The Gate 15 Podcast Channel

In this week's Security Sprint, Dave and Andy discussed the following topics: What Memorial Day means to them. National Terrorism Advisory System (NTAS) DHS Issues National Terrorism Advisory System    A Vehicle Ramming·        U-Haul Truck Crashes into Security Barrier Near White House; 1 in Custody U-Haul driver identified, charged after crashing truck into barriers near White House. UK: Hostile Vehicle Mitigation (HVM) NPSA have released a new Hostile Vehicle Mitigation (HVM) video. HVM puts a protective barrier around your site protecting you, your people, and your infrastructure. Protecting Places of Worship. Protecting Places of Worship: Six Steps to Enhance Security Against Targeted Violence; Protecting Places of Worship: Six Steps to Enhance Security Against Targeted Violence Fact Sheet. FACT SHEET: Biden-Harris Administration Releases First-Ever U.S. National Strategy to Counter Antisemitism ICYMI: Security Debrief, 15 June 2020: A Letter to the Trump Administration – Establish a Faith-Based Sector of Critical Infrastructure Blended Threats COSMICENERGY: New OT Malware Possibly Related To Russian Emergency Response Exercises. This newly-discovered malware could disrupt power generation — and do physical damage When Natural Disasters Cause Network Threats. Record-breaking Tonga undersea volcano disrupted satellite signals in space. U.S. and International Partners Release Advisory Warning of PRC State-Sponsored Cyber Activity & People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection.  China rejects claim it is spying on Western critical infrastructure China Hack Is Latest Challenge for West’s Diplomatic Reset With Beijing Quick Hits Ransomware Research Reveals 12 Vulnerabilities Have Become Newly Associated with Ransomware in Q1 2023  Am I Vulnerable to Ransomware? CISA and Partners Update the #StopRansomware Guide, Developed through the Joint Ransomware Task Force (JRTF). IT Worker Admits Piggybacking on Hacker's Extortion Attempt Ransomware resurgence after ‘strange year’ in 2022, insurance data shows THE MONEY MESSAGE GROUP - A NEW RANSOMWARE THREAT New Ransomware Wave Engulfs over 200 Corporate Victims NOAA predicts a near-normal 2023 Atlantic hurricane season  

In the latest episode of the Weekly Security Sprint podcast, Dave and Andy talked about: Hostile Events Mass Killer Kills 8, Wounds 7 at Texas Mall & Gunman Kills 8, Injures 7 in Mass Shooting at Allen Outlets. 7 dead after driver intentionally runs over them in front of migrant shelter One dead, 4 taken to hospital after shooting in Midtown Atlanta, police say Suspected Atlanta hospital shooter Deion Patterson in custody after allegedly killing 1 and injuring 4 Deion Patterson ID’d as suspected Atlanta hospital shooter — what we know about him.  Ransomware CISA Jen Easterly: The Attack on Colonial Pipeline: What We’ve Learned & What We’ve Done Over the Past Two Years Victims’ reluctance to report ransomware stymies efforts to curb cyberattacks, say federal officials As ransomware data remain ‘fuzzy,’ US cyber leaders see reasons for optimism ZeroFox: CyberEdge 2023 Cyberthreat Defense Report. Colonial Pipeline ransomware attack's unexpected legacy Counter Ransomware Initiative focused on ‘expanding the tent,’ with Jordan, Costa Rica, Colombia joining Ransomware Attack On Dallas Disrupts 911, Court And Water Systems & Dallas cyberattack highlights ransomware’s risks to public safety, health Hacked university warns of campus text alerts sent by ransomware group U.S.: Cyber Chiefs Forge Partnerships With Physical Security Units As Combined Threats Grow.  Meet Akira — A new ransomware operation targeting the enterprise.  Hurricanes! ·       Dave links!   COVID. WHO says Covid-19 is no longer a global health emergency. CDC: COVID caused 6% of deaths in 2022, down from 12% in 2021 Critical Infrastructure Cybersecurity: Italian water supplier serving 500,000 people hit with ransomware attack USG Starting to Take Space Cybersecurity Seriously. Peters & Cornyn Reintroduce Bipartisan Bill To Protect Commercial Satellites From Cybersecurity Threats & article: U.S. Senators Reintroduce Legislation on Commercial Satellite Cybersecurity. Top US cyber official warns AI may be the ‘most powerful weapon of our time;’  ChatGPT and the new AI are wreaking havoc on cybersecurity in exciting and frightening ways DoD Co-funds Institute to Research the Neural, Biological, and Cognitive Foundations of Artificial Intelligenc Background Press Call on New Artificial Intelligence Announcements Readout of White House Meeting with CEOs on Advancing Responsible Artificial Intelligence Innovation   Statement from Vice President Harris After Meeting with CEOs on Advancing Responsible Artificial Intelligence Innovation Intelligence community working with private sector to understand impacts of generative AI; The United States’ intelligence community is looking to engage with the private sector to help them assess the technology, U.S. Director of National Intelligence Avril Haines told lawmakers Thursday. The NSA’s research chief on emerging tech — including ‘beyond belief’ leaps in AI TikTok – ‘We Respect Your Privacy, Except When We Don’t’ Risky Biz News: TikTok tracked FT journalist: TikTok has confirmed it tracked the movements of Financial Times reporter Cristina Criddle in order to discover if she was meeting with TikTok employees and identify her sources. TikTok Tracked Users Who Watched Gay Content, Prompting Employee Complaints MDM Threats as Newbots Proliferate Rise of the Newsbots: AI-Generated News Websites Proliferating Online Compromised DVR System TBK DVR Authentication Bypass Attack WaterISAC: Vulnerability Awareness – Spike in Attacks against CCTV Products with Critical Five-Year-Old Vulnerability Security Week: Exploitation of 5-Year-Old TBK DVR Vulnerability Spikes  

In the latest episode of the Risk Roundtable, Dave, Jen and Andy return to talk on very real and maybe somewhat less real threats across the all-hazards environment. Jen kicks things off sharing her thoughts on the recent FBI Advisory on jUIcE JaCKiNg!! Dave continues the focus on the FBI, sharing his heartfelt thoughts relating to the new Active Shooter report. Quick hits touch on Hurricane Preparedness, Patching (always patching!) and a new COVID report. The team then talks a little US-Russian history, and some musical history, as they dive into love it, hate it, or don’t care.

In this episode of The Gate 15 Interview, Andy Jabbour visits with Chuck Egli, Senior Director at Gate 15 and Director of Preparedness and Response for WaterISAC, and Jennifer Lyn Walker, Director of Cyber Defense for Gate 15 and Director of Infrastructure Cyber Defense for WaterISAC. About WaterISAC: The U.S. water and wastewater sector’s leading national associations and research foundations established the Water Information Sharing and Analysis Center (WaterISAC) in 2002, in coordination with the U.S. Environmental Protection Agency. That same year, it was authorized by Congress in the Bioterrorism Act. WaterISAC is the designated information sharing and operations arm of the Water Sector Coordinating Council. WaterISAC is the only all-threats security information source for the water and wastewater sector. Members provide water and wastewater service to most of the United States, as well as in Canada, Australia, and New Zealand. Membership is also open to organizations in the U.K. and the Netherlands. WaterISAC is a non-profit organization, governed by a board of managers comprising water and wastewater utility managers and state drinking water administrators who are appointed by the partner organizations shown above. Built from the ground up to serve the water sector, WaterISAC is uniquely positioned to understand and support the sector’s needs. Read more. WaterISAC: On Twitter: @WaterISAC Chuck: On LinkedIn Jennifer: On LinkedIn and on Twitter: @Gate15_Jen Topics discussed: Chuck, Jen and WaterISAC’s backgrounds & the WaterISAC mission. The criticality of water – our most critical lifeline! WaterISAC’s evolution over the years, with great reports, resources, forums and events for the water and wastewater community. Physical and cyber threats to the Sector – from extremism and the Hard Reset to insider threats and a lot more! Adding to his comments in last month’s interview, Andy offers CISA more unsolicited guidance… Pirates, monuments, and favorite past times in Andy’s possibly nefarious social engineering game. WaterISAC About WaterISAC H2OSecCon 2022 Coming Soon! H2OSecCon 2023! Sign up for notifications and be there as a sponsor or participant! The Cybersecurity Evangelist, Episode 6 – The ISAC Edition/Series Part 2; A chat with WaterISAC CyberScoop: Did someone really hack into the Oldsmar, Florida, water treatment plant? New details suggest maybe not. 10 Apr 2023 Security Affairs: A cyber attack hit the water controllers for irrigating fields in the Jordan Valley, 11 Apr 2023 The Gate 15 Interview: Climate Change Threats with Dr. Jeff Masters. Sea Level Rise, Drought, the 2023 Hurricane Season, plus Devo, Watermelon and the beauty of the Havasupai Canyon!

In this weeks Security Sprint, Dave and Andy talked about the following topics: Blue Jeans Workshop Addressing MDM Threats While Protecting Free Speech; Identify and Address MDM (Mis- Dis- and Mal-information) Threats to Critical Infrastructure, While Protecting Free Speech Rights.: Physical Security: Nashville Police: Covenant Investigation Update. “Audrey Hale acted totally alone…planning over a period of months to commit mass murder at The Covenant School… motive for Hale’s actions has not been established and remains under investigation…The investigation shows that Hale fired a total of 152 rounds...” Maryland Man Charged for Making a Threatening Phone Call to an LGBTQ Advocacy Group. “The message referenced the March 27 mass shooting at a school in Nashville, Tennessee, involving multiple shooting fatalities, where the perpetrator was publicly identified as being transgender. During the call, numerous threats were made including, ‘…We’ll cut your throats. We’ll put a bullet in your head….You’re going to kill us? We’re going to kill you ten times more in full.’” 19-year-old charged with plotting shootings at Colorado Springs school, churches & Would-be Colorado school shooter’s mom says it was ‘family decision’ to call cops Texas Man Pleads Guilty to Hate Crime and Arson for Setting Fire to Synagogue Religious leader stabbed during prayer session at Paterson mosque DC church amps up security for Easter after unusual incident, pastor says Hostility Against Churches Is on the Rise in the United States. “…findings indicate that criminal acts against churches have been steadily on the rise for the past several years.” Ex-convict’s letters to shooter foretold Las Vegas massacre. “Letters addressing the gunman who in October 2017 unleashed the deadliest mass shooting in modern U.S. history in Las Vegas…foretold the carnage to come, according to documents obtained Friday.” New from WaterISAC! Physical Security Case Study: Criminal and Suspicious Activity at a Wastewater Utility Cybersecurity: Oakland Acknowledges Ransomware Attack Has Worsened A third of organizations admit to covering up data breaches. “Bitdefender found that 42% of IT and security professionals surveyed had been told to keep breaches confidential — i.e., to cover them up — when they should have been reported.” THE CYBERSECURITY 202: 'Disrupting' hackers is key, says Deputy Attorney General Lisa Monaco FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers. Ransomware! Rorschach – A New Sophisticated And Fast Ransomware; Check Point Research Unveil “Rorschach” - Previously Unseen, Fastest Ever Ransomware & The old way: BabLock, new ransomware quietly cruising around Europe, Middle East, and Asia. Others: Leaked Top Secret and Secret documents, suspected to have been altered, reveal Ukrainian military vulnerabilities and information about allies including Israel, South Korea and Turkey. Ukraine War Plans Leak Prompts Pentagon Investigation; Classified documents detailing secret American and NATO plans have appeared on Twitter and Telegram. Pentagon investigates reported leak of top-secret Ukraine documents Leaked US secret NATO-Ukraine war docs likely altered, say experts Russia Media: Leaked documents sketch out scenarios for Israeli arms pipeline to Kiev The U.S. Withdrawal from Afghanistan, view the PDF: U.S. Withdrawal from Afghanistan; This document outlines the key decisions and challenges surrounding the U.S. withdrawal from Afghanistan. DOD: Statement by Secretary of Defense Lloyd J. Austin III on the Defense Department's Afghanistan After Action Review State: After Action Review on Afghanistan Comer Slams the Biden Administration’s Excuses for the Disastrous Afghanistan Withdrawal

In the latest episode of the Risk Roundtable, the prodigal cybersecurity expert returns full of wisdom and words Dave admires but can't understand. Jen brings her expertise to the table and talks about 3CX, and staying vigilant. Dave builds upon vigilance talking about Nashville and about the value of taking stock of lessons learned from the latest school shooting. In the quick hits, Jen and Dave talk about protests, severe weather, and more cybersecurity updates. Not to be outdone, Andy pulls it all together and adds in his usual common sense approach and holding the security profession accountable. Then Andy runs the gang through love it, hate it, or don't care. Some of the references in the pod include: 3CX: 3CX - ⁠https://www.securityweek.com/mandiant-investigating-3cx-hack-as-evidence-shows-attackers-had-access-for-months/⁠3CX - Amazing work and helping the community - Huntress! ⁠https://www.huntress.com/blog/3cx-voip-software-compromise-supply-chain-threats Check My Operator (3CX). “This site is a way for users to identify if they were potentially impacted by the supply chain attack against 3CX from March 2023. If the background appears in red, the IP address you are visiting this site from was flagged by security researchers as potentially impacted. We do not have the ability to determine if you are still impacted. This site is a best effort to broadly notify potential impacted parties of this attack by members of the cyber security research community. If the background appears in gray, the IP address you are visiting this site from has not been reported to this site.” Nashville: Details about the Nashville shooter's gender identity sow confusion and disinformation. Audrey Hale’s family ‘laying low,’ communicating through church in wake of Nashville shooting Attacks on Christian schools ‘inevitable' amid rising violence permeating society: Christian education expert warns Hoax Shooting Threats Shut Down New York Schools Days After Nashville Tragedy How Nashville Prepared for the Day It Never Wanted to Face Understand the Threat. Gate 15 White Paper on The Hostile Event Attack Cycle (HEAC), 2021 Update. Protests: Online threats of violence but few signs of far-right organizing around Trump indictment Marjorie Taylor Greene calls for protests in New York after Trump indictment Severe Weather: 32 dead as tornadoes torment from Arkansas to Delaware. The President has made disaster declarations for Arkansas and Mississippi as concerns remain over continued tornado and other severe weather threats. And a reminder from CISA that criminals always seek to leverage these tragedies with scams. Significant Wintry Conditions from Intermountain West to Upper Midwest Here we go again: 2nd tornado outbreak in 5 days looms for Midwest Website Security: Exchange on-prem throttling - ⁠https://techcommunity.microsoft.com/t5/exchange-team-blog/throttling-and-blocking-email-from-persistently-vulnerable/ba-p/3762078⁠  Website Injection - ⁠https://blog.sucuri.net/2023/03/the-top-10-most-dangerous-types-of-injection-attacks.html⁠  Initial Access techniques - ⁠https://blog.qualys.com/vulnerabilities-threat-research/2023/03/30/risk-fact-3-initial-access-brokers-attack-what-organizations-ignore⁠ & ⁠https://thedfirreport.com/2023/03/06/2022-year-in-review/⁠ & ⁠https://vulncheck.com/blog/2022-cisa-kev-review⁠ KEV! IABs!: Bleeping Computer: 15 million public-facing services vulnerable to CISA KEV flaws (31 Mar). Read the report from Rezilion: Get to Know KEV In Our New Research Report (30 Mar) Others: ⁠Executive Order on Prohibition on Use by the United States Government of Commercial Spyware that Poses Risks to National Security⁠  Mandiant: ⁠Contracts Identify Cyber Operations Projects from Russian Company NTC Vulkan⁠, 30 Mar

In this Week's Security Sprint, Dave and Andy talk about the following topics. Extremism and Terrorism: START reports. PIRUS: https://www.start.umd.edu/profiles-individual-radicalization-united-states-pirus-keshif; https://www.start.umd.edu/news/major-update-pirus-dataset-adds-955-us-subjects-2019-2021 Press Release via Yahoo! Terrorist attacks more deadly, despite decline in the West, 14 Mar, PDF and complete report, Institute for Economics & Peace: Global Terrorism Index 2023 Catholic Vote: ⁠⁠300th Catholic Church Attacked Since 2020⁠⁠, 13 Mar Banking Fears: World Economic Forum: https://www.weforum.org/agenda/2023/03/fears-global-banking-crisis-economy-roundup/ CNN: https://www.cnn.com/2023/03/16/investing/bank-scare-credit-suisse/index.html Intergovernmental Panel on Climate Change (IPCC) Report: The Guardian: Scientists deliver ‘final warning’ on climate crisis: act now or it’s too late, 20 Mar IPCC Sixth Assessment Report, 20 Mar IPCC IPCO Sixth Assessment Report Working Group 1: The Physical Science Basis; Summary for Policymakers Other: New York Post: NYC bracing for unrest after Trump calls for protests over possible arrest, indictment, 19 Mar The Register: LockBit brags: We’ll leak thousands of SpaceX blueprints stolen from supplier, 13 Mar CISA: CISA Establishes Ransomware Vulnerability Warning Pilot Program, 13 Mar DOJ: Associate Attorney General Vanita Gupta Issues Statement on the FBI’s Supplemental 2021 Hate Crime Statistics, 13 Mar Senator Mark Warner: Warner, Blackburn, Colleagues Request Cybersecurity Analysis of Chinese-Made Drones, 16 Mar SEC: SEC Proposes New Requirements to Address Cybersecurity Risks to the U.S. Securities Markets, 15 Mar CyberScoop: Presidential advisory council recommends cyber mandates for critical infrastructure, 14 Mar

On the latest episode of the Security Sprint, Andy bails Dave out on some technology issues and they work through it to cover the following topics. FBI IC3 Report:  FBI Internet Crime Report 2022 (PDF) & Report Statistics  Risky Biz News: BEC loses top spot in FBI Internet Crime report, 12 Mar  Physical Security: NJ [.] com:  Man yelled ‘white lives matter,’ threw smoke bombs at N.J. church’s anti-racism concert, 06 Mar  Michigan Man Arrested and Charged For Illegally Possessing Firearms While Making Threats to Kill Government Officials, 10 Mar Florida neo-Nazis who projected a swastika on a downtown building say the hysteria over drag queens is helping them recruit people, 10 Mar ODNI Annual Threat Assessment:  'ODNI Releases 2023 Annual Threat Assessment of the U.S. Intelligence Community and see here, PDF report, and U.S. Senate Hearing 08 Mar  Risky Biz News: ODNI report highlights China as the US’ biggest cyber threat, 09 Mar  SVB:  Statement from President Joe Biden on Actions to Strengthen Confidence in the Banking System  READOUT: Financial Stability Oversight Council Meeting on March Federal Reserve Board - Federal Reserve Board announces it will make available additional funding to eligible depository institutions to help assure …  Federal Reserve Board - Joint Statement by Treasury, Federal Reserve, and FDIC  Silicon Valley Bank: why did it collapse and is this the start of a banking crisis?  In historic last-minute deal, HSBC acquires Silicon Valley Bank UK, says all depositors’ money is safe  Silicon Valley’s surreal weekend  SVB’s ventures are taken apart in China, UK after US bank’s collapse  Other Cybersecurity Updates:  Cyber Incident Reporting Framework: Global Edition (PDF)  NBC: Data breach hits ‘hundreds’ of lawmakers and staff on Capitol Hill, 08 Mar  CNN: Hundreds of US lawmakers and staff affected by data breach, 08 Mar  WaterISAC: Threat Awareness – Keep Our Eyes on Emotet, 09 Mar  Cofense: Emotet Sending Malicious Emails After Three-Month Hiatus, 07 Mar  WIRED: The Era of Faked CCTV Has Truly Arrived, 07 Mar  Washington Post: Cyberattacks Are Just One Part of Hybrid Warfare, 07 Mar  Ransomware:  WIRED: Ransomware Attacks Have Entered a ‘Heinous’ New Phase, 13 Mar  Security Scorecard: ESXi Ransomware - A case study of Royal Ransomware Prepared by: Vlad Pasca, Senior Malware & Threat Analyst  Sentinel Labs: IceFire Ransomware Returns; Now Targeting Linux Enterprise Networks, 09 Mar  John Cena: Cybersecurity Enthusiast (?): @CenaOnSecurity  Gate 15's upcoming Blue Jeans Workshop: Addressing MDM Threats While Protecting Free Speech

In this week's Security Sprint, Dave and Andy talked about the following topics:

National Cybersecurity Strategy: 

White House: FACT SHEET: Biden-⁠Harris Administration Announces National Cybersecurity Strategy, 02 Mar  Gizmodo: I Read the Biden Administration’s New Cyber Policy So You Don’t Have To, 04 Mar  US House Committee on Homeland Security: Green, Garbarino Statement on the Release of the National Cybersecurity Strategy, 02 Mar  Risky Biz News: White House unveils National Cybersecurity Strategy, 02 Mar  CISA Readout: Director Easterly Visits Carnegie Mellon University, Calls for “Radical Change” for Technology Product Safety in Major Address, 27 Feb Industrial Cyber: National Cybersecurity Strategy sets its eyes on improving security, resilience across critical infrastructure, 03 Mar  WSJ: Cisco Chief Says Tech Products Must Be Made More Secure, 02 Mar 

Water Cybersecurity: 

EPA: EPA Takes Action to Improve Cybersecurity Resilience for Public Water Systems, 03 Mar  Risky Biz News: EPA releases cybersecurity guidance for US public water sector, 05 Mar  CNN: US introduces new rules to protect water systems from hackers, 03 Mar  CyberScoop: EPA issues water cybersecurity mandates, concerning industry and experts, 03 Mar  SC Media: EPA memo pushes states to include cybersecurity in water safety reviews, 03 Mar  Industrial Cyber: EPA issues memorandum to address PWS cybersecurity using sanitary surveys, improve resilience, 06 Mar 

Homeland Security:

Greek Protests: https://www.bbc.com/news/world-europe-64820085 South Korean Protests: https://www.bbc.com/news/world-asia-64858944 HS Today: DHS at 20: Mission Poised ‘to Grow Even More Complex’ as New Threats May Pose ‘Even Greater Potential for Harm,’ 01 Mar  Politico: Documents: DHS has a domestic-intelligence program, 06 Mar  NIJ: Assessing Risk of Terrorist Acts by Looking at Location Data and Demographic and Social Characteristics, 27 Feb  HS Today: National Institute of Justice Examines Link Between Location of Terrorists and Risk of Terrorism, 27 Feb 

Cybersecurity & Ransomware: 

VulnCheck: The VulnCheck 2022 Exploited Vulnerability Report - A Year Long Review of the CISA KEV Catalog, 02 Mar  Recorded Future: 2022 Annual Report, 02 Mar  HS Today: Cyber Threat Trends to Watch This Year as Forecast by MS-ISAC, 02 Mar  Bleeping Computer: Play ransomware claims disruptive attack on City of Oakland, 03 Mar  CBS Bay Area: Ransomware hackers release some stolen Oakland data, 04 Mar 

Other: Gizmodo: Yikes, the U.S. Is Now Using Facial Recognition Rigged Drones for Special Ops, 27 Feb

In this episode of The Gate 15 Interview, Andy Jabbour visits with Rachel Tobac, (She/Her), CEO, SocialProof Security, Friendly Hacker. Rachel is a hacker and the CEO of SocialProof Security where she helps people and companies keep their data safe by training and pentesting them on social engineering risks. Rachel was also 2nd place winner of DEF CON’s wild spectator sport, the Social Engineering Capture the Flag contest, 3 years in a row. Rachel has shared her real life social engineering stories with NPR, Last Week Tonight with John Oliver, The New York Times, Business Insider, CNN, NBC Nightly News with Lester Holt, Forbes and many more. In her remaining spare time, Rachel is the Chair of the Board for the nonprofit Women in Security and Privacy (WISP) where she works to advance women to lead in the fields. On Twitter: @RachelTobac and see @SocialProofSec & @WISPorg On Mastodon: http://infosec.exchange/@racheltobac In the discussion we address: Rachels’ superhero origin story and her company, SocialProof Security Women in Security and Privacy (WISP) Hacking. Hacking. Hacking. Twitter and Baking Security In And a little on horror, time travel and Twin Peaks! A few references mentioned in or relevant to our discussion include: SocialProof Security Women in Security and Privacy (WISP) - Advancing Women To Lead The Future Of Privacy And Security. CNN: We asked a hacker to try and steal a CNN tech reporter’s data. Here’s what happened, 18 Oct 2019 CNN, three years later (2022): 'Don't use the same password': Watch how easy it was to hack this CNN reporter Aura: Hacking A Billionaire, with Rachel Tobac Yubico: Uber Hack Reenactment Video, with Rachel Tobac Twitter: An update on two-factor authentication using SMS on Twitter, 15 Feb 2023 Rachel’s Twitter Thread regarding the announcement CISA Director Jen Easterly’s Twitter Thread regarding the announcement The Hill on Which Rachel will die, on Twitter And check out SocialProof Security merch on Etsy; Gear for The Politely Paranoid (the stickers are awesome and on Andy’s laptop…)

In the latest episode of Nerd Out, Dave is joined by Bridget Johnson and Joe Levy as they talked about some of the hostile events to date in 2023 and looked ahead to the coming faith-based holidays and celebrations in the coming months. Bridget talked about the California shootings and the power of copy cats, while Joe focused attention on the various ways that organizations can deploy security protocols to reduce risk. The nerds then took a look ahead at the upcoming religious holidays and what that might mean for accelerationists and other hate-based groups. Joe then wrapped up talking about the upcoming AVSS event that is coming up in Pittsburg. Registration Information can be found here: https://iavm.org/events/avss/ 

Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/

Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

On this week's Security Sprint, Dave allows Andy to start off and talk about how the rightful name for the third Monday in February. Then Dave and Andy covered the following topics. Twitter & MFA Twitter: An update on two-factor authentication using SMS on Twitter, 15 Feb. TechSpot, Twitter’s SMS two-factor authentication is now a paid feature, 19 Feb Bleeping Computer, Twitter gets rid of SMS 2FA for non-Blue members — What you need to do, 19 Feb Rachel Tobac on Twitter’s update, via Twitter, 17 Feb Jen Easterly on Twitter’s update, via Twitter, 19 Feb FBI: Director Wray’s Remarks at the 2023 Homeland Security Symposium and Expo, 16 Feb Oakland’s Ransomware Attack Pogo Was Right, Data Breaches.net, Weeklong ransomware attack on Oakland government drags on, 18 Feb San Francisco Business Times: Oakland cyberattack hobbles planning department, blocks most building permits, 17 Feb Kron4: Oakland PD warns of delayed response times after city targeted by ransomware attack, 14 Feb Supply Chain. UK National Cyber Security Centre: Supply Chain Cyber Security: Assessing and gaining confidence in your suppliers: https://www.ncsc.gov.uk/files/Assess-supply-chain-cyber-security.pdf Others: LA Times: Suspect in shootings of two Jewish men in L.A. is charged with federal hate crimes, 17 Feb CERT-EU: Sustained activity by specific threat actors, 15 Feb

In this week's Security Sprint, Dave and Andy talked about the following topics. Event and Venue Safety and Security:  Athletic Business: Crowd Crush Ensues Outside Purdue’s Mackey Arena as Students Wait for Ticket Giveaway, 08 Feb  IAVM’s Academy for Venue Safety and Security  Extremism:  DoJ: Maryland Woman and Florida Man Face Federal Charges for Conspiring to Destroy Energy Facilities, 06 Feb  HS Today: Pair Charged with Conspiring to Attack Maryland Power Facilities with Mylar Balloons, Rifle in Extremist Plot, 06 Feb  Heavy: Sarah Clendaniel & Brandon Russell: 5 Fast Facts You Need to Know, 07 Feb  Gate 15: The Gate 15 Interview: Brian Harrell on Energy & Infrastructure Security, plus baseball, boating & burgers!, 26 Dec 2022  Ransomware:  BlackFog: Retail Sector Ransomware Attacks Grow in 2022, 07 Feb  CISA: Alert (AA23-040A) - #StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities, 09, 10 Feb  CISA: Alert (AA23-039A) - ESXiArgs Ransomware Virtual Machine Recovery Guidance, 08 Feb  VMWare: ESXiArgs: Questions & Answers Recorded Future® by Insikt Group® In Before The Lock: ESXi, 13 Feb: https://www.recordedfuture.com/in-before-the-lock-esxi  Top Risks in Cybersecurity 2023:  Bipartisan Policy Center: Top Risks in Cybersecurity 2023, 12 Feb  Washington Post Cybersecurity 202: The top cyber risks to watch out for in 2023, 13 Feb  Others:  BBC: Ukraine war - Russia planning 24 February offensive, Ukrainian defence minister says, 02 Feb  Darth Putin on Twitter: @DarthPutinKGB Risky Biz News: Russia wants to absolve patriotic hackers from any criminal liability, 12 Feb  Group-IB: Know Thy Enemy: unraveling the “Hi-Tech Crime Trends 2022/2023” report, 10 Feb  WSJ: Insurers Say Cyberattack That Hit Merck Was Warlike Act, Not Covered, 08 Feb  BlackCloak Identifies Surge in Doxxing and Swatting Threats on Corporate Executives, 08 Feb  Graphika: Deepfake It Till You Make It, 07 Feb  Dave & Andy talking U2's top 5 albums: Nerd Out Security Panel Discussion: EP 12. High Stress and U….2., 20 Apr 2021

In this week's Security Sprint, Dave and Andy talked about the following topics: 

Ransomware:  

Bleeping Computer: Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide, 3 Feb  Risky Business News: Risky Biz News: Ransomware wave hits thousands of VMWare ESXi servers, 06 Feb  CISA: VMware Releases Security Update for VMware vRealize Operations, 1 Feb  Canadian Centre for Cyber Security: VMware security advisory (AV23-066), 3 Feb  Valentine’s Day 2023, :sparkling_heart: and  Ransomware! Webinar, REGISTER NOW! Ransomware: Planning and Protecting Your Organization, Recorded Future & Gate 15, 14 Feb 

DDoS: 

Radware, Passion: A Russian Botnet, 31 Jan  Bleeping Computer, New DDoS-as-a-Service platform used in recent attacks on hospitals, 01 Feb  The Record: Customizable new DDoS service already appears to have fans among pro-Russia hacking groups, 03 Feb 

Faith-Based Security: 

Fox 5, Las Vegas: Man threatened mass shooting at Las Vegas synagogue, police say, 31 Jan  ABC 7 News: SFPD arrest man suspected of firing blank rounds inside synagogue, bringing gun into theater, 05 Feb  Chinese Balloons: US DOD: Statement From Secretary of Defense Lloyd J. Austin III, 04 Feb  And see the Gate 15 SUN from Friday and Monday for numerous links. 

Baking in Cybersecurity: 

Foreign Affairs: Stop Passing the Buck on Cybersecurity; Why Companies Must Build Safety Into Tech Products, 01 Feb  Washington Post Cybersecurity 202: How CISA plans to get tech firms to bake security into their products, 06 Feb 

Others: 

FBI: Elicitation Techniques, 31 Jan  Voice of America, Russia Developing Weapons to Target Critical Subsea Cables, Pipelines, 02 Feb  Reuters: Huge earthquake kills 2,600 in Turkey and Syria, bad weather worsens plight, 06 Feb

In the latest Security Sprint, Dave and Andy talked about the following topics: US Secret Service: New Secret Service Research Examines for the First Time Five Years of Mass Violence Data, 25 Jan Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update DoJ: U.S. Department of Justice Disrupts Hive Ransomware Variant, 26 Jan FTC: FTC Finalizes Order with Ed Tech Provider Chegg for Lax Security that Exposed Student Data, 27 Jan DoJ: Former Special Agent in Charge of the FBI New York Counterintelligence Division Charged with Violating U.S. Sanctions on Russia, 23 Jan Washington Post: N. Carolina church says it lost nearly $800K in email scam, 28 Jan Gate 15 SUN, US Section, faith-based incidents, 30 Jan CISA: JCDC Focused on Persistent Collaboration and Staying Ahead of Cyber Risk in 2023, 26 Jan Washington Post THE CYBERSECURITY 202: Anne Neuberger discusses work to protect critical infrastructure, 30 Jan CISA: Secure Your Drone: Privacy and Data Protection Guidance, 27 Jan Hawaii News Now: After signs are hacked, state warns changing roadwork message boards is illegal, 26 Jan Risky Biz News: KeePass disputes vulnerability designation for feature that exposes cleartext passwords, 29 Jan Webinar, REGISTER NOW! Ransomware: Planning and Protecting Your Organization, Recorded Future & Gate 15, 14 Feb:  https://go.recordedfuture.com/ransomware-planning-and-protecting-your-organization?utm_campaign=ransomware-webinar&utm_source=gate15&

In this episode of The Gate 15 Interview, Andy Jabbour visits with Josh Poster, Intelligence and Analysis Operations Manager for Auto-ISAC. In that role, Josh also serves as the Leader, Auto-ISAC Intel & Analysis Division & Vice Chair, National Council of ISACs (NCI). His past roles have included Program Manager, Public Transportation and Surface Transportation ISACs, Program Manager, Information and Infrastructure Technologies, and Sr. Analyst, Electronic Warfare Associates, among others. He holds a Bachelor of Science degree in Anthropology and is a long-time leader in the ISAC and homeland security communities.  ‘Preparation is prevention’ - Josh Poster ‘Everyone has a plan until they get punched in the mouth.’ – Mike Tyson  In the discussion we address:  Josh’s background and current position  Developing trust, the importance of relationships and how those relate to both Auto-ISAC and broader, cross-sector and private-public information sharing Building confidence through preparedness  We name drop longtime National Council of ISACs leaders Health ISAC’s Denise Anderson, IT-ISAC’s Scott Algeier, and Comms ISAC’s Joe Veins, as well as Bob Kolasky, formerly Assistant Director the Cybersecurity and Infrastructure Security Agency (CISA) and now Exiger’s Senior Vice President of Critical Infrastructure. We also talk about the very valued Auto-ISAC Executive Director, Faye Francy.  The Gate 15 Interview EP 28: Talking election security, tea and baseball, with Scott Algeier  Bob Kolasky - How the Cyber Risk Landscape Changed in 2022 – and What’s in Store for 2023  Companies recognizing bottom-line impact will spend more on cybersecurity, 13 Jan 2023  The cyber threats facing the automotive industry Fishing, Rainbow Trout, BMX and more! ‘Every single one of our members has a global presence’ - Josh Poster  A few references mentioned in or relevant to our discussion include:  Automotive Information Sharing And Analysis Center (Auto-ISAC)   National Council of ISACs (NCI)  Josh was also a guest on the podcast in September 2022: The Gate 15 Interview: Cybersecurity Awareness Month 2022 with the National Cybersecurity Alliance, Auto-ISAC and FS-ISAC!  Plus, background! shout-outs!! favorite movies, tigers, and more!!!  BBC, Industrial espionage: How China sneaks out America’s technology secrets, 17 Jan 2023  FEMA National Level Exercises and Cyber Storm ENISA: The European Union Agency for Cybersecurity  Japanese Auto-ISAC  WIRED: Hackers Remotely Kill a Jeep on the Highway—With Me in It, 21 July 2015  WIRED: The Jeep Hackers Are Back to Prove Car Hacking Can Get Much Worse, 01 Aug 2016

In the latest Security Sprint, Dave and Andy touched on the following topics: Milestones and notable reports. REN-ISAC Birthday! https://www.ren-isac.net/about/History/index.html CISA Year Review. https://www.cisa.gov/2022-year-review Weather. https://www.cnn.com/2023/01/13/weather/tornado-storm-damage-south-friday/index.html FAA Incident.  https://www.faa.gov/newsroom/faa-notam-statement Survey of Threat Landscape. https://www.washingtoninstitute.org/policy-analysis/survey-2023-terrorism-threat-landscape Protecting data. https://www.bbc.com/news/world-asia-china-64206950 https://www.dw.com/en/us-to-invest-millions-to-expose-kim-jong-un-regime-to-north-koreans/a-64405400?maca=en-rss-en-world-4025-rdf Dose of Cyber! https://analyst1.com/ransomware-diaries-volume-1/ https://twitter.com/andyjabbour/status/1615048335760719872?s=20&t=qBDUVHXSk_jkOYKoKPv1TQ https://twitter.com/NSA_CSDirector/status/1613850710453501955?s=20&t=DsfyO-7Gt3uObRlRN4-zjg https://arstechnica.com/information-technology/2023/01/vulnerability-with-9-8-severity-in-control-web-panel-is-under-active-exploit/ https://www.reuters.com/world/europe/russian-hackers-targeted-us-nuclear-scientists-2023-01-06/ https://meduza.io/en/news/2023/01/13/phishing-scam-invites-russian-telegram-users[…]heck-conscription-lists-to-see-if-they-ll-be-drafted-in-february

Embarking on year 4, the Risk Roundtable jumps two feet into 2023 by talking through the various physical and cyber threats that continue to present challenges. Jen opened up the discussion covering the latest breaches with password managers, fast food restaurants and even platforms that seem to be unbreakable. Matching Jen, Dave covers the wide variety of physical security threats and environmental considerations that organizations are already dealing with this year to include critical infrastructure concerns (power stations, solar plants), terrorism, and environmental factors, to include understanding the role that politics can have in the workplace.  Before moving to the roulette round Andy led a discussion about the importance of preparedness in this complex environment and the risk of not evaluating these incidents and taking appropriate action. Jen then talked about the news and cyber implications around ChatGPT, as well as ensuring organizations are aware of some upcoming timelines such as the end of support for Windows 7 (yes, it is still being used). Dave transitioned and talked about Bridget Johnson's latest piece on 7 Terrorism Trends for 2023 before Andy wrapped up with the ever-popular three questions. Some of the topics discussed include: Imperva Report: More Lessons Learned from A