of Energy, and the Federal Aviation Administration. As a result of this experience, Akmal was exposed to a wide range of industries and perspectives that helped forge the underlying principles for how Aluma serves its clients today. Since departing DHS in 2011, Akmal has carried those ideals with him as he’s worked some of the country’s most high-profile and innovative companies. Akmal is based in the Washington, DC area.
Akmal on LinkedIn.
In the discussion we address:
Akmal’s background, from Afghanistan to Jacksonville to Washington, D.C.
The SAFETY Act, venue security, resilience and risk management
Akmal’s companies, Aluma and inOrbit (and the great story of that name)
Volunteering with the International Association of Venue Managers, IAVM’s Academy for Venue Safety and Security and serving with “The Avengers of Security Professionals” including Brad Mayne, Mark Herrera, Joe Levy, Alex Keen
Akmal shares the four core tenants of effective security management
Dodgeball, Patches O'Houlihan, the Detroit Lions and the Jacksonville Jaguars, great pizza, great movies, a dip into the philosophy of Akmal, and more!
A few references mentioned in or relevant to our discussion include:
Aluma
inOrbit
DHS: The Office of SAFETY Act Implementation
| |||
| 06 Nov 2023 | Weekly Security Sprint EP 41. Normalizing violent threats, Critical Infrastructure Security and Resilience month, cybersecurity resources and tools. | 00:27:41 | |
In this week's Security Sprint, Dave and Andy talked about the following topics:
Physical Security. Increasing acceptance of threats of violence
MAGA Commentator Wants People to Shoot Charity Workers Assisting Migrants
'Be looking over your shoulder': MAGA man arrested for threats against Fani Willis
Threats to U.S. senator amid spike in anti-Jewish, anti-Muslim activity; U.S. officials say they are responding to a rise in threats against Arab, Jewish and Muslim communities as Gaza war intensifies
DOJ: Nevada Man Arrested And Charged For Making Threats To United States Senator
Vehicle Ramming. Nuclear Power Plant. https://www.nbcnews.com/news/us-news/police-searching-suspect-drove-fence-south-carolina-nuclear-station-at-rcna123489
CISA Security Planning Workbook. https://www.cisa.gov/sites/default/files/2023-10/CISA_AASB_Security_Planning_Workbook_508_Compliant_20230929.pdf
US Senate Hearing: Threats to the Homeland
Secretary Mayorkas Testimony to Committee on Homeland Security & Governmental Affairs
FBI Director Wray: Threats to the Homeland
Cybersecurity.
CISA Launches Critical Infrastructure Security and Resilience Month 2023. The Cybersecurity and Infrastructure Security Agency (CISA) announced the kickoff of Critical Infrastructure Security and Resilience Month. Yesterday, the White House issued a Presidential Proclamation to commemorate November as Critical Infrastructure Security and Resilience Month and called on Americans to recognize the importance of this month to enhance our collective national security and resilience… This November, CISA is asking everyone to Resolve to be Resilient by preparing and investing in resilience today, so that, as a nation, we can recover quickly in the event of an incident tomorrow. We are highlighting practices critical infrastructure organizations can implement to recover rapidly in the aftermath of any significant disruption:
Assess Your Risk.
Make a Plan and Exercise It.
Continuously Improve and Adapt.
NCSC. https://www.ncsc.govt.nz/news/record-high-financially-motivated-cyber-activity/
Zero-Day. https://cyberscoop.com/cisa-zero-day-ransomware/
Quick Hits
Maine gunman’s family contacted police months before massacre, sheriff says
NIJ: Five Things About Protecting Against Mass Attacks
FACT SHEET: Biden-Harris Administration Convenes Third Global Gathering to Counter Ransomware
2022 RTF Global Ransomware Incident Map: Attacks continue worldwide, groups splinter, education sector hit hard w reference to our good friends at eCrime – the single best source for ransomware information
U.S. officials hold their breath for Iranian cyberattacks
Man Armed with Weapons Found Dead at Colorado Amusement Park, Investigation Underway; Authorities said that the 22-year-old suspect wore body armor and had with him a semi-automatic rifle and IEDs
FIRST has officially published the latest version of the Common Vulnerability Scoring System (CVSS v4.0)
FBI Tech Tuesday: Beware of Scams on Popular Peer-to-Peer Payment Apps
SEC Charges SolarWinds and Chief Information Security Officer with Fraud, Internal Control Failures
Citrix Bleed: Two ransomware groups now exploiting bug for initial access
“This vulnerability is now under mass exploitation.” Citrix Bleed bug bites hard; By some estimates, 20,000 devices have already been hacked.
Unveiling Socks5Systemz: The Rise of a New Proxy Service via PrivateLoader and Amadey
GCA Launches a User-friendly Cybersecurity Tools Wiki
NZ NCSC: The NCSC announces record-high financially motivated cyber activity
| |||
| 28 Aug 2023 | The Gate 15 Interview EP 38: Jeff Troy, President, Aviation ISAC, on public service, cybersecurity, understanding threats (and… colonizing the ocean?) | 00:44:33 | |
In this episode of The Gate 15 Interview, Andy Jabbour visits with Jeff Troy, President, CEO at Aviation Information Sharing and Analysis Center (A-ISAC). Over the past five years, Jeff has led the Aviation ISAC, a trust-based community focused on the sharing of threat intelligence and best practices. He has developed the strategic plans, driven the team’s expansion of services and overseen extensive growth in membership. He established relationships with global regulators, industry associations and private sector companies to drive cyber risk reduction across the aviation eco-system. He co-authored a white paper on Ransomware and continues to partner with international groups on the ransomware threat. Concurrently, Jeff is on the National Defense ISAC Board of Directors. Jeff spent 25 years as a Special Agent of the FBI. He served as Chief, Cyber Division, and retired as the Deputy Assistant Director for Cyber National Security and Cyber Criminal Investigations.
· Jeff on LinkedIn.
· Email: jtroy@a-isac.com
· Web: a-isac.com
In the discussion we address:
· Serving in the FBI and ideas for young people thinking about their futures
· Transitioning from the public sector to the private sector
· Key ideas on how to building a successful information sharing community
· Understanding how to think about threats
· Responsibly and thoughtfully reducing risk and building reslience
· Blended Threats
· The importance of patching and baking security into technology
· The upcoming Aviation ISAC Summit in Ireland
· The Ocean State
· Deep ocean colonies
· More!
Some links from our discussion include:
· Aviation Cybersecurity Summit, 12-14 Sep 2023 in Dublin, Ireland
· NBC News: FBI says mastermind of botnet nabbed, 27 Jul 2010
| |||
| 18 Dec 2023 | The Gate 15 Interview EP 41. Cyware’s Tom Stockmeyer on info sharing, threat intel, collective defense, popcorn and The Big House | 00:46:48 | |
In this episode of The Gate 15 Interview, Andy Jabbour welcomes Tom Stockmeyer, Cyware’s Director, Enterprise East, ISAC's and Federal. Cyber security leader with experience in helping threat sharing communities such as ISACs and ISAOs and their Member companies improve the fidelity of their intel and accelerate threat intel sharing amongst Members. Tom served in the Marine Corps from 1979 to 1983. He has an MBA from the Michael Coles School of Business, Kennesaw University. Tom has held several executive positions, has served on numerous technology Boards.
In the discussion we address:
A few references mentioned in or relevant to our discussion include:
| |||
| 10 Apr 2022 | The Cybersecurity Evangelist: Ep 18 – Space Systems are Critical Infrastructure for Critical Infrastructure | 00:26:26 | |
A chat with Erin Miller, Executive Director of Space ISAC, from the 37th Space Symposium Have you ever thought about just how much reliance there is on space systems and how satellites – tons of them – are actually flying computers with IP addresses? In an episode that is out of this world, the Gate 15 Podcast Channel welcomes back a very special guest – Erin Miller, Executive Director of Space ISAC on the 18th episode of The Cybersecurity Evangelist – to talk about all that and more from the 37th Space Symposium at The Broadmoor in Colorado Springs. From an event that Erin called, “bigger than Disneyland,” we talked about the importance of securing space systems, the pivotal role that Space ISAC is playing to increase the cybersecurity posture for the global space community, and the general passion for cybersecurity among attendees and speakers at the symposium. Resources mentioned in this episode:
| |||
| 02 Feb 2021 | The Risk Roundtable: EP 16. Singapore, Emotet, and the Roulette. | 00:47:41 | |
After opening up about their love of Groundhog day, the holiday and movie, the Risk Roundtable gang gets into the meat of their security discussions around the latest arrest in Singapore (Hostile Events), upcoming significant events to factor into consideration, and the global takedown of Emotet (the malware, not a weird allusion to the Egyptian god). Then in the Risk Roulette, which Dave still does not have good music for, the group discussions if there is anything to consider when looking at the Robin Hood / Wall Street Bets activity last week and the Capitol Hill riot, as well as the lingering effects of Solar Winds. The gang wraps it all up with some personal preferences before Andy tries to convince himself the Lions are still a football team. Some of the links referenced in the show include: EMOTET: https://www.justice.gov/opa/pr/emotet-botnet-disrupted-international-cyber-operation https://www.eurojust.europa.eu/worlds-most-dangerous-malware-emotet-disrupted-through-global-action https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/emotet-botnet-takedown-what-you-need-to-know/ https://www.bleepingcomputer.com/news/security/fonix-ransomware-shuts-down-and-releases-master-decryption-key/ “Why Joe Biden Can’t Bring His Peloton to the White House” – Popular Mechanics (https://www.popularmechanics.com/technology/security/a35190713/joe-biden-peloton-white-house-security-risk/) Is Joe Biden’s Peloton a cybersecurity risk? Don’t sweat about it - Graham Cluley (https://grahamcluley.com/is-joe-bidens-peloton-a-cybersecurity-risk-dont-sweat-about-it/) | |||
| 25 Jan 2022 | Nerd Out Security Panel Discussion: EP 21. Quarantine and Colleyville Attack | 01:02:01 | |
In the latest episode of Nerd Out, Dave starts off by talking about his recent quarantine experience in Costa Rica (21 days!) before welcoming in a panel to discuss the Colleyville, Texas synagogue attack. Bringing in Mayya Saab, Seth Ozer, and Ed Heyman the panel went through the hostile event and looked at initial reactions, what can be learned from this situation, and some of the key takeaways. The team then stressed the importance of training in this situation, but also discussed several low cost options and ways to make their location more secure. Mayya Saab is the Executive Director of the Faith-Based Information Sharing and Analysis Organization (FB-ISAO); Seth Ozer is Senior Consultant with Woodstone Consulting, LLC; Ed Heyman is the co-chair of the FB-ISAO Organizational Residence Group | |||
| 08 Feb 2023 | The Risk Roundtable EP 38: The 4 R's - ransomware, reporting, romance scams and Paul Rudd! Not to mention all-hazards! | 00:52:23 | |
In the latest episode of the Risk Roundtable, Andy does double duty, first welcoming Jen to get the latest on the ransomware threats, before bringing Dave in to talk about weather and natural disasters. Jen kicked things off talking about all things ransomware to include preparedness items, the recent Hive takedown, the importance of reporting, and ways to protect yourself. Dave then joined Andy to talk about the third-wheel in the all-hazards preparedness model - weather and natural disasters, especially in light of the recent earthquake in Turkey. The roundtable took a split approach to the end of pod questions talking about marathon's, some show dilemmas and the arc of Paul Rudd!
Ransomware and Cyber News:
| |||
| 25 Oct 2021 | The Gate 15 Interview EP 16. Erin Miller, Executive Director, Space ISAC. Securing Space Infrastructure (and terrestrial critical infrastructure too!) | 00:33:22 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Erin Miller, Executive Director for Space ISAC (https://s-isac.org). “The Space ISAC serves to facilitate collaboration across the global space industry to enhance our ability to prepare for and respond to vulnerabilities, incidents, and threats; to disseminate timely and actionable information among member entities; and to serve as the primary communications channel for the sector with respect to this information.” Erin on Twitter (@erinmarmiller). Erin on LinkedIn (@erinmarlenemiller). In the discussion we address:
Please enjoy this episode of The Gate 15 Interview podcast on Anchor, Spotify, Apple, Google, as well as other locations accessible via the Anchor link or almost anywhere you listen to your favorite podcasts.
| |||
| 18 Sep 2020 | The Cybersecurity Evangelist: EP3 - "Am I Doing Enough?" Part 1 | 00:40:59 | |
I am joined by Shay Trembley on the third episode of The Cybersecurity Evangelist (TCE). Shay and I discuss practical tips to the question “Am I doing enough?” We begin our chat with a very real-world incident that nearly cost a small-town water utility $3.2M in fraudulent wire transfers. Then we make a quick nod to two very “human-oriented” awareness initiatives before wading in to what I am calling on this episode, “the 5 P’s of basic cybersecurity” to help make sure you ARE doing enough! Resources discussed on this episode: Mac Help for Mom (the content has not been updated in awhile, but is still useful for “mom” ;-) ) National Insider Threat Awareness Month National Cyber Security Awareness Month Sun Tzu’s The Art of War - For more discussion on The Art of War and cybersecurity, you might enjoy this post, Sun Tzu’s ‘The Art of War’ for Cybersecurity | |||
| 02 Apr 2024 | The Gate 15 Interview EP 44: Faith-Based ISAO and DHS CISA on partnership, risk reduction, pizza MREs, and some great rock n’ roll | 01:07:47 | |
In this episode of The Gate 15 Interview, Andy Jabbour welcomes Mayya Saab, Executive Director, Faith-Based Information Sharing & Analysis Organization (FB-ISAO), Susan Schneider, presently detailed as Associate Director, Non-governmental Engagements, with the DHS Office of Partnership and Engagement, and Daniel Avondoglio, with the Office of Security Programs at CISA.
Mayya on LinkedIn.
Susan on LinkedIn.
Daniel on LinkedIn.
Those who want to engage with the DHS Office of Partnership and Engagement may email ngoengagement@hq.dhs.gov.
This discussion is not limited in only being relevant to the faith-based community but addresses considerations and ideas relevant to the broader community.
During the podcast, when discussing 2023 Threat Data, Andy noted that it is possible that mosques came under attack more frequently than the data suggested. Out of a total of 1027 incidents, mosques were targeted 5% of the time. That percentage, 5%, accounts for the overall number of mosques in the United States and correctly reflects the percentage of mosques that were targeted in 2023.
What is FB-ISAO and what DHS is doing for the faith-based community.
The general threat environment and how current geopolitical events are impacting that.
Private-Public Partnership.
Mitigating Risk.
Resources!
Connecting. Planning. Training.
We play Three Questions and talk summer, food and music!
And more!
FB-ISAO
CISA
You can find more information about what the FBSAC is here Faith-Based Security Advisory Council | Homeland Security (dhs.gov) and what they are working on here: Taskings to FBSAC from DHS Secretary | Homeland Security
Protecting Houses of Worship | Cybersecurity and Infrastructure Security Agency CISA
Resources for Leaders of Faith-Based Communities, Organizations, and Institutions | Homeland Security (dhs.gov) This website provides leaders of faith-based communities, organizations, and institutions resources across DHS to prepare for and respond to a range of public safety challenges.
FB-ISAO: The 2023 Threat Data in Review, 12 Feb
FB-ISAO: What We Learned About Ransomware Resilience, 20 Feb
Within this website is a fact sheet with resources on training, services, and grants. Resources for Community Organizations and Service Providers | Homeland Security (dhs.gov)
The DHS Center for Faith-Based and Neighborhood Partnerships recently conducted a Spring Religious Observances Threat Briefing, here is a link to news and events of the center for additional information and past webinars: News and Events from the DHS Center for Faith-Based and Neighborhood Partnerships | FEMA.gov
Secure Our World Tip Sheets (Punjabi) | CISA recently translated cyber products into Punjabi.
National Critical Functions
Several recent Gate 15 podcasts addressed the Lakewood Church shooting, including:
Special Podcast. Lakewood Church Shooting with Faith-Based ISAO
Nerd Out EP 45. Venue security, extremist news, and what to look for in 2024.
Weekly Security Sprint EP 53. A Super Bowl amount of information – Church shooting, AI (good and bad), and much more.
The Gate 15 Interview with Kirk Cerny: Security, old wagons, leadership integrity, Wyoming, and… the afterlife?
“We are fundamentally an Agency of partnerships”“there’s no such thing as a small act of hate”- two quotes shared in the podcast, both attributed to Secretary of Homeland Security, Alejandro Mayorkas.Two notes.In the discussion we address:The QR code and associated web address below are for CISA’a “Active Assailant Security” list-serve, managed by CISA’s Active Assailant Security Branch, through the GovDelivery platform. We encourage those interested in the topic of “active assailant security” to scan the QR code or go to this web site and subscribe to receive relevant products and announcements as they become available.A few references mentioned in or relevant to our discussion include:
| |||
| 24 Jun 2024 | The Gate 15 Interview EP 47. ENCRYPTION, part 1. A conversation with Sharon Polsky and Hanna Bozakov: A magic key to backdoor encryption can’t exist in a free and open society. | 01:02:23 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Sharon Polsky and Hanna Bozaov in the first of a two-part series on encryption. All three participants are members of the Global Encryption Coalition.
Sharon Polsky. Sharon joins us from Canada. She is president of the Privacy and Access Council of Canada, and has most recently testified at Parliamentary and Senate committees, and spoke the 2023 IGF in Kyoto. A brief bio is available here. Sharon on LinkedIn.
Hanna Bozakov. Hanna joins us from Germany. Hanna is with Tuta Mail, the encrypted email service from Germany, formerly Tutanota. Together with Tuta, she fights for our right to privacy and freedom of speech. Hanna on LinkedIn.
Encryption 101: What it is and why is it important.
The Global Encryption Coalition and why they’re involved.
Law Enforcement & legislation in Canada, Europe and broadly.
Best privacy practices for individuals and organizations.
Recommendations for law enforcement and legislators
Three Questions!
In the discussion Sharon, Hanna and Andy discuss:“There is no way to implement such proposals in the context of end-to-end encrypted communications without fundamentally undermining encryption and creating a dangerous vulnerability in core infrastructure that would have global implications well beyond Europe” – Meredith Whittaker, President, Signal, in a public blog post, 17 Jun 2024, in response to controversial European Union legislative proposal to scan the private messages of citizens in a bid to detect child sexual abuse material (CSAM).
“Politicians must understand that the magic key for law enforcement to unlock encrypted data will never exist. There are too many examples in history that show how vulnerabilities that should have been only known to law enforcement got exploited by Chinese hackers, by Russian state hackers. So yes, criminals use encryption to hide their criminal activities but this does not justify outlawing encryption for everyone. If we do this the Internet as a whole will become so insecure… if you want to live in free and open democracies - not in a Stasi like country where everything is monitored - we must accept there is no easy solution. Our freedom requires privacy and thus encryption. So one thing is for sure - encryption must remain secure, otherwise the bad actors will have already won.” – Hanna Bozakov, Tuta Mail, in our interview, 18 Jun 2024
Selected links:
Global Encryption Coalition. The Global Encryption Coalition (GEC) was founded in 2020 by the Center for Democracy & Technology, Global Partners Digital and the Internet Society and now has over 350 members.
GEC members
The Road to Digital Hell Is Paved With Good Intentions, 15 May 2024
Europol: European Police Chiefs call for industry and governments to take action against end-to-end encryption roll-out, 21 Apr 2024
Europol: Equilibrium between security and privacy: new report on encryption, 10 Jun 2024
TechCrunch: Stop playing games with online security, Signal president warns EU lawmakers, 17 Jun 2024
Tuta Mail: German government publishes law to guarantee ‘right to encryption.’ 25 Mar 2024
ASIS: Legal Report: Weakening Encryption Would Threaten Right to Privacy, European Court Rules, 22 May 2024
Tuta Mail. “Tuta is the world’s most secure email service, easy to use and private by design. You get fully encrypted calendars and contacts with all our personal and business email accounts. Secure, green and ad-free. Email to feel good about.”
Some of the organizations Sharon is involved in:
President — AMINAcorp.ca
President — Privacy and Access Council of Canada
Vice-Chair, Digital Governance Council Technical Committee for Privacy & Access Control Standards
Vice-Chair, Digital Governance Council Technical Committee for Canadian Information Privacy Protection Framework
PbD — Privacy By Design Ambassador
| |||
| 04 Jan 2021 | The Risk Roundtable: EP 15. Nashville, Solar Winds and more! | 00:48:56 | |
The Risk Roundtable gang kicks off 2021 with two events that ended 2020 - the Christmas Day bombing in Nashville and the Solar Winds cyber event. Andy, Jen and Dave go through the incidents and look at the responses in each instance as well as what may come of it moving forward in 2021 though maybe no lizard people (Shoutout to "V"!). Then in the Roundtable Roulette, Dave brings up how to deal with dis/misinformation while Jen reminds everyone that new year doesn't mean that we can forget about our stable of cyber threats, most notably Ransomware which continued to evolve throughout the year. Finally, with it being a new year, the gang looked at personal and professional goals such as Dave's desire to read more, Jen completing her "she-shed" and Andy's desire to be more like Dave.
Andy's reference to Russian Hacking: https://www.nytimes.com/2021/01/02/us/politics/russian-hacking-government.html
| |||
| 16 Mar 2021 | Nerd Out Security Panel Discussion: EP 11. Reopenings, Protests, and the future of Conspiracy | 00:40:33 | |
In the latest episode of Nerd Out, Dave and his merry band of nerdies, Bridget, Travis, and Joe, look at the latest news around the reopening and what organizations need to be on guard for as crowd sizes and capacity limits will test the ongoing health pandemic. Then the group looks at the way threat actors may respond. Will it be a target of opportunity or will new security measures be disruptive enough. Next, the panel looked at recent protests, and the potential for future protests (did people really forget about May Day!) and what ways they may change in a reopened world. Finally, what is the future of conspiracy theories and the movements that were charged over the past several years? The group then lightened it up a bit and went through some lightning round questions and discovered that the Snyder Cut really isn't a thing because no one particularly cared for it in the first place to even know it was a thing. Dave Pounder is a Senior Risk Analyst for Gate. Twitter: @dpounder; email: david@gate15.global Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Travis Moran is the Assistant Deputy Director, Critical Infrastructure Protection & Physical Security. Twitter: @dronin_on; email: tmoran@securecommunitynetwork.org Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ | |||
| 21 Apr 2022 | Nerd Out Security Panel Discussion: EP24. NYC, Sweden and More. | 00:54:30 | |
There was no shortage of topics for the Nerd Out gang to get into this month as Dave, Bridget and Joe dug into recent events. Starting off with some follow ups to hurricane predictions, outdoor festivals, and Piers Morgan (is it marketing or misinformation), the team batted around some of some of the challenges with these areas and some recent publications that can help teams plan for moving forward. Then the nerds really got into some great discussions around monitoring and situational awareness around recent incidents in NYC (subway shooting) and Ohio (arrest of security guard), as well as the escalated protests around the Quran burning in Sweden and if organizations need to think about copy-cats or a revival of protests and demonstrations this coming summer. Wrapping up with an attempt to be fun, the gang just showed how big of nerds they are yet still managed to give some suggestions for light-hearted shows or materials.
Discussed on the pod:
Conspiracy Theories: https://www.npr.org/2022/04/20/1093698123/online-conspiracy-theories-are-bleeding-into-all-parts-of-georgias-politics
AstroWorld Report: https://gov.texas.gov/news/post/governor-abbotts-texas-task-force-on-concert-safety-releases-final-report
Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/
Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ
| |||
| 22 Dec 2020 | Nerd Out! Security Panel Discussion: EP 8. Looking back to look forward and holiday goodies! | 00:57:33 | |
In this year end Nerd Out Security Panel Discussion podcast, the gang takes a look at the events of 2020 and the impacts they had on individuals and organizations and attempted to pull out lessons to be learned as we get ready to kick off 2021. But before digging into the topics, Bridget shared some personal news related to the impacts of COVID. The group then built upon Bridget's moving account and discussed that while COVID obviously dominated the news, there were other security issues that caused disruptions and may have gone overlooked - or maybe not. The discussion then took a detour and went into some lighter, jovial discussions around food choices around the perfect holiday meal, the team passes out some security resolutions and reminders to focus on in the hope of starting 2021 on a better foot. Thanks to all the listeners and followers - 2020 gave us the opportunity to kick off this podcast channel and we look to keep security at the forefront of these discussions in 2021 and beyond! Happy holidays!
Bridget's article can be found here: https://www.hstoday.us/subject-matter-areas/emergency-preparedness/my-mom-died-of-covid-19-and-disinformation-was-the-virus-accomplice/
Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/
Travis Moran is the Assistant Deputy Director, Critical Infrastructure Protection & Physical Security. Twitter: @dronin_on; email: tmoran@securecommunitynetwork.org
Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/o/homeland-security-today-30028526516). Twitter: @BridgetCJ
| |||
| 10 Jun 2024 | Venue Security Pod EP 5. Eric Neill talks about security! Saying “hello,” the importance of communications, de-escalation and how to get better every day. | 00:26:45 | |
In this episode of Venue Security, The IAVM Podcast Series, Andy Jabbour talks with Eric Neill, Director of Theatre Operations at the Boch Center in Boston. Eric as worked in Performing Arts Venues for the past 25 years in Boston and NYC. He has over 25 years of security management experience specializing in event security and executive protection. Eric is the holder of many other security and life safety certificates including Executive Protection from LaSorsa & Associates and Emergency Trauma Response and is a certified instructor of the ALIVE Active Shooter. Eric holds memberships in American Society for Industrial Security (ASIS), National Fire Protection Association (NFPA) and International Association of Venuw Managers (IAVM) where is a graduate of the Academy of Venue Safety and Security and is currently the Chairman of Performing Arts Security & Safety Committee. Mr. Neill is honored to have received the National Defense Service Medal while serving in the United States Coast Guard and the Hero’s Among Us Award in 2012 where he was honored at the TD BankGarden and Boston’s City Hall. In the discussion we address: | |||
| 14 Feb 2024 | Special Podcast. Lakewood Church Shooting with Faith-Based ISAO | 00:43:18 | |
In this special podcast, Andy welcomes in Dave and key members of the Faith-Based Information Sharing and Analysis Organization (FB-ISAO) to talk about the Lakewood church shooting. They looked at how the event unfolded, security processes, and lessons learned. Guests include: Mayya Saab, the Executive Director of FB-ISAO Ed Heyman, Co-Chair of the FB-ISAO ORG Phil Froehlich, Co-Chair of the FB-ISAO ORG | |||
| 09 Jul 2024 | Weekly Security Sprint EP 72. Sequel week - hurricanes, FBI reports, ransomware | 00:28:18 | |
In this week's Security Sprint, Dave and Andy covered the following topics: DHS Announces $18.2 Million In First-Ever Tribal Cybersecurity Grant Program Awards. “For far too long, Tribal Nations have faced digital and cybersecurity threats without the resources necessary to build resilience,” said Secretary of Homeland Security Alejandro N. Mayorkas. Main Topics: Beryl!! & Hurricane Preparedness. Port of Corpus Christi announcement. https://portofcc.com/hurricane-beryl-impact-to-the-port-fully-transitioned-to-post-storm-recovery/ Airline impacts. https://www.cbsnews.com/news/hurricane-beryl-houston-texas-travel-flights-airlines/ Ransomware Ransomware Attack Demands Reach a Staggering $5.2m in 2024 Risky Biz News: Ransomware attacks increase hospital mortality rates Risky Biz News: A ransomware attack is putting lives at risk across South Africa Halcyon Whitepaper: What CFOs Should Know about Ransomware FBI Helps Public to Recognize Signs of Concerning Behavior https://www.fbi.gov/news/stories/behavioral-analysis-unit-asks-public-to-talk-to-someone-you-trust-if-you-notice-concerning-behaviors Microsoft: Combatting AI Deepfakes: Our Participation in the 2024 Political Conventions CDC Reports Fourth Human Case of H5 Bird Flu Tied to Dairy Cow Outbreak Quick Hits: Another far right group marches through downtown Nashville Pa. Capitol evacuated over emailed bomb threat 'Local Residents' Terrorizing City Council Meetings Were Actually Overseas, Feds Allege Europol: Taking action against antisemitism – close to 2 000 pieces of content flagged for removal Fifty violent attacks shock France ahead of crunch vote A Hacker Stole OpenAI Secrets, Raising Fears That China Could, Too Europol coordinates global action against criminal abuse of Cobalt Strike CISA: Guide to Operational Security for Election Officials | |||
| 23 Jan 2024 | Weekly Security Sprint EP 50. Uvalde Report, Sextortion, Ransomware and new Resources | 00:23:33 | |
Dave and Andy discussed the following topics:
New Tribal-ISAC podcasts!
Raise Your Tribes Cybersecurity IQ: Part 1
Raise Your Tribes Cybersecurity IQ: Part 2
CISA Releases 2023 Year in Review!
Uvalde. Justice Department Releases Report on its Critical Incident Review of the Response to the Mass Shooting at Robb Elementary School in Uvalde, Texas.
Ransomware
Ransomware Resilience: You can’t afford _not_ to exercise!
Check Point Research: 2023 – The year of Mega Ransomware attacks with unprecedented impact on global organizations
New ransomware:
Pings Ransomware
Slug (via X, victim claimed in today’s ransomware listings)
Insane (via X, victim claimed in today’s ransomware listings)
First American cyber incident expected to impact Q4 2023 financials; Delayed closing due to the Dec. 20, 2023, cyber incident are expected to lead to weaker fourth quarter financials at the title firm
Toronto Zoo says staff personal info stolen in ransomware cyberattack
Ransomware negotiation: When cybersecurity meets crisis management
Sextortion: A Growing Threat Targeting Minors.
UK NPSA: Counter-State Threats.
UK NPSA: SCaN for Line Managers.
Quick Hits
New USGS map shows where damaging earthquakes are most likely to occur in US.
US Secret Service: Live Virtual Presentations on Targeted Violence Prevention.
CISA - Active Shooter Preparedness Webinar, Region 9 - 7 FEB 2024
CISA and FBI Release Known IOCs Associated with Androxgh0st Malware
CISA: Cybersecurity Guidance: Chinese-Manufactured UAS
Election 2024
Authorities map out potential threats ahead of New Hampshire primary
OpenAI bans bot impersonating US presidential candidate Dean Phillips
AI is destabilizing ‘the concept of truth itself’ in 2024 election
Former Jan. 6 Select Committee deleted more than 100 encrypted files from its probe in the days before Republicans took over the House majority
| |||
| 26 Feb 2024 | The Gate 15 Interview with Kirk Cerny EP 43. Security, old wagons, leadership integrity, Wyoming, and… the afterlife? | 00:41:02 | |
In this episode of The Gate 15 Interview, Andy Jabbour welcomes Kirk Cerny, Chief Operating Officer at Haystax. Kirk is a security and counterintelligence professional with 20 years of leadership experience in public & private C-suites. Kirk specializes in threat prevention and mitigation, compliance, and more!
Kirk on LinkedIn.
Kirk’s Background
Haystax
School and Facility Security
Public Safety & First Responders
The new Dragon Pipeline
What’s on Kirk’s mind
We play Three Questions and talk old wagons, great states, and magic eight balls.
Plus: Leadership, values, Gary Fisher, and lots more!
Haystax
Haystax School Safety in Action: Houston UASI Threat Response
CISA Reflecting on the Parkland tragedy, its lasting impacts, and work still to be done, 14 February 2024
In the discussion we address:A few references mentioned in or relevant to our discussion include:
| |||
| 12 Dec 2023 | Weekly Security Sprint EP 46. Hostile Events, Scams, Cyber Threats, and the Weatherman | 00:27:17 | |
The following topics were discussed during this week's Security Sprint.
US critical infrastructure sector faces cyber threats surge in 2023, calls for urgent action, enhanced measureswith input from Denise Anderson, President and CEO of the Health Information Sharing and Analysis Center (Health-ISAC), and Gate 15’s own Jennifer Lyn Walker, in her capacity as Director of Infrastructure Cyber Defense for WaterISAC
UNLV Shooting. https://www.cnn.com/us/live-news/unlv-shooting-12-06-23/index.html
DHS Releases Physical Security Performance Goals for Faith-Based Communities. Building on longstanding efforts and redoubling work to support faith-based communities in response to the ongoing conflict in the Middle East, the Department of Homeland Security (DHS), through Cybersecurity and Infrastructure Security Agency (CISA), released new resources to help houses of worship and other faith-based organizations enhance their security. These Physical Security Performance Goals – modeled after the successful Cybersecurity Performance Goals – are a collection of cost-effective actions specifically tailored for faith-based organizations that can be implemented to reduce risk without sacrificing accessibility.
Severe Weather.
Winter weather. https://www.newsweek.com/winter-storms-warnings-states-snow-wind-1851154
Tornados. https://www.tennessean.com/story/news/local/2023/12/09/tennessee-tornadoes-clarksville-springfield-nashville-madison-hendersonville-fatalities-severe-storm/71866438007/
Scams.
FBI Warning. https://www.fbi.gov/contact-us/field-offices/norfolk/news/fbi-warning-tis-the-season-for-holiday-scams
FTC Warning.https://consumer.ftc.gov/consumer-alerts/2023/11/stay-scam-free-no-matter-how-far-away-you-roam
Cybersecurity Publications.
The Record at Recorded Future: FBI explains how companies can delay SEC cyber incident disclosures
CrowdStrike: How Malicious Insiders Use Known Vulnerabilities Against Their Organizations
Trend Micro’s 2023 Review: Reflecting on Cybersecurity Trends
Quick Hits
Texas Bomb Threats. https://www.msn.com/en-us/news/us/statewide-bomb-threat-hoax-hits-texas-schools/ar-AA1ldyG2
ORC. https://homeland.house.gov/hearing/from-festive-cheer-to-retail-fear-addressing-organized-retail-crime/
FEMA Advisory: FEMA’s National Preparedness Report Highlights Cyber Security, Building Codes and Individual Preparedness for a Resilient Nation
Google’s Year in Search
CISA: Cybersecurity Performance Goals: Assessing How CPGs Help Organizations Reduce Cyber Risk
CISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star Blizzard
Two Russian Nationals Working with Russia’s Federal Security Service Charged with Global Computer Intrusion Campaign
Apple Report: 2.6 billion personal records compromised by data breaches in past two years — underscoring need for end‑to‑end encryption
Forescout Vedere Labs discloses 21 new vulnerabilities affecting OT/IoT routers
Sellafield nuclear site hacked by groups linked to Russia and China
Ministers pressed by Labour over cyber-attack at Sellafield by foreign group
Britain dismisses report claiming Sellafield nuclear site hacking, says no malware exists on our system
Burglaries at over 40 Denver-area marijuana dispensaries lead to charges for members of two organized crime groups
Police Log: Man Arrested for Armed Robbery at Dispensary, Employee Busted for Stealing Packages
Suspect charged in break-in at Ferndale cannabis store
'Horrifying': Store clerk kicked unconscious in string of violent cannabis robberies
Why was the Ontario Cannabis Store sitting on a CA$500 million cash stockpile?
| |||
| 10 Jul 2023 | Weekly Security Sprint EP 24. Hostile Events, "Cyber Punk" scams, negligent insiders and the weatherman | 00:32:36 | |
In this week's Security Sprint, Dave and Jen discussed the following topics:
China Hostile Event. BBC. https://www.bbc.com/news/world-asia-china-66151247
Cyber Scams. Cyberpoint. https://blog.checkpoint.com/security/amazon-prime-day-this-year-already-started-for-cybercriminals-check-point-research-calls-online-shoppers-to-be-wary/
Pride Event Attack. Reuters. https://www.reuters.com/world/europe/anti-lgbt-protesters-break-up-pride-festival-georgia-2023-07-08/
Water-Based Insider. https://industrialcyber.co/utilities-energy-power-water-waste/former-water-contractor-employee-tampers-with-water-treatment-systems-posing-public-health-and-safety-threat/
Quick Hits.
Paris Protest. https://www.reuters.com/world/europe/paris-protest-against-police-violence-banned-after-riots-2023-07-08/
Movie. https://www.bleepingcomputer.com/news/security/moveit-transfer-customers-warned-to-patch-new-critical-flaw/?utm_source=dlvr.it&utm_medium=twitter
Weatherman. https://www.nbcphiladelphia.com/weather/stories-weather/sunday-storms-could-cause-evening-flooding-in-philly/3600770/
| |||
| 28 Nov 2023 | Weekly Security Sprint EP 44. False alarms, scams, holiday risks and more! | 00:26:01 | |
In this week's Security Sprint, Dave and Jen talk about the following topics:
Buffalo Border Explosion: https://abc7chicago.com/niagara-falls-rainbow-bridge-explosion-border/14100486/
Scams and Black E-commerce threats.
FBI Report. https://www.fbi.gov/contact-us/field-offices/elpaso/news/fbi-el-paso-warns-of-not-so-jolly-holiday-scams
How to shop online safely. https://www.cyber.gc.ca/en/guidance/how-shop-online-safely-itsap00071
Thanksgiving Cyber feast: Safeguarding against seasonal scams. https://cybersecurity.att.com/blogs/security-essentials/thanksgiving-cyber-feast-safeguarding-against-seasonal-scams
‘Tis the Season for Cybercrime: What to Watch for and How to Protect Yourself. https://www.fortinet.com/blog/industry-trends/protecting-yourself-against-cybercrime-this-season
Black Friday & Cyber Monday | A Guide to Avoiding Cyber Scams During the Holiday. https://www.sentinelone.com/blog/black-friday-cyber-monday-a-guide-to-avoiding-cyber-scams-during-the-holidays/
The dark side of Black Friday: decoding cyberthreats around the year’s biggest shopping season. https://securelist.com/black-friday-cyberthreat-report-2023/111076/
How to stay protected on the web this holiday season. https://www.zscaler.com/blogs/product-insights/how-stay-protected-web-holiday-season
Black Friday & Cyber Monday Ecommerce Security Threats. https://blog.sucuri.net/2023/11/ecommerce-security-black-friday-cyber-monday-threats.html
Guide to Retail Security: Protecting Against Cyber and Physical Threats During the Holidays. https://flashpoint.io/blog/2023-holiday-retail-security/
Quick Hits.
Shopping Safety. https://fox4kc.com/news/after-shootings-at-kc-area-shopping-centers-police-stress-black-friday-safety/
Vermont Hate-Based Shooting. https://www.cnn.com/2023/11/26/us/palestinian-students-shot-burlington-vermont/index.html
Ohio Walmart Shooting. https://abcnews.go.com/US/ohio-walmart-shooting-suspect-motived-racial-extremism-fbi/story?id=105110784&cid=social_twitter_abcn
| |||
| 21 Mar 2022 | The Gate 15 Interview EP 21. Gary Warner on cyber forensics, information sharing, haikus, birdwatching and more! | 01:08:10 | |
In this episode of The Gate 15 Interview, Andy Jabbour speaks with Gary Warner, Director of Research in Computer Forensics’ for the University of Alabama at Birmingham (UAB) and the Director of Threat Intelligence for DarkTower. From his LinkedIn bio, “Gary is the ‘Director of Research in Computer Forensics’ for the University of Alabama at Birmingham (UAB). In this role, which brings together the Computer Science and Criminal Justice departments, he is concentrating on research that will help law enforcement and other security professionals to identify, apprehend, prosecute and convict those who are committing cybercrime, and spread information to victims and potential victims about cybercrime issues. 90 analysts and programmers work in the UAB Computer Forensics Lab building tools and providing intelligence for a variety of clients around Cybercrime, Fraud, and Terrorism, as well as the Social Media aspects of more traditional crimes, including Gang Activity and Transnational Drug Networks. In addition to his duties at UAB, Warner serves as the Director of Threat Intelligence for DarkTower, a subsidiary of Queen Associates in Charlotte, North Carolina. Gary Warner was the founding president of the Birmingham InfraGard chapter, and has served as secretary and member of the board of the InfraGard National Members Alliance, among other roles. Read more on LinkedIn. Gary on Twitter: @GarWarner. Gary’s blog: CyberCrime & Doing Time; A Blog about Cyber Crime and related Justice issues. “Malware analysis is a team sport” – Gary Warner, on information sharing, during our podcast recording In the discussion we address: • Gary’s backstory and the work he’s doing today • Information sharing and the value of plugging into information sharing communities • The great work being done by the FBI and CISA • The importance of knowing your competition, China, Russia, and ongoing threats • Some of Gary’s go-to resources • Gary talks about haikus, Talking Heads, GarBot, birdwatching, and more! “CISA, it's a new era of info sharing in the government” before giving some shout outs to CISA’s first Director, Chris Krebs, and current Director, Jen Easterly A few references mentioned in or relevant to our discussion include: • CISA’s Known Exploited Vulnerabilities Catalog (KEVC), something Gate 15’s Jen Walker raves about often, including in our recent Risk Roundtable: The Risk Roundtable EP 27: Don’t let bias guide your preparedness (07 Mar 22). https://www.cisa.gov/known-exploited-vulnerabilities-catalog • Gary discussed this event: Justice Department Announces Court-Authorized Effort to Disrupt Exploitation of Microsoft Exchange Server Vulnerabilities (13 Apr 21) https://www.justice.gov/opa/pr/justice-department-announces-court-authorized-effort-disrupt-exploitation-microsoft-exchange • BITNET https://bit.net • FBI SENTINEL System https://www.fbi.gov/services/information-management/foipa/privacy-impact-assessments/sentinel • Intellipedia https://en.wikipedia.org/wiki/Intellipedia • REN-ISAC https://www.ren-isac.net • Gary’s four CISA “must watch” sites from the CISA cyber landing page: o Current activity: https://www.cisa.gov/uscert/ncas/current-activity o Alerts: https://www.cisa.gov/uscert/ncas/alerts o Bulletins: https://www.cisa.gov/uscert/ncas/bulletins o Analysis: https://www.cisa.gov/uscert/ncas/analysis-reports • Gary strongly encouraged listeners to check CISA Director Jen Easterly’s “about” section in her LinkedIn profile to understand why she is so excellently qualified to be the woman leading CISA today (something Chris Krebs, her predecessor at CISA agrees with) | |||
| 12 Feb 2024 | Weekly Security Sprint EP 53. A Super Bowl amount of information - Church shooting, AI (good and bad), and much more. | 00:28:21 | |
In this week's Security Sprint, Dave and Andy discussed the following topics: Warm Start: Announcement! WaterISAC is excited to announce that this Spring, it will be hosting H2OSecCon as a one-day virtual event on Thursday, May 23 from 11 AM - 5 PM ET! T National Rural Water Association and WaterISAC Collaborate to Benefit Small Water Utilities Nationwide AMWA reiterates cybersecurity views to Homeland Security Subcommittee Lakewood Church Shooting Shooting at Joel Osteen's Lakewood Church in Houston: Female shooter killed, 5-year-old child shot Joel Osteen statement in response to this incident, post to Threads Woman Opens Fire at Joel Osteen’s Texas Megachurch During Live TV Broadcast Additional physical security items of note: Philadelphia Man Charged with Making Antisemitic and Islamophobic Threats Islamic State, Al-Qaeda Call for Violence Against Jewish Communities Following October 7 Attack Tennessee man who was working with militias planned to act as a sniper and attack Southern border, feds say. U.S. Strike in Baghdad Kills Iranian-Backed Militia Commander Iraq Criticizes US Strikes After Baghdad Attack Killed Iran-Backed Militant Group Commander CISA Releases Violence Prevention through De-escalation Video. AI. FCC Confirms that TCPA Applies to AI Technologies that Generate Human Voices AI-Generated Voices in Robocalls Are Now Illegal How a Biden AI robocall in New Hampshire allegedly links back to a Texas strip mall Taylor Swift deepfakes on X falsely depict her supporting Trump AI Deployed Nukes 'to Have Peace in the World' in Tense War Simulation NYPD and WhatsApp. https://nypost.com/2024/02/05/business/nypd-tests-old-school-tactics-in-the-bronx-to-combat-shoplifting/ Info Ops: Russia Is Boosting Calls for 'Civil War' Over Texas Border Crisis. Chinese Websites Posing as Local News Outlets Target Global Audiences with Pro-Beijing Content CISA Launches #Protect2024 Resources Webpage for State and Local Election Officials Quick Hits: Severe Weather: Historic storm sends debris through LA’s Hollywood Hills and leaves 1.1 million without power 3 dead as storm pummels California, causing flooding and dozens of mudslides in L.A. area More than 120 people are dead and entire neighborhoods have been reduced to ashes in record-breaking Chile wildfires The growing inadequacy of an open-ended Saffir–Simpson hurricane wind scale in a warming world Hurricanes are getting so intense, scientists propose a Category 6 More on Scams & Fraud: Think you know what the top scam of 2023 was? Take a guess As Nationwide Fraud Losses Top $10 Billion in 2023, FTC Steps Up Efforts to Protect the Public IRS warns tax professionals to be aware of EFIN scam email; special webinars offered next week Ransom where? Everywhere. Chainalysis: Ransomware Payments Exceed $1 Billion in 2023, Hitting Record High After 2022 Decline Ransomware Payments Hit a Record $1.1 Billion in 2023 GRIT Ransomware Annual Report 2023 (Q1-Q4) The Record: Ransomware tracker: The latest figures [February 2024] Malwarebytes 2024 State of Malware: Known ransomware attacks up 68% in 2023 Nation States Subcommittee Chairman Garbarino Statement On PRC Persistent Access To U.S. Critical Infrastructure. CISA and Partners Release Advisory on PRC-sponsored Volt Typhoon Activity and Supplemental Living Off the Land Guidance NSA: Combatting Cyber Threat Actors Perpetrating Living Off the Land Intrusions. NSA and Partners Spotlight People’s Republic of China Targeting of U.S. Critical Infrastructure More Cyber News. Verizon insider data breach hits over 63,000 employees Ivanti: CVE-2024-22024 (XXE) for Ivanti Connect Secure and Ivanti Policy Secure Researchers say attackers are mass-exploiting new Ivanti VPN flaw UK NCSC: Vulnerability management Canadian Centre for Cyber Security How updates secure your device (ITSAP.10.096) | |||
| 06 Jun 2023 | The Risk Roundtable EP: 42. Drones, AI, Organized Retail Crime and Security Mindfulness | 00:45:14 | |
In the latest episode the Risk Roundtable, Andy and Dave welcome in Angie Gad to run through the hits. The topics discussed include:
Drones
Russia's Drone Barrage Ineffective Due to 'Poor Targeting Processes'—U.K.
Inside Ukraine’s secretive drone program
Russia says shoots down Ukraine-launched drones over Crimea, Kursk
Gate 15 Resource Links: Drones
AI
Oh ****, maybe we did start building SkyNet… AI Threat Placed on Par With Pandemics, Nuclear War
More than 350 people signed a statement released by the Center for AI Safety, an organization that said it works to reduce AI risks.
AI-Controlled Drone Goes Rogue, 'Kills' Human Operator in USAF Simulated Test
They Plugged GPT-4 Into Minecraft—and Unearthed New Potential for AI
Cyber News
Microsoft is attributing the these attacks to Cl0p ransomware.
CISA Adds One Known Exploited Vulnerability to Catalog. CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
CVE-2023-34362 Progress MOVEit Transfer SQL Injection Vulnerability
New York State Department of Financial Services MOVEit Transfer Vulnerability
MOVEit: The Week in Ransomware - June 2nd 2023 - Whodunit?
HuntressLabs, Mandiant, Rapid7, TrustedSec, and Trustwave have published more details on the attacks targeting MOVEit file-transfer appliances.
Article: CISA orders govt agencies to patch MOVEit bug used for data theft
Deployed publicly accessible MOVEit Transfer? Oh no. Mass exploitation underway
New MOVEit Transfer zero-day mass-exploited in data theft attacks
Joint Cybersecurity Advisory: U.S., ROK Agencies Alert: DPRK Cyber Actors Impersonating Targets to Collect Intelligence, PDF
'The Comm': The Group Linked to a Nationwide Swatting Rampage
The 2024 race promises to be ‘very, very active’ in terms of foreign and domestic meddling, says former CISA chief
Blended Threats - Study: Severe Weather–Related Power Outages Pose Increasing Threat to Patients Who Rely on Electronic Medical Equipment
What the debt ceiling deal means for U.S. cyber agency
Hurricanes.
CSU released its second forecast for the 2023 Atlantic hurricane season on Thursday, 1 June
The 2023 Atlantic Hurricane Season Is Here – Here Are The Key Things You Should Know
2023 Atlantic Hurricane Season Has Officially Begun – Here's What Is Typical In June And July
Here's How To Get Ready For Hurricane Season
Pride Month Concerns.
Tree of Life synagogue: Gunman driven by 'malice and hate'MSU reports gunman watched campus tours, searched school shootings prior to mass shooting
Layton Target evacuated after bomb threats reported at multiple Utah stores.
Spotlight: Culture War Rhetoric Escalate to Physical Threats. At Least 9 Target Stores Received Fake Bomb Threats Over Pride Merchandise
FBI investigating threats of violence to Omaha religious centers. “According to authorities, the author of the note claims to represent Jane’s Revenge — an abortion rights extremist group that Homeland Security has linked to arson attacks against buildings of ideological opponents.”
Recent attacks put staffers on edge as authorities look for answers; Threats cut across party lines
Experts warn against canceling Pride campaigns after extremists threaten Target
Target Pride backlash exposes 'rainbow capitalism' problem, designer says
Pride Month is a war. Brands are the battlefield.
Motorists Face Hate Messages After White Supremacists Hack Interstate Road Sign
FB-ISAO Threat Level Update, June 2023. Based on this review, we have determined to maintain all threat levels at GUARDED, meaning that FB-ISAO is aware that a general risk of incidents exists, but there are no target or time specific threats requiring an escalation in our overall preparedness at this time.
| |||
| 10 Feb 2021 | The Cybersecurity Evangelist: EP 7 - The ISAC Series, Part 3 - Real Estate ISAC | 00:28:28 | |
Dave "Quarter" Pounder, host of the famed NerdOut! Security Panel Discussion joins me on this episode of The Cybersecurity Evangelist. Dave and I talk about the Real Estate ISAC. And no, it's not just for real estate companies - although I may have dropped a hint in the opening commentary about TCE being a great sponsorship opportunity for Berkshire Hathaway/Warren Buffet... ;-) Wouldn't that be nice! Dave and I had fun talking about how RE-ISAC shares information about potential physical and cybersecurity threats and vulnerabilities to help protect commercial facilities and the people who use them. Visit https://www.reisac.org/ to learn more! | |||
| 22 May 2023 | Weekly Security Sprint EP 19. Business Email Compromise, Pride Month, Ransomware, and Venue Security | 00:27:11 | |
On this week's Security Sprint Dave and Andy talked about the following topics:
Cyber Signals (BEC)
Shifting tactics fuel surge in business email compromise. On 19 May, Microsoft “released the fourth edition of Cyber Signals highlighting a surge in cybercriminal activity around business email compromise (BEC).
Ransomware
Cybersecurity experts confirm school security blueprints stolen in MPS ransomware attack.
Russian National Charged with Ransomware Attacks Against Critical Infrastructure.
CISA and Partners Release BianLian Ransomware Cybersecurity Advisory.
Ransomware Revenue Down As More Victims Refuse to Pay
Ransomware comes back with a vengeance
Philadelphia Inquirer hit by cyberattack causing significant disruption
New RA Group ransomware targets U.S. orgs in double-extortion attacks.
Ransomware group claims 2.5 terabytes of stolen data less than a month after emerging online
Ransomware Roundup - Maori
LokiLocker, a Ransomware Similar to BlackBit Being Distributed in Korea
Ransomware corrupts data, so backups can be faster and cheaper than paying up
MalasLocker Ransomware Targets Zimbra Servers, Demands Charity Donation
ScanSource says ransomware attack behind multi-day outages
Are Ransomware Attacks Declining, or Has Reporting Worsened?
Pride Month.
Orlando Digital Traffic Sign Blasts Vile Message to ‘Kill All Gays.’
Threats against the LGBTQIA+ community intensifying: Department of Homeland Security.
Venue Security.
BBC: El Salvador stadium crush leaves at least twelve dead
NY Times: What to Know About the Houston Astroworld Tragedy
NBC News: Gilroy Garlic Festival Mass Shooting
Quick Hits:
Computer in Russia breached Metro system amid security concerns, report says.
'Belligerent' passenger arrested after hitting flight attendant with intercom phone, Frontier Airlines says | CNN
DOJ: Judge Imposes Eight Consecutive Life Sentences Plus 260 Years in Prison for ISIS-Inspired 2017 Murder of Eight Victims and Attempted Murder of 18 Others in NYC Truck Attack.
Congress looks to expand CISA’s role, adding responsibilities for satellites and open source software.
World likely to breach 1.5C climate threshold by 2027, scientists warn
Burleson Man Who Idolized Mass Shooters Charged With Possessing Homemade Bomb: Feds
New Mexico Shooter Was Wearing Bulletproof Vest, Carried Cryptic Note In His Pocket, Police Say
At least 3 people killed, 2 cops injured in New Mexico shooting
3 dead, 6 injured in New Mexico shooting: Police
Massachusetts Man Indicted for Acting as an Illegal Agent of the People’s Republic of China
Zoom executives knew about key elements of plan to censor Chinese activists
Pentagon leak suspect Jack Teixeira warned about mishandling classified info, prosecutors say
FBI misused surveillance tool on Jan. 6 suspects, BLM arrestees and others
Homeland Security Uses AI Tool to Analyze Social Media of U.S. Citizens and Refugees;
US Dept. of State: 2022 Report on International Religious Freedom
Montana’s TikTok ban: why has it happened and will it work?
| |||
| 06 Jul 2021 | The Risk Roundtable: EP 20. The latest security news delivered without remorse. | 00:45:27 | |
The Risk Roundtable crew jumps into summer with a new episode focused on some of the latest security news. Kicking off the episode, the team looks at the latest FBI report on Active Shooters (Active Shooter Incidents 20-Year Review, 2000-2019) and how organizations can integrate this information into their security planning and preparedness. Then they switch over to talk about a threat that grows stronger each month - Ransomware. Jen breaks down the latest ransomware activity and reminds organizations to not go at it alone! Then while Dave is dancing on mute, the risk roulette goes into some topics about opting out of some services that may feel forced, and the upcoming summer season (Fourth of July) and the security precautions organizations need to remember when planning events. Andy then wraps up the episode sharing how much he loved a certain movie that was Dave's favorite book of all time. Dave might have had something....or three minutes....to say something about it.
Some references from the episode:
Beer, cheese, fuel, and now meat. What’s next? - Armis
Amazon to share your Internet with neighbors on Tuesday - How to opt out
Gate 15 HEPS
FBI Active Shooter Resources
A Study of the Pre-Attack Behaviors of Active Shooters in the United States Between 2000 and 2013
What’s Your Plan?
Additional Links:
https://blog.malwarebytes.com/malwarebytes-news/2021/06/ransomware-to-be-investigated-like-terrorism/
https://www.theguardian.com/us-news/2021/jun/04/fbi-christopher-wray-cyberattacks-9-11
https://cybersecurityventures.com/global-ransomware-damage-costs-predicted-to-reach-250-billion-usd-by-2031/
https://gate15.global/the-gate-15-interview-ransomware-running-rampant/
And more.... can be found on the Gate 15 Website blog posts: https://gate15.global/blog/
| |||
| 01 Aug 2023 | Weekly Security Sprint EP 27. New SEC Rules, China cyber threat foot-stomping plus anger, radicalization, political violence, the critical-ist of infrastructure and…so much more! | 00:31:56 | |
In the week's Security Sprint, Andy and Jen talked about the following topics:
Jen’s Cyber Updates
SEC: SEC Adopts Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies. Final Rule; Fact Sheet.
Fortinet: Cybersecurity, A Necessity for the Sustainability of Society
Tenable: FAQ: What the New SEC Cybersecurity Rules Mean for Infosec Leaders
Florida mandates cybersecurity training for state workers
FACT SHEET: Biden-Harris Administration Announces National Cyber Workforce and Education Strategy, Unleashing America’s Cyber Talent.
Survey: Political Violence is Justified
‘Anger and radicalization’: rising number of Americans say political violence is justified; Survey shows a small but significant share of Americans believe in use of force to attain political goals – on both the left and the right
Infrastructure Cyber Threats
U.S. Hunts Chinese Malware That Could Disrupt American Military Operations; American intelligence officials believe the malware could give China the power to disrupt or slow American deployments or resupply operations, including during a Chinese move against Taiwan.
ICYMI: SAVE THE DATE! H2OSecCon Powered by WaterISAC. October 19 -20 Virtual 2023. H2OSecCon is coming back for a second year and will be held virtually from October 19 20. This two-day virtual conference will focus on IT and OT cybersecurity, physical security, and resilience for the water and wastewater sector.
Space: If you’ve ever heard our Gate 15 podcasts, including our interviews with the team at Space ISAC, you know we’re on board with this: Bipartisan bill designates space as critical infrastructure sector. FYSA: TAG Cyber Announces Release of 2023 Q3 Edition: Focused on Cybersecurity in Outer Space.
Threats and Scams
Attackers exploit Windows-based ‘search-ms’ protocol
Ransomware Delivery URLs: Top Campaigns and Trends & Web browsing is the primary entry vector for ransomware infections
USPS Phishing Scam Targeting iOS Users
CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse
CISA Releases Analysis of FY22 Risk and Vulnerability Assessments
CISA Releases Malware Analysis Reports on Barracuda Backdoors
Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins
Known Exploited Vulnerabilities Catalog
US contractor says info of up to 10 million leaked in MOVEit breach: An IT firm that provides services to Medicaid, Medicare, U.S. student loan servicers and other government programs confirmed that the information of up to 10 million people may have been accessed by hackers exploiting the MOVEit file transfer software.
Quick Hits
Severe Weather – this is being covered every day in the Gate 15 SUN
CISA Establishes Regional Election Security Advisors to Strengthen Front Line Support to the Election Community
CISA: Cybersecurity Performance Goals: Sector-Specific Goals
President Biden Announces Key Nominees, including Harry Coker, Jr., Nominee for National Cyber Director.
2023 Cofense Phishing Intelligence Trends Review: Q2
CISA, USCG Publish Analysis Report on Findings During 2022 Risk and Vulnerability Assessments
CISA and Partners Release Joint Cybersecurity Advisory on Preventing Web Application Access Control Abuse
Ivanti Releases Security Updates for Endpoint Manager Mobile (EPMM) CVE-2023-35078
Google - The Ups and Downs of 0-days: A Year in Review of 0-days Exploited In-the-Wild in 2022
Categorizing the CISA KEV by Technology Type
| |||
| 25 Sep 2023 | Weekly Security Sprint EP 35. Yes, Virginia, Jen is a big deal, plus security planning, scams, threat TTPs, and more! | 00:22:22 | |
In this week's Security Sprint, Dave and Andy talked about the following topics.
Security Planning
CISA: New Product - Protecting Houses of Worship: Perimeter Security Considerations Infographic. The Cybersecurity and Infrastructure Security Agency (CISA) released the Protecting Houses of Worship: Perimeter Security Considerations Infographic.
CISA: Security Planning Workbook. Security Planning Workbook (PDF)
DHS: This #SeeSayDay Take the Pledge to Protect Your Community
If You See Something, Say Something® #SeeSayDay.
Selected FB reports:
Statement from President Joe Biden on Yom Kippur
Synagogues brace for bomb threats, ‘swatting’ attacks as Yom Kippur begins
Escambia County church a 'total loss' after overnight fire
Bomb Threat Forces Evacuation at Screening of John MacArthur’s ‘The Essential Church’ at G3 National Conference
Anne Arundel police announce arrests in three hate bias cases at area churches
FBI WARNED SIKHS IN THE U.S. ABOUT DEATH THREATS AFTER KILLING OF CANADIAN ACTIVIST
INVITATION: Protecting Places of Worship Weeks of Action Virtual Events + DHS Resources
Bomb threats target US synagogues during Rosh Hashanah
West Virginia Man Admits to Obstructing Tree of Life Trial
TikTok Shoplifting Threats. https://www.the-sun.com/news/9148713/retail-chains-tiktok-videos-shoplifting-warning-employees/
Jen Walker, Superstar, and Ransomware Resilience
Congratulations to our 2023 SC Media Women in IT Security honorees. “Today SC Media shines a spotlight on 20 business leaders as part of our 2023 Women in IT Security program. Thank you to SC Media for recognizing Gate 15's very excellent Jennifer Lyn Walker in the 2023 Women in IT Security list‼️
Private Public Partnership.
FBI Director Christopher Wray Speaks at 2023 mWISE Cybersecurity Conference.
Cyberspace Solarium Commission’s (CSC’s) 2023 Annual Report on Implementation.
Key Takeaways from the 2023 Security Summit Hosted at the Fortinet Championship.
Ransomware.
House Oversight Committee: Combating Ransomware Attacks
MGM Resorts are operating ‘normally’ after hacks, sort of
TribalNet: Cyber experts wrap up MGM hack at San Diego conference.
The MGM Breach and the Role of IdP in Modern Cyber Attacks
TribalNet: Gaming tech exec says it’s time finally to talk about cybersecurity
MGM vs. Caesars: Cybersecurity Expert Rates Hacking Responses
PhilHealth hit by Medusa ransomware, aims for site restoration by Monday
Ransomware group claimed to have hit a New Jersey cardiology group. Did they?
Growing Ransomware Threats: Looming Danger for ICS, Industrial Companies
Morroco disaster scams / misinformation on social media, scams
The Gate 15 Interview: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction.
Misinformation research is buckling under GOP legal attacks
GOP legal attacks create a chilling effect on misinformation research
The Rise of Generative AI and the Coming Era of Social Media Manipulation 3.0
Quick Hits:
Perspective: Homeland Security and the Shutdown Threat: Planning for an Unnecessary Contingency
Alarm bells ring as lawmakers prep for possible shutdown
U.S. braces for calamitous, costly government shutdown in eight days
IT-ISAC: Cyber experts set out plan to secure crucial 2024 US election
Health-ISAC QR Codes. https://www.aha.org/h-isac-white-reports/2023-09-19-h-isac-tlp-white-observed-increase-qr-code-phishing-attacks-september-19-2023
Harmonization of Cyber Incident Reporting to the Federal Government.
El Nino winter. https://www.cnn.com/2023/09/25/weather/el-nino-winter-us-climate/index.html
| |||
| 24 Oct 2022 | The Gate 15 Interview EP 28: Talking election security, tea and baseball, with Scott Algeier | 00:41:39 | |
In this episode of The Gate 15 Interview, Andy Jabbour welcomes back Scott Algeier to discuss the work he’s doing with IT-ISAC and the Elections Industry Special Interest Group to help ensure, safe, secure, and reliable elections. Scott Algeier, who was on the Gate 15 interview earlier this year, is the Founder, President and CEO of Conrad, Inc. Cybersecurity Consulting. “Scott C. Algeier works at the intersection of cybersecurity policy and operations. He is the Founder, President and CEO of cybersecurity consulting firm Conrad, Inc., Executive Director of the Information Technology – Information Sharing and Analysis Center (IT-ISAC). Conrad, Inc. provides strategic policy and business consulting services to businesses and not for profit organizations focused on cyber security and critical infrastructure protection (CIP). Scott engages senior level policy makers in industry and government, domestically and internationally, on behalf of his clients. This includes direct engagement in the development of the nation’s most significant domestic cybersecurity and CIP policies and operational plans.” From his LinkedIn bio. To learn more about Conrad, Inc, visit the Conrad website and connect on Twitter and you can follow and learn more about Scott on LinkedIn.
In the discussion we address:
What the IT-ISAC and the Elections Industry Special Interest Group (EI-SIG) are doing to help ensure safe, secure, and reliable elections.
Who is involved in the SIG.
The SIG’s mission, including Learning from Coordinated Sharing, Planning for Major Attacks or Incidents, and Enhancing Cybersecurity Protections.
The EI-SIG’s industry framework for a coordinated vulnerability disclosure program.
Scott returns to play three (more!) questions.
A few references mentioned in or relevant to our discussion include:
Conrad website: https://www.conradinc.biz
The IT-ISAC You Tube Channel with the Advancements TV segment IT-ISAC: https://www.youtube.com/itisac
IT-ISAC: https://www.it-isac.org
Elections Industry Special Interest Group (SIG): https://www.it-isac.org/ei-sig
The Gate 15 Interview: Scott Algeier on information sharing, critical infrastructure, cybersecurity & more! https://gate15.global/the-gate-15-interview-scott-algeier-on-information-sharing-critical-infrastructure-cybersecurity-more/
IT-ISAC Partners with Elections Infrastructure Sector Coordinating Council to Launch Threat Information-Sharing Group, 08 Aug 2018: https://130760d6-684a-52ca-5172-0ea1f4aeebc3.filesusr.com/ugd/b8fa6c_765f03ef0e584e7ca6819b41b7d16847.pdf
FireWall Chats Episode 10, Pt. 1 - EI-SIG Members Eric Coomer, Sam Derheimer, and Brian Hancock: https://www.youtube.com/watch?v=Vqk-EiT5qZA&t=303s
FireWall Chats Episode 10, Pt. 2 - EI-SIG Members Keir Holeman, Ed Smith, and Chris Wlaschin: https://www.youtube.com/watch?v=QpSZTX8cEWY
IT-ISAC EI-SIG Two Years Of Progress White Paper, August 2020 (PDF): https://130760d6-684a-52ca-5172-0ea1f4aeebc3.filesusr.com/ugd/b8fa6c_1633ac012a1148eca2bf9dbaf3c965e9.pdf
If anyone has any questions on some of the work being doing by the FBI, CISA and others to help secure elections, or about some of the recent open source reporting regarding threats, please contact our team and we can provide a number of links.
| |||
| 19 Mar 2024 | Nerd Out EP 46. Be Curious - Dave going solo! | 00:25:11 | |
In the latest episode of Nerd Out, Dave is solo and integrating his love for Ted Lasso into the security world. Challenging everyone to be curious, Dave evaluates the famous dart game in Ted Lasso (season 1) and calls out three points for individuals and organizations to be focused on as we evaluate threats. Whether it be the terrorist or extremist threat, or MDM, Dave reminds everyone to be mindful in their security preparedness planning. | |||
| 30 Jan 2024 | Weekly Security Sprint EP 51. Confiscated weapons, new DOJ / FTC guidance, AI, and more cyber news. | 00:26:06 | |
Dave and Andy discussed the following topics.
Swatting!
Police Arrest Teen Said to Be Linked to Hundreds of Swatting Attacks
CISA's Easterly the target of ‘harrowing’ swatting incident
Nikki Haley targeted in 'swatting' incident at her home
Physical Security.
Cleveland Clinic confiscated 30K weapons last year
Security guard accused in Edmonton city hall shooting makes court appearance
DOJ: Justice Department and the FTC Update Guidance that Reinforces Parties’ Preservation Obligations for Collaboration Tools and Ephemeral Messaging
FTC: FTC and DOJ Update Guidance That Reinforces Parties’ Preservation Obligations for Collaboration Tools and Ephemeral Messaging
Risky Biz News: DOJ and FTC tell companies to stop deleting chats
Artificial Intelligence (AI) and Investment Fraud: Investor Alert
UK NCSC: Global ransomware threat expected to rise with AI, NCSC warns
UK NCSC: The near-term impact of AI on the cyber threat.
British intelligence warns AI will cause surge in ransomware volume and impact
CISA Joins ACSC-led Guidance on How to Use AI Systems Securely
UK NCSC: The near-term impact of AI on the cyber threat
NZ NCSC: Joint Guidance: Engaging with Artificial Intelligence
OpenAI and Other Tech Giants Will Have to Warn the US Government When They Start New AI Projects
Fact Sheet: Biden-Harris Administration Announces Key AI Actions Following President Biden’s Landmark Executive Order
OpenAI Quietly Scrapped a Promise to Disclose Key Documents to the Public
23andMe admits it didn’t detect cyberattacks for months
Ransomware-palooza!
Symantec - The 2024 Ransomware Threat Landscape
Annual GRIT Ransomware Report – 2023
Dragos Industrial Ransomware Analysis: Q4 2023
Who pays, and why: A researcher examines the ransomware victim’s mindset
The Conjoined Triangle of Ransomware
Ransomware Attacks Spotlight Need for FIs to Gauge Third-Party Risk
Water Sector ransomware and other updates:
Veolia Responds to Cyber Incident – company statement
Water services giant Veolia North America hit by ransomware attack
Water facility operator says ransomware attack affected North America division
Chairs Rodgers and Carter Announce Subcommittee Hearing on Ensuring Cybersecurity of America’s Drinking Water Systems
CISA's Water Sector Guide Puts Incident Response Front & Center
WaterISAC: 15 Security Fundamentals You Need to Know
West Virginia Department of Health Takes Steps to Prevent Cyberattacks Against Water Systems
Quick Hits:
In major gaffe, hacked Microsoft test account was assigned admin privileges
Florida Bill Seeks Safe Harbor for Organizations with Robust Cybersecurity Programs
HHS Releases New Voluntary Performance Goals to Enhance Cybersecurity Across the Health Sector and Gateway for Cybersecurity Resources
NCTC First Responder’s Toolbox: Responses to Overseas Conflicts May Impact Public Safety Agencies in the Homeland
Mother of all breaches - a historic data leak reveals 26 billion records: check what's exposed
UK tells business leaders to ‘toughen up’ against cyberattacks
CISA Blog: We Must Consider Software Developers a Key Part of the Cybersecurity Workforce
Guidance: Assembling a Group of Products for SBOM
| |||
| 13 May 2022 | The Cybersecurity Evangelist: Episode 19 - TCE Evangelizes a Few ICS Security Thingz | 00:25:06 | |
This month, Jen tries to put the “evangelize” in The Cybersecurity Evangelist by spreading the word on some great work in the ICS cybersecurity community. Resources evangelized in this episode:
| |||
| 11 Sep 2023 | Weekly Security Sprint EP 33. Embezzlement, See Something - Say Something, Morocco, Blended Threats and more! | 00:22:25 | |
In this week's Security Sprint, Dave and Andy talked about the following topics:
9/11. Bells toll as the U.S. marks 22 years since 9/11, from ground zero to Alaska
Embezzlement. https://www.8newsnow.com/news/local-news/las-vegas-casino-employee-accused-of-stealing-776k-from-resort-property/
Blended Threats. https://innotechtoday.com/how-to-bridge-the-gap-between-cybersecurity-and-physical-security/
See Something , Say Something.
If You See Something, Say Something® Awareness Day | Homeland Security. Play a role on national "If You See Something, Say Something®" Awareness Day, on September 25. We can all help keep safe by learning the indicators.
FBI Director Wray issues warning about number of Russian spies in the US
Terrorism and Immigration: A Risk Analysis, 1975–2022
Yet Another Study Debunks The ‘YouTube’s Algorithm Drives People To Extremism’ Argument
Devastation in Morocco.
Morocco earthquake live briefing: Almost 2,500 dead; officials accept search-and-rescue help
The destruction in Morocco in maps, videos and photos
Morocco earthquake: foreign aid teams join efforts to find survivors
Great ShakeOut Earthquake Drills. This year's International ShakeOut Day is October 19, when millions of people worldwide will participate in earthquake drills at work, school, or home! At 10:19 a.m. (local time) on 10/19, you can join millions of people across the world practicing earthquake safety.
Swatting: Click Here podcast: 83. "Ding-dong ditch" on steroids
Bomb threat at Arlington National Cemetery delays funeral services
Swatting started in the gaming world and it’s coming for the rest of us
Los Altos Hills synagogue evacuated after Shabbat bomb threat
Quick Hits:
China’s military seeks to exploit U.S. troops, veterans, general warns
Pro-China Disinformation Campaign Claims US Started Maui Fires in a ‘Weather Weapons’ Experiment, Falsely Citing the UK’s MI6
Chinese Gate-Crashers at U.S. Bases Spark Espionage Concerns; Washington has tracked about 100 incidents involving Chinese nationals trying to access American military and other installations
Hongkonger John Shing-wan Leung ‘posed as philanthropist’ to spy on China for US
US, Canadian warships transit Taiwan Strait in latest joint mission
Health-ISAC Members Prove To Be Resilient and Avoid the Wall of Shame, by Errol Weiss on LinkedIn. This is a great post and a great example of the power of a healthy ISAC/ISAO.
MGM Resorts says it identified ‘cybersecurity issue’ that’s affecting some of company’s systems
Annual Peak Of Atlantic Hurricane Season Has Arrived
International report confirms record-high greenhouse gases, global sea levels in 2022
Earth had hottest three-month period on record, with unprecedented sea surface temperatures and much extreme weather
DOJ: Multiple Foreign Nationals Charged in Connection with Trickbot Malware and Conti Ransomware Conspiracies
CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack
This and so much on ransomware, hate crimes, much, much more, daily in the Gate 15 SUN. To be subscribed for free please email Gate15@Gate15.global
| |||
| 25 Jun 2024 | Weekly Security Sprint EP 70. Shout outs, weather events, resilience, and FBI report | 00:25:54 | |
In this week's Security Sprint, Dave and Andy talked about the following topics:
Warm Start
· Space ISAC! Space industry group warns of escalating cyber threats, outmatched defenses
· Secretary Mayorkas Outlines National Priorities for Critical Infrastructure Security and Resilience for Next Two Years
· Cannabis ISAO! Navigating cybersecurity in the cannabis industry with the CEO of SideChannel
· The GRIP is here! Gate 15’s Resilience and Intelligence Portal now available
· “I’ve been paid to kill you but wish to spare you.” Death Threat Email Scams
· The Gate 15 Interview – ENCRYPTION, part 1. A conversation with Sharon Polsky and Hanna Bozakov: A magic key to backdoor encryption can’t exist in a free and open society.
Main Topics
Severe Weather!
CDK Global: Highlighting the need for ransomware resilience!
o CDK Global outage caused by BlackSuit ransomware attack
o Ripple effect from CDK hack widens as more US auto dealers flag hit
o After 2 hacks, CDK Global warns customers of social-engineering attacks
o ‘It’s like we returned to the Stone Age’: North Bay car dealers weigh in amid cyberattack
o With Pen and Paper in Hand, Car Dealers Improvise as Cyber Outage Persists
o CDK Starts Restoring Systems After Car Dealer Hack
FBI Report.
FBI Releases 2023 Active Shooter Incidents in the United States Report, 24 Jun.
Active Shooter Safety Resources
Shooting at grocery store in Arkansas kills 3 and wounds 10 others, police say
Michigan 19-year-old charged after allegedly planning synagogue attack
Two French teens charged over terror plot to attack Jewish targets
West Boca Raton man threatened mass shooting at synagogue, arrest report says
Info Ops:
Vlad’s online bot army spewing fake quotes from Lionel Messi, Jennifer Aniston & other celebs in new propaganda campaign
Top 10 Generative AI Models Mimic Russian Disinformation Claims A Third of the Time, Citing Moscow-Created Fake Local News Sites as Authoritative Sources
China accuses U.S. of "malign intention" to discredit its COVID vaccines
ISIS Created Fake CNN and Al Jazeera Broadcasts
How Deepfakes May Impact Upcoming Elections Worldwide
Deluge of fake news websites threatens to drown out truth during US election
Attitudes towards COVID-19 vaccines may have “spilled over” to other, unrelated vaccines along party lines in the United States
How AI turned a Ukrainian student into a fake Russian fan of China
Overview and key findings of the 2024 Digital News Report
Quick Hits
Second Edition of NCIRP 2024 Newsletter and upcoming Virtual Listening Session. The preregistration link is here: https://cisa.webex.com/weblink/register/r9d7d76a2172c4c2948186580e8ac0a79.
The Cybersecurity and Infrastructure Security Agency’s (CISA) Chemical Security Assessment Tool (CSAT) was the target of a cybersecurity intrusion by a malicious actor from January 23, 2024, to January 26, 2024.
White House: Fact Sheet: Cybersecurity Resources (21 June 2024)
GrimResource - Microsoft Management Console for initial access and evasion
Canadian Centre for Cyber Security - Protecting high-value information: Tips for small and medium organizations (ITSAP.40.001)
Discussions on Deterring Malicious Cyber Activity and the UN Framework of Responsible State Behavior in Cyberspace
Five Eyes’ Critical 5 nations focus on adapting to evolving cyber threats to boost critical infrastructure security, resilience
CISA: Enhancing Election Security Through Public Communications
Scathing report on Medibank cyberattack highlights unenforced MFA
US bans Kaspersky software for alleged Russian links
New Government Ban on Kaspersky Would Prevent Company from Updating Malware Signatures in U.S.
NCC Group Monthly Threat Pulse – Review of May 2024
Don't blame us for people suffering - London hospital hackers
Former Colorado Resident Sentenced to Life in Prison for Federal Hate Crimes and Firearm Offenses Related to Mass Shooting at Club Q
| |||
| 09 Apr 2024 | Weekly Security Sprint EP 60. Cyber news and breaches, security mindfulness, all-hazards and more! | 00:28:34 | |
Warm Start:
· GridEx VII Report Highlights Further Action to Enhance Grid Resilience
· US electric grid growing more vulnerable to cyberattacks, regulator says
· CISA’s ‘Cyber Storm’ will help it update National Cyber Incident Response Plan
Main Topics:
· US Environmental Protection Agency hack exposes data of 8.5 million users.
· Sophos - Unpatched Vulnerabilities: The Most Brutal Ransomware Attack Vector.
· Bomb threats follow Libs of TikTok's campaign against Planet Fitness
o Bomb threats reported at Planet Fitness locations in Northern Va. amid transgender controversy
o No threat found after several Planet Fitness locations in Jacksonville received bomb threats
o Alabama Planet Fitness locations receive bomb threats, evacuated by FBI
o Planet Fitness bomb threats in Connecticut spark concerns
o Police: Planet Fitness locations evacuated after bomb threats
o Planet Fitness locations in Daphne, Fairhope, and Mobile receive bomb threats
· Furry hackers spend stolen church funds on inflatable sea lions after pastor calls out Biden.
· Cyber Safety Review Board Releases Report on Microsoft Online Exchange Incident from Summer 2023. The U.S. Department of Homeland Security released the Cyber Safety Review Board’s (CSRB) findings and recommendations following its independent review of the Summer 2023 Microsoft Exchange Online intrusion.
o Cyber Safety Review Board Releases Report on Microsoft Online Exchange Incident from Summer 2023.pdf
o Cyber board says Chinese hack of US officials was 'preventable'
o Microsoft faulted for ‘cascade’ of failures in Chinese hack
· CSU: Forecast for 2024 Hurricane Activity. “We anticipate that the 2024 Atlantic basin hurricane season will be extremely active.”
Info Ops:
o Russian trolls target U.S. support for Ukraine, Kremlin documents show
o New effort to "inoculate" U.S. voters against AI misinformation
o AI-generated story that Iran had fired missiles at Tel Aviv were amplified by X's own systems
o Microsoft: China tests US voter fault lines and ramps AI content to boost its geopolitical interests
Quick Hits:
· CISA Publishes New Webpage Dedicated to Providing Resources for High-Risk Communities.
· DHS: Mitigating Harm from Violent Visual Content: CP3 Prevention Resource.
· FTC Announces Impersonation Rule Goes into Effect Today (01 Apr)
· FBI Atlanta gate crash: Man tries to breach security by tailing employees
· Suspect arrested after vehicle crashes into gate at Atlanta FBI field office
· The Surprising Intelligence Community Outreach to Russia
· Why Russian intelligence dismissed US warnings of terror threat
· Germany announces military overhaul with eye on cyber threats
· “All your base are belong to us” – A probe into Chinese-connected devices in US networks
· Forescout research finds surge in Chinese-manufactured devices on US networks, including critical infrastructure
· Risky Biz News: Backdoor found in 92k D-Link NAS devices
· Omni Hotels experiencing nationwide IT outage since Friday
· A Quantitative Analysis of the Security Ratings of the S&P 500
· How a steel ball protected Taiwan’s tallest skyscraper in an earthquake
· Rotterdam teen arrested for plotting a terror attack, prosecutors say
· ‘Reverse’ searches: The sneaky ways that police tap tech companies for your private data
· The Unification Church Infiltrated Japan’s Government. Now Its Sights Are Set on the U.S.
· India rescues 250 citizens enslaved by Cambodian cybercrime gang
· Targeted Phishing Linked to 'The Com' Surges
· GenAI: The next frontier in AI security threats
· ChatGPT jailbreak prompts proliferate on hacker forums
· Threat Actors Deliver Malware via YouTube Video Game Cracks
· 7 Types of Business Email Compromise (BEC) Attacks
· SEO Poisoning
| |||
| 03 Feb 2022 | The Risk Roundtable EP 26: Making the Quantum Leap! | 00:49:17 | |
In the first Risk Roundtable of 2022 - the gang is finally back in the same country again to talk about the latest security issues. Not that they went back in time, but harkening back to the Cold War, the roundtable talked about the current tensions between Ukraine and Russia. Highlighting the differences form that bygone era, Jen talked about the global reach that Russia has to target organizations well beyond the European Continent. Dave then expounded and reminded listeners of the importance of looking at capabilities and not focused on a far off land. Then Jen gave Andy much credit for recognizing our hero Troy Hunt for all the great work that he, and other security professionals and teams who provide services for free or low costs. Before going into Andy's three questions Dave expounded a bit and talked about the Global Risk Report from the World Economic Forum. The gang ended on some fun talking about Valentine's Day, Quantum Leap, and Boba!
Some links:
Link to Ronnie video Ronnie Rants on You Tube https://youtu.be/kd1dXZcncgI
Known exploited vulnerabilities https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Buy me a coffee. ‘I’m no Troy Hunt’ https://gate15.global/opinion-the-best-things-in-life-are-free-like-hibp-but-maybe-chip-in/
WEF: Global Risk Report https://www.weforum.org/reports/global-risks-report-2022
CIS: https://www.cisecurity.org/controls/cis-controls-list/
| |||
| 14 Nov 2023 | Nerd Out: EP 42. A holiday extravaganza with security tips and the annual holiday food review! | 00:40:50 | |
In the latest episode of Nerd Out, Dave, Joe and Bridget catch up on the latest activity related to the Israeli-Hamas conflict before getting into some holiday security tips. Each Nerd took a spin through some important security preparedness reminders that include increased awareness, impacts from potential protests and demonstrations, winter weather concerns, and holiday travel tips. Finally, the team turned their focus to an annual tradition - their holiday food reviews.
Joe Levy is the Assistant General Manager at the Barclays Center.
Bridget Johnson is a terrorism and extremism expert who has decades worth of experience analyze threat activities.
| |||
| 17 Nov 2021 | Nerd Out Security Panel Discussion: EP 19. Talking Crowd Control and the Holidays - in 2 Parts! | 00:57:07 | |
In the latest episode of Nerd Out, this is a very special two parter. In the first part, the nerdies (Bridget and Joe) talk about the fallout from the Houston Astropark disaster ranging from the considerations that go into the event planning, and whether there should be a blame game. And then they look at how threat actors may use this event for future threat planning (note the Hostile Events Attack Cycle) before turning their attention to the latest National Terrorism Advisory System Bulletin release and what it could mean for the holidays. In part two, Dave welcomes in Tamara Herold and goes a little deeper into the Houston incident and what it could mean for events moving forward. Some references brought up in the podcast: Example of Crowd wave: https://www.youtube.com/watch?v=BgpdmAtbhbE Crowd Dynamics: https://www.youtube.com/watch?v=kmqsc7srIfY and https://www.youtube.com/watch?v=Txrs4ssiAz0 Roger Federer saves kid: https://www.youtube.com/watch?v=RymfiBXKuMQ 2018 Concert in Italy: https://celebrityaccess.com/2018/12/08/all-ages-concert-stampede-in-italy-leaves-at-least-6-dead/ Dave Pounder is a Senior Risk Analyst for Gate. Twitter: @dpounder; email: david@gate15.global Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ Tamara D. Herold, Ph.D., Associate Professor, Graduate Director, University of Nevada, Las Vegas (UNLV) Director, Crowd Management Research Council Department of Criminal Justice. Twitter: @advancetheline and @herold_tamara | |||
| 10 Mar 2021 | The Cybersecurity Evangelist: EP 8 – The ISAC Series, Part 4 - Faith-Based ISAO | 00:38:01 | |
TCE welcomes Faith-Based ISAO Executive Director, Mayya Saab on this episode. And no, this isn't the "FBI" ISAO... ;-) Listen in to find out what Mayya loves most about her role and her heart's desire in helping the entire community of faith be secure and resilient. Check out FB-ISAO at https://faithbased-isao.org/ | |||
| 27 Jan 2021 | Nerd Out Security Panel Discussion: EP 9. Moving forward from Inauguration. | 00:44:16 | |
In the latest Nerd Out podcast, Bridget, Joe and Travis join Dave to discuss the continued fallout from the 06 January events at Capitol Hill and what it means post-Inauguration. Here's a hint, we still need to be prepared for domestic terror groups and how they may spin events for their benefit. The group then looks at what 06 January means from a security perspective moving forward and what lessons can be learned.
Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/
Travis Moran is the Assistant Deputy Director, Critical Infrastructure Protection & Physical Security. Twitter: @dronin_on; email: tmoran@securecommunitynetwork.org
Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/o/homeland-security-today-30028526516). Twitter: @BridgetCJ
| |||
| 27 Mar 2024 | Weekly Security Sprint EP 58. Moscow Attack, Weather report, and much more | 00:28:33 | |
In this week's Security Sprint, Dave and Andy covered the following topics:
Opening
Guest Blog Posts – Another Great Way to Contribute to FB-ISAO’s Mission
Biden-Harris Administration engages states on safeguarding water sector infrastructure against cyber threats
Health-ISAC Publishes 2023 Annual Report
Main Topics:
Moscow Attack & Terrorism
Russia says 60 dead, 145 injured in concert hall raid; Islamic State group claims responsibility
Maps and Diagrams of the Moscow Concert Hall Attack.
U.S. Warned Russia Before Moscow Attack That Killed at Least 60
Islamic State releases Moscow attack video as death toll rises to 137
How the deadliest attack on Russian soil in years unfolded over the weekend
What We Know About ISIS-K, the Group That Has Been Linked to the Moscow Attack
State Department: The Islamic State Five Years Later: Persistent Threats, U.S. Options, 21 March
CISA: Complex Coordinated Attacks Security Awareness for Soft Targets and Crowded Places
Macron Says Islamic State Branch Behind Russia Attack, Also Targeted France
Germany arrests suspected ISIS supporters accused of planning terror attack on Swedish parliament (19 Mar)
Weather. Spring Outlook: Warmer for most of U.S., wetter in the Southeast; Low flood potential likely, as drought worsens for parts of the Plains
Chinese Cyber Threats
Seven Hackers Associated with Chinese Government Charged with Computer Intrusions Targeting Perceived Critics of China and U.S. Businesses and Politicians
BBC LIVE - UK to accuse China of major hack as Beijing warns against 'smears.'
China targets group of MPs and peers with string of cyber-attacks
Insider Threats & Espionage
Airman Accused of Sharing Classified Info With Boogaloo Buddies
Owners of China-Based Company Charged with Conspiracy to Send Trade Secrets Belonging to Leading U.S.-Based Electric Vehicle Company
U.S. Accuses Two Men of Stealing Tesla Trade Secrets
Threats to Catholic Charities staffers increase amid far-right anti-migrant campaign. Over the past few months, Pajanor and staffers at Catholic Charities across the country, a decentralized, 113-year-old faith-based non-profit, have become the targets of right-leaning media personalities, conspiracy theorists and even members of Congress.
Quick Hits
UK NCSC: Responding to a cyber incident – a guide for CEOs
UN adopts first global artificial intelligence resolution
Imposing Sanctions on Actors Supporting Kremlin-Directed Disinformation Efforts
CDC: US life expectancy rises after 2-year dip
Lessons Learned from the COVID Pandemic: ‘There Needs to Be an Honest Discussion’
New report blasts government's COVID response, warns of repeating same mistakes
In a pandemic milestone, the NIH ends guidance on COVID treatment
Launch of Foreign Ministry Channel for Global Health Security
Baltimore Key Bridge collapse live updates: 2 rescued, several others believed in water
Attorney General Merrick B. Garland Statement on FBI Quarterly Uniform Crime Report.
National Guard ready to assist states with cyber response, say officials
Hackers Found a Way to Open Any of 3 Million Hotel Keycard Locks in Seconds
Unsaflok flaw can let hackers unlock millions of hotel doors
Kremlin Uses Word 'War' For Ukraine Invasion For First Time
CISA: Nothing Scares the PRC More Than a Russian Defeat in Ukraine
Justice Department Sues Apple for Monopolizing Smartphone Markets
Understanding and Responding to Distributed Denial-Of-Service Attacks
Repository for Software Attestation and Artifacts Now Live
Secure by Design Alert: Eliminating SQL Injection Vulnerabilities in Software
CISA and Partners Release Joint Fact Sheet for Leaders on PRC-sponsored Volt Typhoon Cyber Activity
Google, Meta and others face tough questions in Australia over cyber extremism threats
| |||
| 27 Feb 2023 | The Gate 15 Interview EP 32: Getting Weird with Rachel Tobac - Hacking, Twitter, MFA, Being Politely Paranoid and…Time Travel? | 00:29:34 | |
In this episode of The Gate 15 Interview, Andy Jabbour visits with Rachel Tobac, (She/Her), CEO, SocialProof Security, Friendly Hacker. Rachel is a hacker and the CEO of SocialProof Security where she helps people and companies keep their data safe by training and pentesting them on social engineering risks. Rachel was also 2nd place winner of DEF CON’s wild spectator sport, the Social Engineering Capture the Flag contest, 3 years in a row. Rachel has shared her real life social engineering stories with NPR, Last Week Tonight with John Oliver, The New York Times, Business Insider, CNN, NBC Nightly News with Lester Holt, Forbes and many more. In her remaining spare time, Rachel is the Chair of the Board for the nonprofit Women in Security and Privacy (WISP) where she works to advance women to lead in the fields.
On Twitter: @RachelTobac and see @SocialProofSec & @WISPorg
On Mastodon: http://infosec.exchange/@racheltobac
In the discussion we address:
Rachels’ superhero origin story and her company, SocialProof Security
Women in Security and Privacy (WISP)
Hacking. Hacking. Hacking.
Twitter and Baking Security In
And a little on horror, time travel and Twin Peaks!
A few references mentioned in or relevant to our discussion include:
SocialProof Security
Women in Security and Privacy (WISP) - Advancing Women To Lead The Future Of Privacy And Security.
CNN: We asked a hacker to try and steal a CNN tech reporter’s data. Here’s what happened, 18 Oct 2019
CNN, three years later (2022): 'Don't use the same password': Watch how easy it was to hack this CNN reporter
Aura: Hacking A Billionaire, with Rachel Tobac
Yubico: Uber Hack Reenactment Video, with Rachel Tobac
Twitter: An update on two-factor authentication using SMS on Twitter, 15 Feb 2023
Rachel’s Twitter Thread regarding the announcement
CISA Director Jen Easterly’s Twitter Thread regarding the announcement
The Hill on Which Rachel will die, on Twitter
And check out SocialProof Security merch on Etsy; Gear for The Politely Paranoid (the stickers are awesome and on Andy’s laptop…)
| |||
| 22 Jul 2020 | Nerd Out! Security Panel Discussion: EP 3 | 00:48:37 | |
In the latest episode, Dave is joined by Bridget Johnson, Travis Moran and Chuck Eglic to talk over the latest security matters. Teeing up with sports in the world of COVID, the group then "nerds out" about drones of the suicide variety, extremism and disinformation.
Some references mentioned in the pod:
Bridget's article on conspiracy theories: https://www.hstoday.us/subject-matter-areas/counterterrorism/conspiracy-theory-extremism-when-viral-claims-turn-dangerous/
START Report: https://mailchi.mp/start/new-radicalization-data-358122?e=b787119265
Drones: https://www.thedrive.com/the-war-zone/34414/we-talk-killer-drones-and-the-future-of-unmanned-warfare-with-aerovironments-steve-gitlin
| |||
| 14 Oct 2020 | The Cybersecurity Evangelist: EP4 – “Am I doing enough?” Part 2 | 00:51:51 | |
Shay Trembley, Information Security Manager of South Blount Utility District, and I finish up the remaining 4 "P's of Basic Cybersecurity" - a timely topic in recognition of National Cybersecurity Awareness Month (NCSAM). We address passwords, privacy, patching, and protection, and include several of our personal favorite resources for cybersecurity awareness for everyone. Shay's final tip: she encourages everyone to speak up and share information. The more everyone shares information about the cyber threats and risks, or even suspected threats and risks, the better we will all be informed and #BeCyberSmart. In recognition of NCSAM, we individually listed a ton of resources to help businesses and individuals to #BeCyberSmart: https://staysafeonline.org/, including National Cybersecurity Awareness Month and other NCSA resources https://www.cisa.gov/information-sharing-and-awareness(for more on Information Sharing and Analysis Centers) https://www.sans.org/security-awareness-training/ouch-newsletter https://cybercrimesupport.org/ https://cyberreadinessinstitute.org/ | |||
| 23 Apr 2024 | Weekly Security Sprint EP 62. A jumbalaya of news - emergency comms, China, deep fakes, and de-escalation | 00:29:01 | |
In the latest episode of the Security Sprint, Dave and Andy talked about the following topics.
Warm Start
· CISA Announces 9th Cyber Storm National Exercise. The Cybersecurity and Infrastructure Security Agency (CISA) is hosting its ninth iteration of the Cyber Storm (CS IX) Cyber Exercise. It’s the nation’s largest cyber exercise designed to improve the cybersecurity posture of our nation’s critical infrastructure. Through extensive planning, this exercise strengthened cybersecurity preparedness and response capabilities through exercising policies, processes, and procedures for identifying and responding to a multi-sector significant cyber incident impacting critical infrastructure. For more information and resources, visit Cyber Storm IX: National Cyber Exercise | CISA & Cyber Storm IX: National Cyber Exercise | CISA
FB-ISAO: Best Practices for Securing Your Router / Wi-Fi
'NCSC Cyber Series' podcast now available on Spotify
Main Topics:
US 911 emergency call line outage resolved in some areas
The PRC has made it clear that it considers every sector that makes our society run as fair game in its bid to dominate on the world stage, and that its plan is to land low blows against civilian infrastructure to try to induce panic and break America’s will to resist…
Director Wray's Remarks at the Vanderbilt Summit on Modern Conflict and Emerging Threats
FBI says Chinese hackers preparing to attack US infrastructure
Gallagher’s ominous farewell
Chinese Government Poses 'Broad and Unrelenting' Threat to U.S. Critical Infrastructure, FBI Director Says
UK: Government cracks down on ‘deepfakes’ creation
“Proactive De-escalation”
Quick Hits
· Russian US election interference targets support for Ukraine after slow start
· Microsoft: Nation-states engage in US-focused influence operations ahead of US presidential election
· Information operations will be ‘foundational’ to future DOD efforts, Cybercom chief says
· How A.I. Tools Could Change India’s Elections
· Google: Unearthing APT44: Russia’s Notorious Cyber Sabotage Unit Sandworm
· Secret Russian foreign policy document urges action to weaken the U.S.
· RAND: Generative Artificial Intelligence Threats to Information Integrity and Potential Policy Responses
· Securing Election Infrastructure Against the Tactics of Foreign Malign Influence Operations
· Montgomery Co. student charged with threats of mass violence after police discover disturbing ‘manifesto.’
· CISA and Partners Release Advisory on Akira Ransomware
· FBI: Akira ransomware raked in $42 million from 250+ victims
· Hackers Linked to Russia’s Military Claim Credit for Sabotaging US Water Utilities
· FACT SHEET: Biden-Harris Administration Releases Strategy to Strengthen Global Health Security
· U.S. Government Global Health Security Strategy 2024 (PDF)
· Undersea ‘hybrid warfare’ threatens security of 1bn, Nato commander warns
· Joint Guidance on Deploying AI Systems Securely
· UK NPSA: Personal Safety and Security for High-Risk Individuals
· 840-bed hospital in France postpones procedures after cyberattack
· Cloudflare: DDoS threat report for 2024 Q1
· Hearing - Held for Ransom: How Ransomware Endangers Our Financial System. See the full hearing video on YouTube.
· Ex-White House cyber official says ransomware payment ban is a ways off
· Top officials again push back on ransomware payment ban
· Change Healthcare’s New Ransomware Nightmare Goes From Bad to Worse
· UnitedHealth Group reports that the Change Healthcare ransomware attack has had an $872 million financial hit on its business so far
· Congress rails against UnitedHealth Group after ransomware attack
· AHA testifies at hearing on health care cybersecurity
| |||
| 04 Aug 2020 | The Risk Roundtable: EP 10 - Geopolitics, Partnerships and Information Sharing | 00:41:53 | |
On the latest Risk Roundtable, the Gate 15 team discusses geopolitics and the impacts they have had on businesses around the world. Listen to Andy, Jorhena, Jen and Dave then get into partnerships and the need to rely on trusted relationships and information sharing. But they couldn't escape COVID and they weighted in on the impact it has had on sports leagues while hearing Andy's hope for his favorite football team.
| |||
| 16 Jun 2021 | The Cybersecurity Evangelist: EP 11 – The ISAC Series – Tribal-ISAC | 00:45:31 | |
My final ISAC segment for TCE was a great discussion with two Steering Committee Members from Tribal-ISAC. Bill Travitz – Director, Office of Information Technology, Eastern Band of Cherokee Indians, and Lee Edberg - IT Cybersecurity Manager for Mystic Lake Casino Hotel, Shakopee Mdewakanton Sioux Community. The overall theme of this episode, and the ISAC series in general - We are stronger together! As Lee said, there is invaluable power in numbers with more tribes fighting the threat landscape together; get involved, get to a meeting, and contribute! Similarly for Bill, it’s about being a good neighbor, and that is a value that tribes already have! We all learn from one another. Tribal-ISAC is open to membership for Native American and Alaskan Native tribal government, operations, and enterprises. Resources discussed in this episode:
| |||
| 18 Aug 2020 | Nerd Out! Security Panel Discussion: EP 4. | 00:40:11 | |
Join Dave, Bridget Johnson, Travis Moran, and Jon Crosson as they talk about the latest security matters. Following up on the last episode, the panel discussed the cancellations of NCAA conference fall sports seasons including the increasingly popular College Football schedule. That was a smooth transition into the innovative ways networks have covered sports and if there was any type of innovation to the security sector. Could organizations replicate security "fans" or "crowd noise" - is that even a thing? And then we looked at the challenges within the healthcare sector and talked about how mental health and a future vaccine could impact security or fuel conspiracy theories.
Jon Crosson works at the Health-Information Sharing and Analysis Center (H-ISAC). Their website (h-isac.org) includes a paper on information sharing best practices.
Travis Moran is the Vice President of Operations at Welund North America. Twitter: @dronin_on
Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/o/homeland-security-today-30028526516). Twitter: @BridgetCJ
| |||
| 18 Sep 2022 | Nerd Out Security Panel Discussion: EP 29. Bringing in Fall with the Hottest 50 and security news | 00:47:32 | |
In the latest episode of Nerd Out, Dave, Bridget, and Joe are together again and catch up on all the summer happenings to include an update on Bridget's ever-exciting news. The Nerd Out crew then turns to another list and talk about the significance and importance of the Homeland Security Today Hottest 50 list. Bridget gives some of the background on the list and some of the criteria that brought the list together while Dave and Joe were left to wonder if they might be on the list next year. Next, the gang talked about venue security and how the big summer season went relatively smoothly and what that could mean for the fall season and the upcoming significant events and holidays. Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ | |||
| 21 May 2024 | Weekly Security Sprint EP 66. Cyber Storm, Hostile Events, MDM, and deceptive hiring | 00:32:30 | |
On the latest episode of the Security Sprint, Dave and Andy talked about the following topics.
Warm Start
Information Sharing: A Valuable Tool in Preventing Cyber Attacks
CISA: Prepared Together – Cyber Storm IX Recap
Main Topics
Physical Threats & Violence
Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update
New Jersey Marine arrested after allegedly making threats to kill White people, 'began planning' mass shooting
DOJ: Maryland Woman Pleads Guilty to Conspiring to Destroy the Baltimore Region Power Grid
U.S. Department of State: Worldwide Caution, 17 May. Due to the potential for terrorist attacks, demonstrations, or violent actions against U.S. citizens and interests, the Department of State advises U.S. citizens overseas to exercise increased caution.
Elections, Info Ops, Resources:
Misinformation perceived as a bigger informational threat than negativity: A cross-country survey on challenges of the news environment
Sekoia: Master of Puppets: Uncovering the DoppelGänger pro-Russian influence campaign
Canadian Centre for Cyber Security How to identify misinformation, disinformation, and malinformation (ITSAP.00.300).
Opening Statement by CISA Director Jen Easterly at the Update on Foreign Threats to the 2024 Elections Hearing
US intelligence spotted Chinese, Iranian deepfakes in 2020 aimed at influencing US voters
Contagious Disruption: How CCP Influence and Radical Ideologies Threaten Critical Infrastructure and Campuses Across the United States
Russian Connections to Israel-Gaza Protests
Democratic People's Republic of Korea Leverages U.S.-Based Individuals to Defraud U.S. Businesses and Generate Revenue.
Charges and Seizures Brought in Fraud Scheme, Aimed at Denying Revenue for Workers Associated with North Korea
Justice Department Announces Arrest, Premises Search, and Seizures of Multiple Website Domains to Disrupt Illicit Revenue Generation Efforts of Democratic People’s Republic of Korea
Quick Hits
UK NCSC: Business email compromise: new guidance to protect your organisation
Canadian Centre for Cyber Security Rethink your password habits to protect your accounts from hackers (ITSAP.30.036)
CISA: Encrypted DNS Implementation Guidance
Software Transparency in SaaS Environments
TLP:CLEAR | FB-ISAO Newsletter.
Reliaquest: New Black Basta Social Engineering Scheme
Microsoft: Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
Stairwell threat report: Black Basta overview and detection rules
Iran Declares Mourning Period As President, Foreign Minister Killed In Helicopter Crash
Israel insists 'it wasn't us' after 'Butcher of Tehran' Iranian president is killed in mysterious helicopter crash a month after ordering missile attack on the Jewish state while Islamic regime supports Hamas in Gaza war
ICC prosecutor seeks arrest warrants against Netanyahu, Hamas leaders.
Senators unveil plan to regulate AI, as companies race ahead
Men accused of plot to attack Jews with machine guns in north-west England
DHS Announces Creation of the Homeland Intelligence Advisory Board.
U.S. Attorney’s Office and Law Enforcement Partners Take Action Against Money Mules in Order to Disrupt Transnational Fraud Schemes and Educate Public.
Two Foreign Nationals Arrested for Laundering At Least $73M Through Shell Companies Tied to Cryptocurrency Investment Scams
Feds nab alleged money launderers for pig butchering scheme
Senator Vance issues warning on China-backed Volt Typhoon threat to US critical infrastructure
BreachForums seized by FBI for 2nd time
6K-plus AI models may be affected by critical RCE vulnerability
Tinyproxy (CVE-2023-49606) – Vulnerability Analysis and Exploitation
British engineering giant Arup revealed as $25 million deepfake scam victim
| |||
| 10 Apr 2023 | Weekly Security Sprint EP 14. More hostile events - Louisville, Colorado, plus reporting suspicious activities and breach notifications, plus quick hits! | 00:28:13 | |
In this weeks Security Sprint, Dave and Andy talked about the following topics:
Blue Jeans Workshop Addressing MDM Threats While Protecting Free Speech; Identify and Address MDM (Mis- Dis- and Mal-information) Threats to Critical Infrastructure, While Protecting Free Speech Rights.:
Physical Security:
Nashville Police: Covenant Investigation Update. “Audrey Hale acted totally alone…planning over a period of months to commit mass murder at The Covenant School… motive for Hale’s actions has not been established and remains under investigation…The investigation shows that Hale fired a total of 152 rounds...”
Maryland Man Charged for Making a Threatening Phone Call to an LGBTQ Advocacy Group. “The message referenced the March 27 mass shooting at a school in Nashville, Tennessee, involving multiple shooting fatalities, where the perpetrator was publicly identified as being transgender. During the call, numerous threats were made including, ‘…We’ll cut your throats. We’ll put a bullet in your head….You’re going to kill us? We’re going to kill you ten times more in full.’”
19-year-old charged with plotting shootings at Colorado Springs school, churches & Would-be Colorado school shooter’s mom says it was ‘family decision’ to call cops
Texas Man Pleads Guilty to Hate Crime and Arson for Setting Fire to Synagogue
Religious leader stabbed during prayer session at Paterson mosque
DC church amps up security for Easter after unusual incident, pastor says
Hostility Against Churches Is on the Rise in the United States. “…findings indicate that criminal acts against churches have been steadily on the rise for the past several years.”
Ex-convict’s letters to shooter foretold Las Vegas massacre. “Letters addressing the gunman who in October 2017 unleashed the deadliest mass shooting in modern U.S. history in Las Vegas…foretold the carnage to come, according to documents obtained Friday.”
New from WaterISAC! Physical Security Case Study: Criminal and Suspicious Activity at a Wastewater Utility
Cybersecurity:
Oakland Acknowledges Ransomware Attack Has Worsened
A third of organizations admit to covering up data breaches. “Bitdefender found that 42% of IT and security professionals surveyed had been told to keep breaches confidential — i.e., to cover them up — when they should have been reported.”
THE CYBERSECURITY 202: 'Disrupting' hackers is key, says Deputy Attorney General Lisa Monaco
FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers.
Ransomware! Rorschach – A New Sophisticated And Fast Ransomware; Check Point Research Unveil “Rorschach” - Previously Unseen, Fastest Ever Ransomware & The old way: BabLock, new ransomware quietly cruising around Europe, Middle East, and Asia.
Others:
Leaked Top Secret and Secret documents, suspected to have been altered, reveal Ukrainian military vulnerabilities and information about allies including Israel, South Korea and Turkey.
Ukraine War Plans Leak Prompts Pentagon Investigation; Classified documents detailing secret American and NATO plans have appeared on Twitter and Telegram.
Pentagon investigates reported leak of top-secret Ukraine documents
Leaked US secret NATO-Ukraine war docs likely altered, say experts
Russia Media: Leaked documents sketch out scenarios for Israeli arms pipeline to Kiev
The U.S. Withdrawal from Afghanistan, view the PDF: U.S. Withdrawal from Afghanistan; This document outlines the key decisions and challenges surrounding the U.S. withdrawal from Afghanistan.
DOD: Statement by Secretary of Defense Lloyd J. Austin III on the Defense Department's Afghanistan After Action Review
State: After Action Review on Afghanistan
Comer Slams the Biden Administration’s Excuses for the Disastrous Afghanistan Withdrawal
| |||
| 25 Jun 2020 | The Gate 15 Interview: EP 1 | 00:31:45 | |
In this inaugural Gate 15 interview podcast, Andy Jabbour talks with Jorhena Thomas on her recent post “Intel Community, Our Turn is Coming,” as they discuss informed, inclusive analysis as well as related thoughts on current racial tensions, protests, biases, the threat environment, and how we, as individuals and as a community, can strive towards being our best.
| |||
| 18 May 2022 | Nerd Out Security Panel Discussion: EP 25. Buffalo and the Journey into Hate. | 00:47:10 | |
In the latest Nerd Out podcast, Dave is joined by Bridget Johnson to talk about the hostile event at the Top's Supermarket in Buffalo, New York. Looking at the attack through the lens of Gate 15's Hostile Events Attack Cycle (HEAC), Dave and Bridget talked about all the planning and preparedness that went into the attack as documented by the attacker's manifesto. Bridget went into length about the way the attacker outlined his beliefs while showcasing his admiration and reverence to previous attackers, especially the 2019 New Zealand mosque attacker. They wrapped up the pod with some thoughts for organizations to consider and how the lessons learned and behaviors identified can be applied to any location and organization. Bridget wrapped up up with some strong words that this manifesto is dangerous and deliberately speaks to a vulnerable group who may seek inspiration in their own lives. In addition, it represents a journey into hate that organizations need to be mindful of.
Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ
| |||
| 24 Jan 2023 | Weekly Security Sprint EP 4. Monterey Park, Offboarding, Blended Threats, and Scams | 00:21:37 | |
On this week's Security Sprint, Dave and Andy provided insights and additional thoughts into the following incidents or security news items.
| |||
| 24 May 2021 | The Gate 15 Interview EP 12. Bryan Ware: Analytics Geek, Emerging Technologies Expert | 00:45:08 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Bryan Ware, founder and CEO of Next5 (next5.co), a technology-focused business intelligence and strategic advisory firm. In addition to being a successful entrepreneur, Bryan is a self-described “analytics geek” and emerging technologies expert. He has formerly served as the CEO at Haystax Technology and more recently served at DHS Cybersecurity and Infrastructure Security Agency (CISA) as the Assistant Director for the Cybersecurity Division. Bryan on Twitter (@bsware). Bryan on LinkedIn. In the discussion we address: Bryan’s background and his experience in the private sector and at DHS’s Cybersecurity and Infrastructure Security Agency (CISA) His new project, Next5 Critical and emerging technology and associated concerns Geopolitical and other security challenges Find out what Bryan means when he says “I believe in Liquid Diplomacy?” Here his call to service And more! “I’m most passionate about the critical and emerging technologies that are emerging now and will be most important to our lives, economies, and national security 5+ years from now” Bryan Ware A few references mentioned in or relevant to our discussion include: We discussed Bryan’s new company, Next5. From the website, “Next5 helps leading companies develop, acquire and protect the game-changing technologies of the future. Our research provides a current and expert perspective on critical emerging technologies, global supply chains, and geo-political and economic factors that shape opportunities and risks.” See more, including the Next 5 Technology Matrix, from the link above. Bryan mentioned the quote “software is eating the world,” stated by Marc Andreessen. Read more on that in the Wall Street Journal, Why Software Is Eating The World (20 Aug 2011). We mentioned the Five Eyes partnership, which is the intelligence alliance comprising Australia, Canada, New Zealand, the United Kingdom, and the United States. You can read a little about that from the Office of the Director of National Intelligence, here, or on Wikipedia. | |||
| 24 Aug 2020 | The Gate 15 Interview: EP 3. Disinformation, Misinformation… Too Much Information!?! | 00:59:09 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Michael Klein, a K-12 IT Director and a leader for CTI League’s Disinformation Team, and Lee Foster, Senior Manager, Information Operations Analysis, with FireEye Intelligence. The group discusses:
What we mean by the terms “misinformation” and “disinformation;”
Information operations with regard to the COVID-19 pandemic;
Geopolitical and domestic political interests and issue manipulation;
Election disinformation, past, present and future;
Ideas on deepfakes and the use of Synthetic Media;
And Andy manages to work in another musical reference.
| |||
| 10 Jul 2024 | Nerd Out EP 49. Foreign Influence, extremism, a top 3, and the Acolyte | 00:45:47 | |
In the latest episode of Nerd Out, Dave and Alec went through the recent news talking about the foreign influence that is creating security concerns around the world. Then they looked at the latest extremist news before getting into a new segment that talks to three of their considerations for building a security program. Then they wrapped up digging into the happenings of the Acolyte and what they think may happen in the finale.
Some of the articles referenced in the pod include:
State sponsor.
https://amp.cnn.com/cnn/2024/07/09/politics/intelligence-russian-sabotage-threat-us-bases-europe
https://www.cnn.com/2024/06/30/europe/russia-hybrid-war-nato/index.html
https://www.atlanticcouncil.org/commentary/testimony/the-urgent-threats-posed-by-the-ira[…]stify-before-the-us-house-committee-on-homeland-security/
https://extremism.gwu.edu/sites/g/files/zaxdzs5746/files/Hezbollah's_Operations_and_Networks_in_the_United_States_June30_2022.pdf
Protests.
https://abcnews.go.com/US/wireStory/iran-encourages-gaza-war-protests-us-stoke-outrage-111792439
https://www.jpost.com/international/article-807189
https://www.policemag.com/vehicle-ops/news/15670549/group-burns-portland-police-vehicles-over-propalestinian-protests
FTO/HVE.
https://abcnews.go.com/Politics/foreign-terrorists-targeting-us-increasingly-fbi-director/story?id=109045112
https://www.washingtonpost.com/national-security/2024/07/05/gaza-terrorism-israel-us-intelligence/
https://www.voanews.com/a/new-migration-patterns-fuel-islamic-state-s-plans-for-the-us-/7676413.html
https://gnet-research.org/2024/07/04/the-digital-weaponry-of-radicalisation-ai-and-the-recruitment-nexus/
https://www.cbsnews.com/news/more-information-emerges-about-8-tajikistani-men-arrested-for-suspected-isis-ties/
https://nypost.com/2024/07/09/us-news/suspected-jihadist-caught-with-weapons-outside-laguardia-indicted/#:~:text=A%20suspected%20Jihadist%20from%20Queens,with%20his%20license%20plate%20covered.
DVE.
https://www.militarytimes.com/news/your-military/2024/07/03/toxic-politics-increase-terrorism-extremism-risk-dhs-official-says/
https://abcnews.go.com/US/yellowstone-national-park-shooting-update/story?id=111794858
https://www.cbsnews.com/sanfrancisco/news/san-jose-explosives-arrest-ridder-park-drive/
| |||
| 07 Jul 2020 | The Risk Roundtable: EP 9 | 00:39:30 | |
The people have spoken! The Gate 15 Pod has now become the Risk Roundtable. In this episode the gang is back at it again. Andy, Jorhena, Jen and Dave talk about extremism going mainstream, the continuously evolving threat of ransomware (double extortion, cartels, and encryption), as well as issues with reopenings around the world and the possible security implications. So much to get into that you may miss Jen pushing her new podcast - The Cybersecurity Evangelist (out next week!). Plus Jorhena giving a shout out to a co-worker.
| |||
| 25 Sep 2023 | The Gate 15 Interview EP 39: Malicious Info Operations & MDM, the Space Sector, supply chain resilience, the City of Light, and nudging the world in a better direction. | 00:49:50 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Robert (Bob) Kolasky, “Advancing National Security Risk Management through Technology, Innovation and Governance,” who is presently serving as Senior Vice President for Critical Infrastructure at Exiger, where he is focusing on developing cutting-edge risk management solutions for critical infrastructure companies and supporting government agencies. Leads market strategy for addressing third party and supply chain risk in critical infrastructure and delivering analysis to support enhanced business and government operations. He also serves in a number of other roles including:
Previously, Bob served as Cybersecurity and Infrastructure Security Agency’s (CISA) Assistant Director, leading the National Risk Management Center (NRMC) and in a number of other critical homeland security roles and responsibilities. | |||
| 29 Aug 2022 | The Risk Roundtable EP 33: Making the list and threat over/unders | 00:53:01 | |
The latest episode of the Risk Roundtable brings a familiar voice to talk about the impact of her work. Homeland Security Today Managing Editor Bridget Johnson joins Andy, Jen and Dave to talk about her addition to "The List" - an accelerationist "hit list" based on her work on rooting out extremism and their propaganda. Bridget talks about the dual edged sword of safety while also knowing that her work is hitting the right spots with these hate-based actors. After Bridget left to handle matters connected to this threat, Dave, Andy, and Jen talked about the Multi-Factor Authentication and how it's important to implement but to also take appropriate care. Finally Dave took control and led the Roundtable through a new game of "Over-rated / Under-rated / Properly Rated". The team assessed where three security threats were rated and the reasons why. Andy finished things off with three questions that included Alf, Matthew McConaughey, and word association.
Some of the topics discussed in this episode include:
0ktapus campaign: Twilio, Cloudflare, and over 130 more victims discovered by Group-IB: https://www.group-ib.com/media/0ktapus-campaign/
The Human Factor Report: https://www.proofpoint.com/us/resources/threat-reports/human-factor
| |||
| 04 Oct 2022 | The Risk Roundtable EP 34: Awareness Month Alphabet Soup, Upcoming Festivities, and a Spicy Debate | 00:42:10 | |
On the latest episode of the Risk Roundtable, Andy leads Dave and Jen through a discussion of the various awareness campaigns and how these efforts do a great job of providing resources and materials for all organizations, big and small. Focusing first on Cybersecurity Awareness Month that is ongoing in the month of October, Jen talked through the messaging, the themes (See Yourself in Cyber) and the importance of each of us doing our part. Later in the podcast, Dave shared his thoughts on National Insider Threat Awareness Month that concluded in September and the theme of Critical Thinking for Digital Space and how everyone can do their part. The team also talked about security preparedness for the upcoming holidays. Andy capitalized on the discussion to talk about security awareness and mindfulness to appreciate, regardless of who you are and what your beliefs are. To cap off the episode, Andy took the roundtable through his three questions to include the always spicy debates on pumpkin pie and pumpkin flavored drinks. Microsoft Exchange links:
Additional links include:
| |||
| 09 Jan 2020 | The Gate 15 Pod: EP 1 | 00:19:05 | |
Episode 1. Looking back at the security challenges in 2019 and ahead to what we may expect in 2020. Join Andy Jabbour, Jennifer Lyn Walker and David Pounder.
| |||
| 24 Jan 2023 | Nerd Out Security Panel Discussion: EP 33. Monterey Bay, Practical Security Measures, and risks for 2023. | 00:53:07 | |
In the latest Nerd Out, Dave welcomes Ed Heyman and Alec Davison to talk about the recent hostile event in Monterey Bay and how organizations can take some of the lessons learned from the incident and apply them to their business. This led to a deeper discussion about simple and straightforward security measures that can go a long way to ensuring the organization is prepared for a wide variety of events. This discussion included sharing free resources around vulnerability assessments, training, and exercises. The nerds then talked about Faith-Based Organizations and some of the threats that these organizations are facing heading into 2023 to include the often-overlooked threat from above (drones), as well as the impacts that attacks on critical infrastructure can have.
Ed Heyman is a security professional with over 30 years of experience in the intelligence and security community and he is the co-chair of the Faith-Based Information Sharing and Analytical Organization (FB-ISAO) Organizational Resilience Group.
Alec Davison is a threat and risk analyst with Gate 15 where he works with various industries on threat awareness and security preparedness matters.
Some of the resources mentioned in this episode include:
Conduct a facility vulnerability assessment, such as a free assessment offered through DHS’s Protective Security Advisor (PSA) program.
Train employees on how to identify suspicious behaviors and activities, using resources available through the Nationwide Suspicious Activity (SAR) Initiative (NSI) and information in the U.S. Violent Extremist Mobilization Indicators booklet (2021 edition).
Maintain situational awareness about incidents and events happening in your communities that threat actors might seek to exploit to commit acts of violence, such as by connecting with your local fusion center.
Prepare and/or update an emergency response plan, including by using templates and resources provided by EPA and FEMA.
Rehearse and improve your plans and employee preparedness through training and exercises. DHS’s Cybersecurity and Infrastructure Security Agency (CISA) has published a series of CISA Tabletop Exercise Packages (CTEPs) that prompt participants to walk through their plans for responding to incidents.
First Responder Toolbox: Free reference aid material intended to promote counterterrorism coordination among federal, state, local, tribal, and territorial government authorities and partnerships with private sector officials in deterring, preventing, disrupting, and responding to terrorist attacks.
| |||
| 07 Sep 2021 | The Risk Roundtable: EP 22. Acronym Soup | 00:54:21 | |
Security awareness months kick into high gear and the Risk Roundtable crew gives their thoughts on the various ones (NPM, NITAM, NCAM, XYZPDQ...) and the heart of each one - Preparedness and Awareness! The group then talks about some of the ongoing protest activities and look ahead to some upcoming events including the "Justice for J6" event. Continuing the preparedness theme, and switching to the Roulette Round the roundtable turned to everyone's favorite security researcher - Troy Hunt and him living his best life while making everyone aware of their risks as well as a lively debate on passwords. Toss in some comments about weather preparedness and whatever Andy wanted to go off on and the group wrapped up with some fun (even questionable) questions. Still not sure why everyone shutters at green holidays.
Some of the references from the discussion:
National Preparedness Month | Ready.gov: https://www.ready.gov/september
National Insider Threat Awareness Month: https://www.odni.gov/index.php/ncsc-features/2834
Press Briefing by Press Secretary Jen Psaki and Deputy National Security Advisor for Cyber and Emerging Technologies Anne Neuberger, September 2, 2021: https://www.whitehouse.gov/briefing-room/statements-releases/2021/09/02/press-briefing[…]-and-emerging-technologies-anne-neuberger-september-2-2021/
The White House Memo to Industry on Ransomware: Take Action (Now): https://gate15.global/the-white-house-memo-to-industry-on-ransomware-take-action-now/
Stuff Off Search | CISA: https://www.cisa.gov/publication/stuff-off-search
www.cisa.gov/sites/default/files/publications/Assets_Showing_Primer_508c.pdf
Troy Hunt Montage:
https://www.pentestpartners.com/security-blog/from-open-guest-wi-fi-to-pwning-a-lift/
https://abbreviations.yourdictionary.com/reference/abbreviations/what-is-an-initialism.html https://www.troyhunt.com
https://haveibeenpwned.com
https://www.youtube.com/watch?v=N_y8B-tmDM0 TroyHunt from BlackHat Asia Lessons from 11 Billion Breached Records (edited)
https://twitter.com/rhowe212/status/1433308481214369797
https://youtu.be/N_y8B-tmDM0
https://www.ncsc.gov.uk/news/ncsc-lifts-lid-on-three-random-words-password-logic
James DeMeo - What's Your Plan? https://jamesademeo.com
| |||
| 19 Jun 2023 | Weekly Security Sprint EP 22. Cyber and Physical Reports Galore, plus some disrupted hostile events. | 00:31:52 | |
In this week's Security Sprint, Dave and Jen talk about the following topics:
BOD 23-02: Mitigating the Risk from Internet-Exposed Management Interfaces.
https://www.cisa.gov/news-events/alerts/2023/06/13/cisa-issues-bod-23-02-mitigating-risk-internet-exposed-management-interfaces
Volt Typhoon https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-144a
Hostile Event Arrests.
Austria LGBTQ+ Parade Arrests. https://www.bbc.com/news/world-europe-65944514?at_link_type=web_link&at_medium=social&at_ptr_name=twitter&at_link_id=948A7BFE-0DDC-11EE-90F5-49B87E934D9D&at_campaign_type=owned&at_link_origin=BBCWorld&at_bbc_team=editorial&at_format=link&at_campaign=Social_Flow
Synagogue Attack Arrest. https://www.foxnews.com/us/michigan-19-year-old-planned-synagogue-mass-shooting-fbi-claims
MOVEit.
https://www.cisa.gov/news-events/alerts/2023/06/15/progress-software-releases-security-advisory-moveit-transfer-vulnerability
Millions of Oregon, Louisiana state IDs stolen in MOVEit breach https://www.bleepingcomputer.com/news/security/millions-of-oregon-louisiana-state-ids-stolen-in-moveit-breach/
Great recap: CVE-2023-34362: MOVEit Vulnerability Timeline of Events (Last updated at Fri, 16 Jun 2023 15:18:17 GMT) https://www.rapid7.com/blog/post/2023/06/14/etr-cve-2023-34362-moveit-vulnerability-timeline-of-events/
Friday - The Cybersecurity 202: The MOVEit ransomware reckoning has begun https://www.washingtonpost.com/politics/2023/06/16/moveit-ransomware-reckoning-has-begun/
MOVEit mayhem 3: “Disable HTTP and HTTPS traffic immediately” https://nakedsecurity.sophos.com/2023/06/15/moveit-mayhem-3-disable-http-and-https-traffic-immediately/https://www.helpnetsecurity.com/2023/06/19/cve-2023-35708/https://www.washingtonpost.com/technology/2023/06/16/moveit-ransomware-attack/
TE-SAT. European Union Terrorism Situation and Trend Report 2023 (TE-SAT) which provides the most comprehensive and up-to-date intelligence picture on terrorism in the European Union.
Quick Hits
Verizon Data Breach investigations report comes out tomorrow
LockBit CSA https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-165a
Baseboard Management Controller (BMC) https://media.defense.gov/2023/Jun/14/2003241405/-1/-1/0/CSI_HARDEN_BMCS.PDF
Proofpoint’s 2023 Human Factor Report https://www.proofpoint.com/us/blog/threat-insight/2023-human-factor-analyzes-evolving-threats-attack-chain
A pretty good overview on Proofpoint’s 2023 Human Factor Report: Cybercriminals return to business as usual in a post-pandemic world https://www.helpnetsecurity.com/2023/06/16/post-pandemic-threat-landscape/
How a Shady Chinese Firm’s Encryption Chips Got Inside the US Navy, NATO, and NASA
Las Vegas police foil Stanley Cup terror threat hours before Golden Knights win
PERSPECTIVE: The Rising Incel Terrorism Threat and the Broader Problem of Misogynistic Violence
Why connected cars are the next frontier in cybersecurity
New Food and AG-ISAO. Food Producers Band Together in Face of Cyber Threats
CISA, FBI, and MS-ISAC Update Joint CSA on Progress Telerik Vulnerabilities.
Forrester: Ransomware, Business Email Compromise and AI Among Top Cybersecurity Threats in 2023
Real Estate Firm Hack Affects 319,500 Patients, Employees; Owner of Addiction Treatment Centers, Medical Offices and Hotels Hit by Ransomware
GAO: Violent Extremism and Terrorism: Agencies Can Take Additional Steps to Counter Domestic Threats, GAO-23-106758
‘More extreme, more violent’: experts’ warning over khaki-clad Patriot Front; Their button-up shirts and chinos have prompted mockery but experts say the far-right group is becoming increasingly violent
| |||
| 25 Jul 2022 | The Gate 15 Interview EP 25. Amanda Berlin and Megan Roddie talk cybersecurity, mental health hackers, DEFCON, musicals, fruits, and more! | 01:01:10 | |
In this episode of The Gate 15 Interview, Andy Jabbour speaks with Amanda Berlin and Megan Roddie, cybersecurity leaders & mental health hackers, and they’ve got their hands in a lot more too!
Amanda is the Lead Incident Detection Engineer at Blumira and has worked in I.T. for almost her entire adult life. Before working at Blumira, Amanda’s responsibilities have included infrastructure security, network hardware and software repair, email management, network/server troubleshooting and installation, purple teaming with a focus on phishing employees and organizational infrastructure as well as teaching employees about security and preventing exploits. She currently serves as the Chief Executive Officer for Mental Health Hackers and is the co-host of the Brakeing Down Security Podcast (BrakeSec Podcast, @brakesec)!
Megan is a Senior Security Engineer at IBM, Co-Author of SANS FOR509 and has worked in cybersecurity since graduating from Sam Houston State University (and while she was still a student!). Previous roles have been with the Texas Department of Public Safety, Recon InfoSec, and with IBM’s X-Force. She currently serves as the Chief Financial Officer for Mental Health Hackers. Megan is also a Muay Thai fighter and coach.
Follow Mental Health Hackers on Twitter! @HackersHealth Follow Amanda on Twitter at @InfoSystir and on LinkedIn and follow Blumira on Twitter! Follow Megan on Twitter at @megan_roddie and on LinkedIn.
In the discussion we address:
Amanda & Megan’s backgrounds and origin stories
Awesome tips for breaking into security!
DEFCON and how to score a free breakfast at DEFCON!!
Mental Health Hackers
The Brakeing Down Security podcast
Muay Thai, Musicals, Apples & Bannanas!
Fruits, music and so much more!
A few references mentioned in or relevant to our discussion include:
Mental Health Hackers website
Mental Health Hackers on Twitter! @HackersHealth
Amanda on Twitter at @InfoSystir and on LinkedIn.
Megan on Twitter at @megan_roddie and on LinkedIn.
Tom Williams on Twitter: @ginger_hax
Amanda’s InfoSec Staples tweet - https://twitter.com/infosystir/status/972906318875983873?s=21&t=CCp0CmDgDcZXQVWtnpEXEA
Blackhat USA 2022 - https://www.blackhat.com/us-22/defcon.html?_mc=sem_bhus_sem_bhus_x_tspr_Google_defcon30_bhusagcompetitvedefcon30_2022&gclid=Cj0KCQjwn4qWBhCvARIsAFNAMihsrClH8Aygi2UnTsbSus3teDdktlK2NiamBzyAORwM5nHcaE4pynwaArHkEALw_wcB
DEFCON 30 - https://defcon.org
10th Annual Brazilian Jiu-Jitsu Smackdown. A Brazilian Jiu-Jitsu event for information security professionals hosted by Jeremiah Grossman during Black Hat and Defcon - https://www.eventbrite.com/e/10th-annual-brazilian-jiu-jitsu-smackdown-tickets-348058561527
Amanda’s Book! Defensive Security Handbook: Best Practices for Securing Infrastructure (1st Edition) - https://www.amazon.com/Defensive-Security-Handbook-Practices-Infrastructure/dp/1491960388
Megan’s SANS Course! FOR509 Course Update - Introducing Google Workspace, the Multi-Cloud Intrusion Challenge - https://www.sans.org/blog/for509-course-update---introducing-google-workspace-the-multi-cloud-intrusion-challenge-and-more/
| |||
| 28 Dec 2020 | The Gate 15 Interview EP 7. A look at 2020, security, and the media with Runa Sandvik and Brad Barkett | 00:51:38 | |
In this episode of The Gate 15 Interview, Andy Jabbour enjoys a really fun talk with Runa Sandvik and Brad Barkett, two security veterans both with considerable experience working to secure media at some of America’s most well-known papers. In this podcast we discuss:
2020 and the cyber threat environment
The threats facing media today
The role of media in security
What we might anticipate in the new year
Among other topics!
Runa and Brad share some candid perspective, and a few fun tidbits about themselves in this year-end discussion on the cyber threat environment, security issues, and the media. Please enjoy this episode of The Gate 15 Interview on Anchor, Apple, Spotify, as well as other locations.
Runa Sandvik: Runa is a senior security researcher with years of experience in security and information sharing. Today, Runa works on digital security for journalists and other high-risk people. Her work builds upon experience from her time at The New York Times, Freedom of the Press Foundation, and The Tor Project. She is a board member of the Norwegian Online News Association, and tweets as @runasand.
Brad Barkett: Brad a 20 year security veteran, and has been working as a security architect for the Washington Post since 2015, with a background in telecoms, MSS, IDS, DDOS, firewalls, proxies. Currently , Brad has a preference for social topics like cyber anti-personnel, disinfo, OSINT, threat intel, social psychology, and social engineering. Long standing hobby interests include synthesis and electronic music, and more recently, being a relatively middling 40+ amateur folkstyle wrestler and nogi jiu-jitsu player. Brad has two brothers, Mike and JJ, who are also security professionals.
A few references mentioned in our discussion include:
· Ford Foundation Cybersecurity Assessment Tool.
· Freedom of the Press Foundation
· A new report from the Freedom of the Press Foundation: A record breaking number of journalists arrested in the U.S. this year
· Updating how we think about security, INFILTRATE 2018, by Matt Tait
| |||
| 12 Oct 2022 | The Cybersecurity Evangelist: Ep 22 – See Yourself in Cyber, the Cybersecurity Awareness Month 2022 Edition with Chris Foulon | 00:42:55 | |
TCE talks Cybersecurity Awareness Month 2022 and Seeing Yourself in Cyber with Chris Foulon of the Breaking into Cybersecurity podcast. Resources and Mentions (it’s a long list, but we love to share resources and other’s great work)
Not mentioned in this podcast, but a couple of relevant (CS)²AI podcasts hosted by @Derek_Harp that I came across after – I hope they don’t mind the mentions!
| |||
| 22 Nov 2021 | The Gate 15 Interview EP 17. Bob Kolasky talks critical infrastructure, risk, Guns N’ Roses and pizza | 00:45:48 | |
In this episode of The Gate 15 Interview, Andy Jabbour talks with Robert (Bob) Kolasky, Cybersecurity and Infrastructure Security Agency’s (CISA) Assistant Director, leading the National Risk Management Center (NRMC) since 2018. At the NRMC, Bob “oversees the Center’s efforts to facilitate a strategic, cross-sector risk management approach to cyber and physical threats to critical infrastructure. The Center provides a central venue for government and industry to combine their knowledge and capabilities in a uniquely collaborative and forward-looking environment. Center activities support both operational and strategic unified risk management efforts.
” Bob’s complete DHS bio (https://www.cisa.gov/bob-kolasky). Bob on LinkedIn (https://www.linkedin.com/in/bob-kolasky-92ab554/). Bob on Twitter, @BobKolasky.
In the discussion we address:
• Bob’s background
• The CISA National Risk Management Center
• Election security and election integrity
• DHS’s role in 5G risk management
• DSH and climate change
• Designated sectors of critical infrastructure and some potential upcoming changes
• Growing up Gen X, music, pizza and more!
A few references mentioned in or relevant to our discussion include:
About the NRMC:
• The Cybersecurity and Infrastructure Security Agency’s (CISA) National Risk Management Center (NRMC)
• Visit the NRMC Initiatives to learn more about each initiative - https://www.cisa.gov/nrmc-initiatives
• Visit the NRMC Newsroom for the latest press releases, media advisories, and blog articles - https://www.cisa.gov/nrmc-newsroom
• Download and share the National Risk Management Center Fact Sheet - https://www.cisa.gov/publication/national-risk-management-center-fact-sheet
Additional background (general):
• NSA-CISA Series on Securing 5G Cloud Infrastructures
• Auto-ISAC. We tipped our hats to Auto-ISAC Executive Director, Faye Francy.
• The Elections Infrastructure Information Sharing and Analysis Center™ (EI-ISAC®) was established by the EIS-GCC to support the cybersecurity needs of the elections subsector. Through the EI-ISAC, election agencies will gain access to an elections-focused cyber defense suite, including sector-specific threat intelligence products, incident response and remediation, threat and vulnerability monitoring, cybersecurity awareness and training products, and tools for implementing security best practices
• White House: Readout of President Joseph R. Biden, Jr. Call with President Vladimir Putin of Russia, 09 Jul (RE: ransomware).
• White House: FACT SHEET: Ongoing Public U.S. Efforts to Counter Ransomware, 13 Oct.
• White House: Background Press Call on the Virtual Counter-Ransomware Initiative Meeting, 13 Oct.
• White House: Joint Statement of the Ministers and Representatives from the Counter Ransomware Initiative Meeting October 2021, 14 Oct.
Space as critical infrastructure:
• The Gate 15 Interview Ep. 16: Erin Miller, Executive Director, Space ISAC. Securing Space Infrastructure (and terrestrial critical infrastructure too!)
• INSA: Designating Space Systems As New U.S. Critical Infrastructure Sector, 02 Nov.
• Space hacking risks pose cyber policy test for Biden admin, 02 Nov.
• Aspen Institute Panel: Space as Critical Infrastructure, 03 Nov.
• Space could be the next frontier for cyber threats, 08 Nov.
• FACT SHEET: Vice President Harris Announces Initiatives on Space and Cybersecurity, 10 Nov.
Faith-Based organizations as critical infrastructure:
• Security Debrief: A Letter to the Trump Administration – Establish a Faith-Based Sector of Critical Infrastructure, 15 Jun 2020.
• The Cybersecurity Evangelist: EP 8 – The ISAC Series, Part 4 – Faith-Based ISAO
Climate Change:
• DHS Actions: Climate Change - https://www.dhs.gov/dhs-actions-climate-change
• White House Fact Sheet: Prioritizing Climate in Foreign Policy and National Security, 21 Oct.
• DHS Strategic Framework for Addressing Climate Change. “The U.S. Department
| |||
| 23 Mar 2023 | Nerd Out Security Panel Discussion: EP 35. Solo Dave talking behaviors, data, and his views on extended universes! | 00:28:22 | |
On the latest episode of Nerd Out, Dave goes solo to talk about behavioral analytics, recent reporting and how to merge those together to deliver insights and develop appropriate plans. It's one thing to have the data, and it's one thing to have the reports that point to various types of behaviors, but merging them together can be a challenge. Dave also talks to the ways to develop the data if you don't have a tool. Dave wraps up by giving some thoughts on what he is seeing from the ever expanding extended universes. Is there a reason to be concerned? Could he be losing interest?
Reports mentioned in this podcast include:
START: https://www.start.umd.edu/spotlight/pirus-dataset-launches-major-update-adding-955-subjects-database
U.S. Secret Service: https://www.secretservice.gov/newsroom/releases/2023/01/new-secret-service-research-examines-first-time-five-years-mass-violence
| |||
| 28 Aug 2023 | Weekly Security Sprint EP 31. Hostile Events, Space, Doxxing, a PSA, and so much more! | 00:22:43 | |
In this week's Security Sprint, Dave and Andy discussed the following topics:
Gate 15 is on Threads! @gate_15_resilience
Jacksonville Murders and other physical security updates.
Gunman Kills 3 in Racially Motivated Attack on Jacksonville Dollar Store
Jacksonville gunman was turned away from historically Black university before killing 3 in racist shooting at nearby store, authorities say
Ryan Palmeter, Dollar General Suspect: 5 Fast Facts You Need to Know
Ryan Palmeter Video: Dollar General Suspect Video Released
Jacksonville Gunman Used Gun With Swastika on It to Kill 3 in Racist Attack, Police Say
At least seven injured in shooting at Caribbean parade in Boston.
Safeguarding The US Space Industry; Keeping Your Intellectual Property In Orbit (PDF). “Foreign intelligence entities recognize the importance of the commercial space industry to the US economy and national security, including the growing dependence of critical infrastructure on space-based assets."
OODA Loop: What To Do About The U.S. Intelligence Community Warning on Safeguarding The Space Industry.
Axios: Space is the next cybersecurity frontier
Scientists Still Looking For Reasons Cybercriminals Are Disabling These Space Telescopes
Space ISAC
Swatting and Doxxing. Keep what you want, add what you want.
Bomb threat at a Forest Park church induced panic, police say
Threats against public officials on the rise as 2024 nears
Surrenders and threats of arrest ahead of Trump’s booking in Georgia
Bumbling alleged arsonist sets himself ablaze trying to burn down Florida church
Trump’s Georgia arraignment expected to be televised, Fulton County judge says
3 killed, 6 injured in mass shooting at Orange County biker bar
Bomb threat at Fulton County Courthouse after Trump arrest: report
PSA: FEMA and FCC Plan Nationwide Emergency Alert Test for 04 Oct 2023. The Federal Emergency Management Agency, in coordination with the Federal Communications Commission, will conduct a nationwide test of the Emergency Alert System (EAS) and Wireless Emergency Alerts (WEA) on Oct 4 at 2:20 p.m.
FCC’s Public Notice
EMR-ISAC InfoGram Aug. 24 – S&T report evaluates gunshot detection technology for first responders; Nationwide emergency alert test on Oct. 4
Radio World
Quick Hits
Idalia Intensifying and Forecast to Become a Major Hurricane.
NHC issuing advisories for the Atlantic on Hurricane Franklin and TS Idalia
Governor Ron DeSantis Issues Updates on Tropical Storm Idalia
Key Messages regarding Tropical Storm Idalia
Tropical Storm Franklin leaves a body count and damage in the Caribbean
7 tornadoes confirmed as Michigan storms down trees and power lines; 5 people killed
USG Updates
TLP:CLEAR FBI FLASH: Suspected PRC Cyber Actors Continue to Globally Exploit Barracuda ESG Zero-Day Vulnerability
CISA, NSA & NIST: Quantum-Readiness: Migration to Post-Quantum Cryptography
FBI PSA - FBI Guidance for Cryptocurrency Scam Victims
Of possible interest
The Cheap Radio Hack That Disrupted Poland's Railway System
UK air traffic control experiencing 'technical issue'
Elon Musk stopped policing political misinformation
Ransomware
MOVEit, the biggest hack of the year, by the numbers
Banning Ransomware Payments Brings New Challenges. With references to our friends Silas Cutler and eCrime!
Surge in Cybercrime: Check Point 2023 Mid-Year Security Report Reveals 48 ransomware groups have breached over 2,200 victims
Rhysida claims ransomware attack on Prospect Medical, threatens to sell data
Thousands have SSNs leaked after ransomware attack on Ohio state archive org
Connecticut hospital nurse says ransomware attack has affected payroll
From Russia and Ukraine, with love
Statement from President Joe Biden on Ukraine Independence Day
THE CYBERSECURITY 202 - Without Prigozhin, expect some changes around the edges on Russian influence operations
Intentional explosion downed Prigozhin’s plane, says US intelligence
| |||
| 07 Feb 2023 | Weekly Security Sprint EP 6. DDoS, ransomware, targeted violence, and maybe some balloon talk. | 00:23:32 | |
In this week's Security Sprint, Dave and Andy talked about the following topics: Ransomware:
DDoS:
Faith-Based Security:
Baking in Cybersecurity:
Others:
| |||
| 17 Jan 2022 | The Gate 15 Interview EP 19. Ronnie Tokazowski, Principal Threat Advisor at Cofense on Business Email Compromise (BEC), 419 scams, Indian food, and so much more! | 01:09:48 | |
Please enjoy this episode of The Gate 15 Interview podcast on Anchor, Spotify, Apple, Google, as well as other locations accessible via the Anchor link or almost anywhere you listen to your favorite podcasts.
In this episode of The Gate 15 Interview, Andy Jabbour speaks with Ronnie Tokazowski, Principal Threat Advisor at Cofense. Ronnie is a recognized expert cybersecurity researcher with success in reverse engineering both crimeware and Advanced Persistent Threat malware, including creation of decoders and indicators for detecting malicious attacks. When he’s not frustrating bad guys, Ronnie is an accidental YouTuber, likes cooking, spicy food, and memes. Ronnie on Twitter, @iHeartMalware. Ronnie’s YouTube channel: Ronnie Rants.
In the discussion we address:
Ronnie’s background and the work he’s doing at Cofense
Business Email Compromise (BEC)
Voodoo (no, seriously…)
Ronnie’s hair
and more!
“(at Cofense), we try to go back to the human…” – Ronnie Tokazowski, during our discussion, 10 Jan 2022
A few references mentioned in or relevant to our discussion include:
What 6 Years of Success in a Global Takedown Operation Looks Like, and How You Can Do It, Too, a Medium post by Ronnie, 02 Jan
Cofense
Faith-Based Information Sharing and Analysis Organization (FB-ISAO)
FBI on Business Email Compromise (numerous links to BEC related information from the FBI)
FBI 2020 IC3 Annual Report & 2020 State Reports
G4 Boyz x G4Choppa "Scam Likely" (Official Video)
G4 Boyz feat. G4Choppa - SBA Job (Official Music Video)
G4Choppa & G4 Boyz - “In Scam We Trust” (Official Music Video - WSHH Exclusive)
Here’s Ronnie providing some commentary: Fun with Fraudsters - Reacting to SBA Job by G4 Boyz
Cofense Wins AI-Based Cybersecurity Solution of the Year in 2021 CyberSecurity Breakthrough Awards, 05 Oct 2021
Cofense Joins Microsoft Intelligent Security Association (MISA), 26 Oct 2021
Channel Insider: Best Email Security Providers & Services 2022, 23 Dec 2021
Traffic Light Protocol (TLP) Definitions And Usage, via CISA
In our discussion, Ronnie mentions Brian Krebs’ Krebs on Security blog (and on Twitter, @briankrebs). Some links to his BEC-related posts can be accessed here.
| |||
Enhance your understanding of The Gate 15 Podcast Channel with My Podcast Data
At My Podcast Data, we strive to provide in-depth, data-driven insights into the world of podcasts. Whether you're an avid listener, a podcast creator, or a researcher, the detailed statistics and analyses we offer can help you better understand the performance and trends of The Gate 15 Podcast Channel. From episode frequency and shared links to RSS feed health, our goal is to empower you with the knowledge you need to stay informed and make the most of your podcasting experience. Explore more shows and discover the data that drives the podcast industry.
© My Podcast Data