The Gate 15 Podcast Channel

On the latest episode of Nerd Out, Dave goes solo to talk about behavioral analytics, recent reporting and how to merge those together to deliver insights and develop appropriate plans. It's one thing to have the data, and it's one thing to have the reports that point to various types of behaviors, but merging them together can be a challenge. Dave also talks to the ways to develop the data if you don't have a tool. Dave wraps up by giving some thoughts on what he is seeing from the ever expanding extended universes. Is there a reason to be concerned? Could he be losing interest? Reports mentioned in this podcast include: START: https://www.start.umd.edu/spotlight/pirus-dataset-launches-major-update-adding-955-subjects-database U.S. Secret Service: https://www.secretservice.gov/newsroom/releases/2023/01/new-secret-service-research-examines-first-time-five-years-mass-violence

In this Week's Security Sprint, Dave and Andy talk about the following topics. Extremism and Terrorism: START reports. PIRUS: https://www.start.umd.edu/profiles-individual-radicalization-united-states-pirus-keshif; https://www.start.umd.edu/news/major-update-pirus-dataset-adds-955-us-subjects-2019-2021 Press Release via Yahoo! Terrorist attacks more deadly, despite decline in the West, 14 Mar, PDF and complete report, Institute for Economics & Peace: Global Terrorism Index 2023 Catholic Vote: ⁠⁠300th Catholic Church Attacked Since 2020⁠⁠, 13 Mar Banking Fears: World Economic Forum: https://www.weforum.org/agenda/2023/03/fears-global-banking-crisis-economy-roundup/ CNN: https://www.cnn.com/2023/03/16/investing/bank-scare-credit-suisse/index.html Intergovernmental Panel on Climate Change (IPCC) Report: The Guardian: Scientists deliver ‘final warning’ on climate crisis: act now or it’s too late, 20 Mar IPCC Sixth Assessment Report, 20 Mar IPCC IPCO Sixth Assessment Report Working Group 1: The Physical Science Basis; Summary for Policymakers Other: New York Post: NYC bracing for unrest after Trump calls for protests over possible arrest, indictment, 19 Mar The Register: LockBit brags: We’ll leak thousands of SpaceX blueprints stolen from supplier, 13 Mar CISA: CISA Establishes Ransomware Vulnerability Warning Pilot Program, 13 Mar DOJ: Associate Attorney General Vanita Gupta Issues Statement on the FBI’s Supplemental 2021 Hate Crime Statistics, 13 Mar Senator Mark Warner: Warner, Blackburn, Colleagues Request Cybersecurity Analysis of Chinese-Made Drones, 16 Mar SEC: SEC Proposes New Requirements to Address Cybersecurity Risks to the U.S. Securities Markets, 15 Mar CyberScoop: Presidential advisory council recommends cyber mandates for critical infrastructure, 14 Mar

On the latest episode of the Security Sprint, Andy bails Dave out on some technology issues and they work through it to cover the following topics. FBI IC3 Report:  FBI Internet Crime Report 2022 (PDF) & Report Statistics  Risky Biz News: BEC loses top spot in FBI Internet Crime report, 12 Mar  Physical Security: NJ [.] com:  Man yelled ‘white lives matter,’ threw smoke bombs at N.J. church’s anti-racism concert, 06 Mar  Michigan Man Arrested and Charged For Illegally Possessing Firearms While Making Threats to Kill Government Officials, 10 Mar Florida neo-Nazis who projected a swastika on a downtown building say the hysteria over drag queens is helping them recruit people, 10 Mar ODNI Annual Threat Assessment:  'ODNI Releases 2023 Annual Threat Assessment of the U.S. Intelligence Community and see here, PDF report, and U.S. Senate Hearing 08 Mar  Risky Biz News: ODNI report highlights China as the US’ biggest cyber threat, 09 Mar  SVB:  Statement from President Joe Biden on Actions to Strengthen Confidence in the Banking System  READOUT: Financial Stability Oversight Council Meeting on March Federal Reserve Board - Federal Reserve Board announces it will make available additional funding to eligible depository institutions to help assure …  Federal Reserve Board - Joint Statement by Treasury, Federal Reserve, and FDIC  Silicon Valley Bank: why did it collapse and is this the start of a banking crisis?  In historic last-minute deal, HSBC acquires Silicon Valley Bank UK, says all depositors’ money is safe  Silicon Valley’s surreal weekend  SVB’s ventures are taken apart in China, UK after US bank’s collapse  Other Cybersecurity Updates:  Cyber Incident Reporting Framework: Global Edition (PDF)  NBC: Data breach hits ‘hundreds’ of lawmakers and staff on Capitol Hill, 08 Mar  CNN: Hundreds of US lawmakers and staff affected by data breach, 08 Mar  WaterISAC: Threat Awareness – Keep Our Eyes on Emotet, 09 Mar  Cofense: Emotet Sending Malicious Emails After Three-Month Hiatus, 07 Mar  WIRED: The Era of Faked CCTV Has Truly Arrived, 07 Mar  Washington Post: Cyberattacks Are Just One Part of Hybrid Warfare, 07 Mar  Ransomware:  WIRED: Ransomware Attacks Have Entered a ‘Heinous’ New Phase, 13 Mar  Security Scorecard: ESXi Ransomware - A case study of Royal Ransomware Prepared by: Vlad Pasca, Senior Malware & Threat Analyst  Sentinel Labs: IceFire Ransomware Returns; Now Targeting Linux Enterprise Networks, 09 Mar  John Cena: Cybersecurity Enthusiast (?): @CenaOnSecurity  Gate 15's upcoming Blue Jeans Workshop: Addressing MDM Threats While Protecting Free Speech

In the latest episode of the Risk Roundtable, Andy and Dave welcome in Tracy Maleef as they went through the latest security news. Tracy kicked things off by looking at a new scam reported on by the Better Business Bureau involving craft fairs (is there no place that's safe). Then the roundtable took turns looking at the recently released National Cybersecurity Strategy and what it means for individuals and organizations, especially around training and information sharing. Andy used the release to also discuss corresponding actions that the EPA is taking to improve the resiliency of the water system. Tracy then transitioned back to other types of scams and how Artificial Intelligence is even getting into the scam business targeting individuals pretending to be loved ones and how safe words could be an effective mitigating factor. Dave wrapped things up with a quick hit on venue security to which the group discussed how this is not strictly a physical security problem, but in fact a blended threat. Andy put the finishing touches on the pod with his three questions (no comment on the new CISA website redesign). National Cybersecurity Strategy:  White House: FACT SHEET: Biden-⁠Harris Administration Announces National Cybersecurity Strategy, 02 Mar  Gizmodo: I Read the Biden Administration’s New Cyber Policy So You Don’t Have To, 04 Mar  US House Committee on Homeland Security: Green, Garbarino Statement on the Release of the National Cybersecurity Strategy, 02 Mar  Risky Biz News: White House unveils National Cybersecurity Strategy, 02 Mar  HS Today: COLUMN: A Shared Accountability Approach to Cyber Defense, by Bob Kolasky, 02 Mar  CISA Readout: Director Easterly Visits Carnegie Mellon University, Calls for “Radical Change” for Technology Product Safety in Major Address, 27 Feb Industrial Cyber: National Cybersecurity Strategy sets its eyes on improving security, resilience across critical infrastructure, 03 Mar  WSJ: Cisco Chief Says Tech Products Must Be Made More Secure, 02 Mar  Water Cybersecurity:  EPA: EPA Takes Action to Improve Cybersecurity Resilience for Public Water Systems, 03 Mar  Risky Biz News: EPA releases cybersecurity guidance for US public water sector, 05 Mar  CNN: US introduces new rules to protect water systems from hackers, 03 Mar  CyberScoop: EPA issues water cybersecurity mandates, concerning industry and experts, 03 Mar  SC Media: EPA memo pushes states to include cybersecurity in water safety reviews, 03 Mar  Industrial Cyber: EPA issues memorandum to address PWS cybersecurity using sanitary surveys, improve resilience, 06 Mar  Venue Security:  AP: 1 dead, 9 hurt in stampede at GloRilla concert in New York, 06 Mar  Dr. G K Still on Twitter, ‘Teaching crowd safety/risk analysis around the world. Consulting and expert witness experience help develop better teaching and training courses.’ International Association of Venue Managers’ (IAVM) Academy of Venue Safety and Security (AVSS)  Scams: BBB Scam Alert:  Think twice before filling out craft fair applications, 03 Mar  Washington Post: They thought loved ones were calling for help. It was an AI scam., 05 Mar

In this week's Security Sprint, Dave and Andy talked about the following topics: National Cybersecurity Strategy:  White House: FACT SHEET: Biden-⁠Harris Administration Announces National Cybersecurity Strategy, 02 Mar  Gizmodo: I Read the Biden Administration’s New Cyber Policy So You Don’t Have To, 04 Mar  US House Committee on Homeland Security: Green, Garbarino Statement on the Release of the National Cybersecurity Strategy, 02 Mar  Risky Biz News: White House unveils National Cybersecurity Strategy, 02 Mar  CISA Readout: Director Easterly Visits Carnegie Mellon University, Calls for “Radical Change” for Technology Product Safety in Major Address, 27 Feb Industrial Cyber: National Cybersecurity Strategy sets its eyes on improving security, resilience across critical infrastructure, 03 Mar  WSJ: Cisco Chief Says Tech Products Must Be Made More Secure, 02 Mar  Water Cybersecurity:  EPA: EPA Takes Action to Improve Cybersecurity Resilience for Public Water Systems, 03 Mar  Risky Biz News: EPA releases cybersecurity guidance for US public water sector, 05 Mar  CNN: US introduces new rules to protect water systems from hackers, 03 Mar  CyberScoop: EPA issues water cybersecurity mandates, concerning industry and experts, 03 Mar  SC Media: EPA memo pushes states to include cybersecurity in water safety reviews, 03 Mar  Industrial Cyber: EPA issues memorandum to address PWS cybersecurity using sanitary surveys, improve resilience, 06 Mar  Homeland Security: Greek Protests: https://www.bbc.com/news/world-europe-64820085 South Korean Protests: https://www.bbc.com/news/world-asia-64858944 HS Today: DHS at 20: Mission Poised ‘to Grow Even More Complex’ as New Threats May Pose ‘Even Greater Potential for Harm,’ 01 Mar  Politico: Documents: DHS has a domestic-intelligence program, 06 Mar  NIJ: Assessing Risk of Terrorist Acts by Looking at Location Data and Demographic and Social Characteristics, 27 Feb  HS Today: National Institute of Justice Examines Link Between Location of Terrorists and Risk of Terrorism, 27 Feb  Cybersecurity & Ransomware:  VulnCheck: The VulnCheck 2022 Exploited Vulnerability Report - A Year Long Review of the CISA KEV Catalog, 02 Mar  Recorded Future: 2022 Annual Report, 02 Mar  HS Today: Cyber Threat Trends to Watch This Year as Forecast by MS-ISAC, 02 Mar  Bleeping Computer: Play ransomware claims disruptive attack on City of Oakland, 03 Mar  CBS Bay Area: Ransomware hackers release some stolen Oakland data, 04 Mar  Other: Gizmodo: Yikes, the U.S. Is Now Using Facial Recognition Rigged Drones for Special Ops, 27 Feb

In the latest Security Sprint Dave and Andy cover the following topics: Extremism: ADL: Murder and Extremism in the United States in 2022, 22 Feb Bridget Johnson in HS Today: Jewish Community, Law Enforcement Respond with Preparedness, Unity to Extremists’ ‘National Day of Hate,’ 24 Feb ABC 6 Action News: Philadelphia mosque vandalized with paint; suspect wanted, 27 Feb Blended Threats: CNN: Cyberattack on food giant Dole temporarily shuts down North America production, company memo says, 22 Feb Gate 15: Blended Threats to Hospitals: A Growing Concern, 21 Feb Newsweek: Russian Media Hack Hits During Putin Speech, 21 Feb Information Operations: Graphika: How to Lose Influence and Alienate People, 23 Feb Meta: Meta’s Ongoing Efforts Regarding Russia’s Invasion of Ukraine, 22 Feb 2022 Others: The Record at Recorded Future: Oakland says 311, business license systems still down, but National Guard is helping, 24 Feb Cybersecurity 202: Federal panel says agencies need to focus on harmonizing cyber regulations, 22 Feb Malwarebytes: Royal Mail schools LockBit in leaked negotiation, 23 Feb

In this episode of The Gate 15 Interview, Andy Jabbour visits with Rachel Tobac, (She/Her), CEO, SocialProof Security, Friendly Hacker. Rachel is a hacker and the CEO of SocialProof Security where she helps people and companies keep their data safe by training and pentesting them on social engineering risks. Rachel was also 2nd place winner of DEF CON’s wild spectator sport, the Social Engineering Capture the Flag contest, 3 years in a row. Rachel has shared her real life social engineering stories with NPR, Last Week Tonight with John Oliver, The New York Times, Business Insider, CNN, NBC Nightly News with Lester Holt, Forbes and many more. In her remaining spare time, Rachel is the Chair of the Board for the nonprofit Women in Security and Privacy (WISP) where she works to advance women to lead in the fields. On Twitter: @RachelTobac and see @SocialProofSec & @WISPorg On Mastodon: http://infosec.exchange/@racheltobac In the discussion we address: Rachels’ superhero origin story and her company, SocialProof Security Women in Security and Privacy (WISP) Hacking. Hacking. Hacking. Twitter and Baking Security In And a little on horror, time travel and Twin Peaks! A few references mentioned in or relevant to our discussion include: SocialProof Security Women in Security and Privacy (WISP) - Advancing Women To Lead The Future Of Privacy And Security. CNN: We asked a hacker to try and steal a CNN tech reporter’s data. Here’s what happened, 18 Oct 2019 CNN, three years later (2022): 'Don't use the same password': Watch how easy it was to hack this CNN reporter Aura: Hacking A Billionaire, with Rachel Tobac Yubico: Uber Hack Reenactment Video, with Rachel Tobac Twitter: An update on two-factor authentication using SMS on Twitter, 15 Feb 2023 Rachel’s Twitter Thread regarding the announcement CISA Director Jen Easterly’s Twitter Thread regarding the announcement The Hill on Which Rachel will die, on Twitter And check out SocialProof Security merch on Etsy; Gear for The Politely Paranoid (the stickers are awesome and on Andy’s laptop…)

In the latest episode of Nerd Out, Dave is joined by Bridget Johnson and Joe Levy as they talked about some of the hostile events to date in 2023 and looked ahead to the coming faith-based holidays and celebrations in the coming months. Bridget talked about the California shootings and the power of copy cats, while Joe focused attention on the various ways that organizations can deploy security protocols to reduce risk. The nerds then took a look ahead at the upcoming religious holidays and what that might mean for accelerationists and other hate-based groups. Joe then wrapped up talking about the upcoming AVSS event that is coming up in Pittsburg. Registration Information can be found here: https://iavm.org/events/avss/  Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

On this week's Security Sprint, Dave allows Andy to start off and talk about how the rightful name for the third Monday in February. Then Dave and Andy covered the following topics. Twitter & MFA Twitter: An update on two-factor authentication using SMS on Twitter, 15 Feb. TechSpot, Twitter’s SMS two-factor authentication is now a paid feature, 19 Feb Bleeping Computer, Twitter gets rid of SMS 2FA for non-Blue members — What you need to do, 19 Feb Rachel Tobac on Twitter’s update, via Twitter, 17 Feb Jen Easterly on Twitter’s update, via Twitter, 19 Feb FBI: Director Wray’s Remarks at the 2023 Homeland Security Symposium and Expo, 16 Feb Oakland’s Ransomware Attack Pogo Was Right, Data Breaches.net, Weeklong ransomware attack on Oakland government drags on, 18 Feb San Francisco Business Times: Oakland cyberattack hobbles planning department, blocks most building permits, 17 Feb Kron4: Oakland PD warns of delayed response times after city targeted by ransomware attack, 14 Feb Supply Chain. UK National Cyber Security Centre: Supply Chain Cyber Security: Assessing and gaining confidence in your suppliers: https://www.ncsc.gov.uk/files/Assess-supply-chain-cyber-security.pdf Others: LA Times: Suspect in shootings of two Jewish men in L.A. is charged with federal hate crimes, 17 Feb CERT-EU: Sustained activity by specific threat actors, 15 Feb

In this week's Security Sprint, Dave and Andy talked about the following topics. Event and Venue Safety and Security:  Athletic Business: Crowd Crush Ensues Outside Purdue’s Mackey Arena as Students Wait for Ticket Giveaway, 08 Feb  IAVM’s Academy for Venue Safety and Security  Extremism:  DoJ: Maryland Woman and Florida Man Face Federal Charges for Conspiring to Destroy Energy Facilities, 06 Feb  HS Today: Pair Charged with Conspiring to Attack Maryland Power Facilities with Mylar Balloons, Rifle in Extremist Plot, 06 Feb  Heavy: Sarah Clendaniel & Brandon Russell: 5 Fast Facts You Need to Know, 07 Feb  Gate 15: The Gate 15 Interview: Brian Harrell on Energy & Infrastructure Security, plus baseball, boating & burgers!, 26 Dec 2022  Ransomware:  BlackFog: Retail Sector Ransomware Attacks Grow in 2022, 07 Feb  CISA: Alert (AA23-040A) - #StopRansomware: Ransomware Attacks on Critical Infrastructure Fund DPRK Malicious Cyber Activities, 09, 10 Feb  CISA: Alert (AA23-039A) - ESXiArgs Ransomware Virtual Machine Recovery Guidance, 08 Feb  VMWare: ESXiArgs: Questions & Answers Recorded Future® by Insikt Group® In Before The Lock: ESXi, 13 Feb: https://www.recordedfuture.com/in-before-the-lock-esxi  Top Risks in Cybersecurity 2023:  Bipartisan Policy Center: Top Risks in Cybersecurity 2023, 12 Feb  Washington Post Cybersecurity 202: The top cyber risks to watch out for in 2023, 13 Feb  Others:  BBC: Ukraine war - Russia planning 24 February offensive, Ukrainian defence minister says, 02 Feb  Darth Putin on Twitter: @DarthPutinKGB Risky Biz News: Russia wants to absolve patriotic hackers from any criminal liability, 12 Feb  Group-IB: Know Thy Enemy: unraveling the “Hi-Tech Crime Trends 2022/2023” report, 10 Feb  WSJ: Insurers Say Cyberattack That Hit Merck Was Warlike Act, Not Covered, 08 Feb  BlackCloak Identifies Surge in Doxxing and Swatting Threats on Corporate Executives, 08 Feb  Graphika: Deepfake It Till You Make It, 07 Feb  Dave & Andy talking U2's top 5 albums: Nerd Out Security Panel Discussion: EP 12. High Stress and U….2., 20 Apr 2021

In the latest episode of the Risk Roundtable, Andy does double duty, first welcoming Jen to get the latest on the ransomware threats, before bringing Dave in to talk about weather and natural disasters. Jen kicked things off talking about all things ransomware to include preparedness items, the recent Hive takedown, the importance of reporting, and ways to protect yourself. Dave then joined Andy to talk about the third-wheel in the all-hazards preparedness model - weather and natural disasters, especially in light of the recent earthquake in Turkey. The roundtable took a split approach to the end of pod questions talking about marathon's, some show dilemmas and the arc of Paul Rudd! US Secret Service: New Secret Service Research Examines for the First Time Five Years of Mass Violence Data, 25 Jan Washington Post: N. Carolina church says it lost nearly $800K in email scam, 28 Jan NWS: Hurricane Matthew in the Carolinas: October 8, 2016, page created: 29 Sep 2017, last updated: 26 Aug 2021 Ransomware and Cyber News: Bleeping Computer: VMware warns admins to patch ESXi servers, disable OpenSLP service, 06 Feb Bleeping Computer: Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide, 03 Feb Risky Business News: Risky Biz News: Ransomware wave hits thousands of VMWare ESXi servers, 06 Feb CISA: VMware Releases Security Update for VMware vRealize Operations, 1 Feb Canadian Centre for Cyber Security: VMware security advisory (AV23-066), 3 Feb Ransomware! Webinar, REGISTER NOW! Ransomware: Planning and Protecting Your Organization, Recorded Future & Gate 15, 14 Feb

In this week's Security Sprint, Dave and Andy talked about the following topics:  Ransomware:   Bleeping Computer: Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide, 3 Feb  Risky Business News: Risky Biz News: Ransomware wave hits thousands of VMWare ESXi servers, 06 Feb  CISA: VMware Releases Security Update for VMware vRealize Operations, 1 Feb  Canadian Centre for Cyber Security: VMware security advisory (AV23-066), 3 Feb  Valentine’s Day 2023, :sparkling_heart: and  Ransomware! Webinar, REGISTER NOW! Ransomware: Planning and Protecting Your Organization, Recorded Future & Gate 15, 14 Feb  DDoS:  Radware, Passion: A Russian Botnet, 31 Jan  Bleeping Computer, New DDoS-as-a-Service platform used in recent attacks on hospitals, 01 Feb  The Record: Customizable new DDoS service already appears to have fans among pro-Russia hacking groups, 03 Feb  Faith-Based Security:  Fox 5, Las Vegas: Man threatened mass shooting at Las Vegas synagogue, police say, 31 Jan  ABC 7 News: SFPD arrest man suspected of firing blank rounds inside synagogue, bringing gun into theater, 05 Feb  Chinese Balloons: US DOD: Statement From Secretary of Defense Lloyd J. Austin III, 04 Feb  And see the Gate 15 SUN from Friday and Monday for numerous links.  Baking in Cybersecurity:  Foreign Affairs: Stop Passing the Buck on Cybersecurity; Why Companies Must Build Safety Into Tech Products, 01 Feb  Washington Post Cybersecurity 202: How CISA plans to get tech firms to bake security into their products, 06 Feb  Others:  FBI: Elicitation Techniques, 31 Jan  Voice of America, Russia Developing Weapons to Target Critical Subsea Cables, Pipelines, 02 Feb  Reuters: Huge earthquake kills 2,600 in Turkey and Syria, bad weather worsens plight, 06 Feb

In the latest Security Sprint, Dave and Andy talked about the following topics: US Secret Service: New Secret Service Research Examines for the First Time Five Years of Mass Violence Data, 25 Jan Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update DoJ: U.S. Department of Justice Disrupts Hive Ransomware Variant, 26 Jan FTC: FTC Finalizes Order with Ed Tech Provider Chegg for Lax Security that Exposed Student Data, 27 Jan DoJ: Former Special Agent in Charge of the FBI New York Counterintelligence Division Charged with Violating U.S. Sanctions on Russia, 23 Jan Washington Post: N. Carolina church says it lost nearly $800K in email scam, 28 Jan Gate 15 SUN, US Section, faith-based incidents, 30 Jan CISA: JCDC Focused on Persistent Collaboration and Staying Ahead of Cyber Risk in 2023, 26 Jan Washington Post THE CYBERSECURITY 202: Anne Neuberger discusses work to protect critical infrastructure, 30 Jan CISA: Secure Your Drone: Privacy and Data Protection Guidance, 27 Jan Hawaii News Now: After signs are hacked, state warns changing roadwork message boards is illegal, 26 Jan Risky Biz News: KeePass disputes vulnerability designation for feature that exposes cleartext passwords, 29 Jan Webinar, REGISTER NOW! Ransomware: Planning and Protecting Your Organization, Recorded Future & Gate 15, 14 Feb:  https://go.recordedfuture.com/ransomware-planning-and-protecting-your-organization?utm_campaign=ransomware-webinar&utm_source=gate15&

In this episode of The Gate 15 Interview, Andy Jabbour visits with Josh Poster, Intelligence and Analysis Operations Manager for Auto-ISAC. In that role, Josh also serves as the Leader, Auto-ISAC Intel & Analysis Division & Vice Chair, National Council of ISACs (NCI). His past roles have included Program Manager, Public Transportation and Surface Transportation ISACs, Program Manager, Information and Infrastructure Technologies, and Sr. Analyst, Electronic Warfare Associates, among others. He holds a Bachelor of Science degree in Anthropology and is a long-time leader in the ISAC and homeland security communities.  ‘Preparation is prevention’ - Josh Poster ‘Everyone has a plan until they get punched in the mouth.’ – Mike Tyson  In the discussion we address:  Josh’s background and current position  Developing trust, the importance of relationships and how those relate to both Auto-ISAC and broader, cross-sector and private-public information sharing Building confidence through preparedness  We name drop longtime National Council of ISACs leaders Health ISAC’s Denise Anderson, IT-ISAC’s Scott Algeier, and Comms ISAC’s Joe Veins, as well as Bob Kolasky, formerly Assistant Director the Cybersecurity and Infrastructure Security Agency (CISA) and now Exiger’s Senior Vice President of Critical Infrastructure. We also talk about the very valued Auto-ISAC Executive Director, Faye Francy.  The Gate 15 Interview EP 28: Talking election security, tea and baseball, with Scott Algeier  Bob Kolasky - How the Cyber Risk Landscape Changed in 2022 – and What’s in Store for 2023  Companies recognizing bottom-line impact will spend more on cybersecurity, 13 Jan 2023  The cyber threats facing the automotive industry Fishing, Rainbow Trout, BMX and more! ‘Every single one of our members has a global presence’ - Josh Poster  A few references mentioned in or relevant to our discussion include:  Automotive Information Sharing And Analysis Center (Auto-ISAC)   National Council of ISACs (NCI)  Josh was also a guest on the podcast in September 2022: The Gate 15 Interview: Cybersecurity Awareness Month 2022 with the National Cybersecurity Alliance, Auto-ISAC and FS-ISAC!  Plus, background! shout-outs!! favorite movies, tigers, and more!!!  BBC, Industrial espionage: How China sneaks out America’s technology secrets, 17 Jan 2023  FEMA National Level Exercises and Cyber Storm ENISA: The European Union Agency for Cybersecurity  Japanese Auto-ISAC  WIRED: Hackers Remotely Kill a Jeep on the Highway—With Me in It, 21 July 2015  WIRED: The Jeep Hackers Are Back to Prove Car Hacking Can Get Much Worse, 01 Aug 2016

In the latest Nerd Out, Dave welcomes Ed Heyman and Alec Davison to talk about the recent hostile event in Monterey Bay and how organizations can take some of the lessons learned from the incident and apply them to their business. This led to a deeper discussion about simple and straightforward security measures that can go a long way to ensuring the organization is prepared for a wide variety of events. This discussion included sharing free resources around vulnerability assessments, training, and exercises. The nerds then talked about Faith-Based Organizations and some of the threats that these organizations are facing heading into 2023 to include the often-overlooked threat from above (drones), as well as the impacts that attacks on critical infrastructure can have. Ed Heyman is a security professional with over 30 years of experience in the intelligence and security community and he is the co-chair of the Faith-Based Information Sharing and Analytical Organization (FB-ISAO) Organizational Resilience Group. Alec Davison is a threat and risk analyst with Gate 15 where he works with various industries on threat awareness and security preparedness matters. Some of the resources mentioned in this episode include: Conduct a facility vulnerability assessment, such as a free assessment offered through DHS’s Protective Security Advisor (PSA) program. Train employees on how to identify suspicious behaviors and activities, using resources available through the Nationwide Suspicious Activity (SAR) Initiative (NSI) and information in the U.S. Violent Extremist Mobilization Indicators booklet (2021 edition). Maintain situational awareness about incidents and events happening in your communities that threat actors might seek to exploit to commit acts of violence, such as by connecting with your local fusion center. Prepare and/or update an emergency response plan, including by using templates and resources provided by EPA and FEMA. Rehearse and improve your plans and employee preparedness through training and exercises. DHS’s Cybersecurity and Infrastructure Security Agency (CISA) has published a series of CISA Tabletop Exercise Packages (CTEPs) that prompt participants to walk through their plans for responding to incidents. First Responder Toolbox: Free reference aid material intended to promote counterterrorism coordination among federal, state, local, tribal, and territorial government authorities and partnerships with private sector officials in deterring, preventing, disrupting, and responding to terrorist attacks.

On this week's Security Sprint, Dave and Andy provided insights and additional thoughts into the following incidents or security news items. DOJ: Evergreen Man Arrested for Making Threats of Violence to Law Enforcement Agencies and a Performing Arts Group, 17 Jan HS Today: Colorado Man Accused of Threatening Mass Shootings at FBI, DHS; Used FBI’s Online Tip Form, 17 Jan White House: Statement from President Joe Biden on the Shooting in Monterey Park, California, 22 Jan Chainanalysis: 2023 Crypto Crime Trends: Illicit Cryptocurrency Volumes Reach All-Time Highs Amid Surge in Sanctions Designations and Hacking, 12 Jan Coveware: Improved Security and Backups Result in Record Low Number of Ransomware Payments, 20 Jan Gate 15: Blended Threats (update 1.1): Understanding an Evolving Threat Environment, 01 Mar 2018 The Record: Samsung investigating claims of hack on South Korea systems, internal employee platform, 20 Jan WBRZ 2, ABC News: Cyber attack on clerk of court systems prompts sheriff’s sale cancellations, 17 Jan The Register: Punch-drunk Apple Watch called 15 cops to a boxing workout when it heard ‘shots’, 19 Jan CNN: High egg prices may tempt you to start your own backyard flock, but chickens carry some health risks FBI: Ten Most Wanted Fugitives FAQ — FBI

In the latest Security Sprint, Dave and Andy touched on the following topics: Milestones and notable reports. REN-ISAC Birthday! https://www.ren-isac.net/about/History/index.html CISA Year Review. https://www.cisa.gov/2022-year-review Weather. https://www.cnn.com/2023/01/13/weather/tornado-storm-damage-south-friday/index.html FAA Incident.  https://www.faa.gov/newsroom/faa-notam-statement Survey of Threat Landscape. https://www.washingtoninstitute.org/policy-analysis/survey-2023-terrorism-threat-landscape Protecting data. https://www.bbc.com/news/world-asia-china-64206950 https://www.dw.com/en/us-to-invest-millions-to-expose-kim-jong-un-regime-to-north-koreans/a-64405400?maca=en-rss-en-world-4025-rdf Dose of Cyber! https://analyst1.com/ransomware-diaries-volume-1/ https://twitter.com/andyjabbour/status/1615048335760719872?s=20&t=qBDUVHXSk_jkOYKoKPv1TQ https://twitter.com/NSA_CSDirector/status/1613850710453501955?s=20&t=DsfyO-7Gt3uObRlRN4-zjg https://arstechnica.com/information-technology/2023/01/vulnerability-with-9-8-severity-in-control-web-panel-is-under-active-exploit/ https://www.reuters.com/world/europe/russian-hackers-targeted-us-nuclear-scientists-2023-01-06/ https://meduza.io/en/news/2023/01/13/phishing-scam-invites-russian-telegram-users[…]heck-conscription-lists-to-see-if-they-ll-be-drafted-in-february

Embarking on year 4, the Risk Roundtable jumps two feet into 2023 by talking through the various physical and cyber threats that continue to present challenges. Jen opened up the discussion covering the latest breaches with password managers, fast food restaurants and even platforms that seem to be unbreakable. Matching Jen, Dave covers the wide variety of physical security threats and environmental considerations that organizations are already dealing with this year to include critical infrastructure concerns (power stations, solar plants), terrorism, and environmental factors, to include understanding the role that politics can have in the workplace.  Before moving to the roulette round Andy led a discussion about the importance of preparedness in this complex environment and the risk of not evaluating these incidents and taking appropriate action. Jen then talked about the news and cyber implications around ChatGPT, as well as ensuring organizations are aware of some upcoming timelines such as the end of support for Windows 7 (yes, it is still being used). Dave transitioned and talked about Bridget Johnson's latest piece on 7 Terrorism Trends for 2023 before Andy wrapped up with the ever-popular three questions. Some of the topics discussed include: Imperva Report: More Lessons Learned from Analyzing 100 Data Breaches https://www.imperva.com/resources/resource-library/white-papers/more-lessons-learned-from-analyzing-100-data-breaches/ Not in a million years: It can take far less to crack a LastPass password Dec 28, 2022 https://blog.1password.com/not-in-a-million-years/ Troy Hunt on Twitter regarding Twitter breach: https://twitter.com/troyhunt/status/1611263070738972677?s=61&t=vOVhs4DMT_LNUVPd9z8gkg We gave a few mentions of our esteemed colleague Bridget Johnson, @BridgetCJ on Twitter, and her recent article in HS Today, 7 Terrorism Trends to Watch in 2023. Attacks on Critical Infrastructure to include power plants, and a solar energy farm ChatGPT links: SANS Institute https://www.sans.org/webcasts/what-you-need-to-know-about-openai-new-chatgpt-bot-and-how-it-affects-your-security-lightning-talks-panel-sessions/ https://www.darkreading.com/omdia/chatgpt-artificial-intelligence-an-upcoming-cybersecurity-threat- https://www.hackread.com/hackers-openai-chatgpt-malware/ https://www.scmagazine.com/analysis/emerging-technology/cybercriminals-are-already-using-chatgpt-to-own-you 

In this week's Security Sprint, Dave and Jen are joined by Alec Davison discuss: 7 Terrorism Trends to Watch in 2023 - https://www.hstoday.us/featured/7-terrorism-trends-to-watch-in-2023/ Two charged with attacks on four Pierce County power substations - https://www.justice.gov/usao-wdwa/pr/two-charged-attacks-four-pierce-county-power-substations| Man, 34, is charged with terrorism after he ‘deliberately destroyed solar energy plant’ - https://tetracyclined7k.com/man-34-is-charged-with-terrorism-after-he-deliberately-destroyed-solar-energy-plant/ German police arrest Iranian man suspected of planning chemical attack - https://amp.theguardian.com/world/2023/jan/08/german-police-arrest-iranian-man-suspected-of-planning-chemical-attack Political Violence. https://thehill.com/homenews/state-watch/3802461-florida-man-arrested-for-threats-of-lgbtq-mass-shooting/ https://www.npr.org/2023/01/06/1147392476/albuquerque-democrats-attacks-homes-offices-bernalillo-new-mexico Brazil protests and breach of government buildings - Brazil protests: Lula vows to punish ‘neo-fascists’ after Bolsonaro supporters storm congress Cyber.  Not in a million years: It can take far less to crack a LastPass password | 1Password Mac vulnerabilities Chick fil a breach Windows 7 end of service

Gate 15 is kicking off 2023 with a new weekly pod with a sprint through the latest security news, risks and new threats and some of the key focus areas for organizations to consider behind the headlines. In this inaugural episode, Dave and Andy discuss: Ransomware: Ransomware gang apologizes, gives SickKids hospital free decryptor: https://www.bleepingcomputer.com/news/security/ransomware-gang-apologizes-gives-sickkids-hospital-free-decryptor/ Bleeping Computer: Ransomware gang cloned victim’s website to leak stolen data, 01 Jan 2023 https://www.bleepingcomputer.com/news/security/ransomware-gang-cloned-victim-s-website-to-leak-stolen-data/ ecrime Threat and Risk Intelligence Services https://ecrime.ch:   Verve Security: How to Prevent Ransomware in 2023, 28 Dec 2022 https://verveindustrial.com/resources/blog/how-to-prevent-ransomware-in-2023/ which is not to be confused with The Verve: https://www.youtube.com/watch?v=1lyu1KKwC74 Climate / Weather: FEMA National Preparedness Report: https://www.fema.gov/emergency-managers/national-preparedness PDF: https://www.fema.gov/sites/default/files/documents/fema_2022-npr.pdf Hostile Events: New York City and other attacks. New York Post: Alleged Islamic extremist who attacked NYPD cops with machete was on FBI watchlist: sources, 01 Jan 2023 https://nypost.com/2023/01/01/alleged-islamic-extremist-who-attacked-nypd-cops-with-machete-idd/ New York Post: Mass shooting at Alabama New Year’s Eve celebration leaves one dead, 9 others injured, 01 Jan 2023 https://nypost.com/2023/01/01/1-dead-9-injured-in-alabama-new-years-eve-shooting/ And cyber hygiene - software updates: WIRED: Update Android Right Now to Fix a Scary Remote-Execution Flaw Plus: Patches for Apple iOS 16, Google Chrome, Windows 10, and more., 31 Dec 2022 https://www.wired.com/story/android-ios-16-windows-10-critical-update-december-2022/

In this episode of The Gate 15 Interview, Andy Jabbour visits with Brian Harrell, Vice President and Chief Security Officer (CSO) at AVANGRID. Brian currently serves as the Vice President and Chief Security Officer (CSO) at AVANGRID, an energy company with assets and operations in 24 states. He is responsible for the company’s cybersecurity, privacy, physical security, threat management, and business continuity.  In 2018, Brian was appointed by the President of the United States to serve as the sixth Assistant Secretary for Infrastructure Protection at the U.S. Department of Homeland Security. He was also the first Assistant Director for Infrastructure Security at the Cybersecurity and Infrastructure Security Agency (CISA). He has spent time during his career in the US Marine Corps and various private sector agencies with the goal of protecting the United States from security threats. Brian is a Board Member and Strategic Advisor to many great companies. Brian on Twitter: @gridsecure  In the discussion we address: Brian’s background and path from law enforcement to infrastructure, CISA to AVANGRID  Information Sharing  Preparedness and Best Practices  Evolving threats to energy and infrastructure, including hostile events, insider threats, cyberattacks and nation state threats, 3rd party risk and more  We talk baseball, burgers, and boating, plus shoutouts to some valued friends and partners!  A few references mentioned in or relevant to our discussion include:  AVANGRID. “AVANGRID is a leading sustainable energy company transitioning America toward a clean and connected future headquartered in Orange, CT, and has a footprint in 24 states with $40 billion in assets. Our primary businesses are Avangrid Networks, which serves 3.3 million electric and natural gas customers in the Northeast, and Avangrid Renewables, the third-largest renewable energy company in the U.S. with a diverse onshore and offshore renewable energy portfolio.”  WSJ Pro Research Survey: Preparedness Results, 29 Nov 2022  The Cybersecurity and Infrastructure Security Agency (CISA) release of the Resilient Power Best Practices for Critical Facilities and Sites. This document supports emergency and continuity managers with guidelines, analysis, background material, and references to increase the resilience of backup and emergency power systems during all durations of power outages. Improving power resilience can help the nation withstand and recover rapidly from deliberate attacks, accidents, natural disasters, as well as unconventional stresses, shocks, and threats to our economy and democratic system.  The Electricity Information Sharing and Analysis Center (E-ISAC)  GridEx VII – November 14-15, 2023  Space ISAC  DHS CISA on Cyber-Physical Convergence  Gate 15: Blended Threats (update 1.1): Understanding an Evolving Threat Environment (and numerous other blog posts, papers and exercises)

In the latest episode of Nerd Out, Dave, Joe and Bridget look back at 2022 to capture their top security "surprise" before looking ahead to some security wishes for 2023. While Dave was surprised with organizational responses, Joe talked about the continuous challenges the organizations face on a day in and day out basis before Bridget rained down on the holiday cheer with some thoughts on the normalization of extremist behaviors. Turning to wishes, the team looked at spreading good will by focusing on fundamentals, creating security cultures, and being aware of the various threats that are lurking out there as threat actors continue to evolve. We hope you all enjoyed the podcast for 2022 and we look forward to an exciting 2023! Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

In the latest episode of the Risk Roundtable, Dave, Jen, and Andy wrap up their third year together and talk through recent events and talk about ways to fight off those seeking to ruin the holiday spirit. Dave and Andy kicked things off talking about the incident at the North Carolina power substation and what it could mean given recent events (Walmart shooting, Colorado Springs) and how to look at it from a preparedness standpoint. Jen dropped down the chimney and spread holiday cheer with a double shot of cybersecurity tips talking about holiday scams (in only the way Jen can do), and passwords (don't be like Dave). Then Dave then took the group back through some of the 2022 predictions to see if they were right, needed more time, or were off base before Andy put a bow on the podcast with a holiday themed question. Some of the topics discussed on the pod: National Terrorism Advisory System & Bulletin 30 Nov 22 HS Today: ’Targeted’ N.C. Substation Gun Attack Comes Amid Escalating Critical Infrastructure Threats, 04 Dec 22 Washington Post: Walmart gunman showed troubling behavior before attack, ex-colleagues say, 04 Dec 22 CNN: Gunman kills 5 at LGBTQ nightclub in Colorado Springs before patrons confront and stop him, police say, 21 Nov 22 GridEx VII – November 14-15, 2023 Congratulations, Troy & Charlotte Hunt! @troyhunt & @Charlotte_Hunt_ And see Troy’s tweet: Happy birthday to @haveibeenpwned, born 9 years ago on 04 Dec Catalin Cimpanu on Mastadon: ‘The only infosec predictions that need to be taken seriously are the ones in a meme format’: https://mastodon.social/@campuscodi/109427978223448015 Security Week: French Hospital Cancels Operations After Cyberattack, 05 Dec 22 https://www.sentinelone.com/blog/5-cyber-scams-to-watch-out-for-this-holiday-season/ https://www.bbb.org/article/news-releases/27843-bbb-study-update-reported-online-retail-fraud-losses-to-approach-$380m-in-2022 https://www.helpnetsecurity.com/2022/11/29/most-common-passwords-2022/ https://nordpass.com/most-common-passwords-list/ https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/

In this episode of The Gate 15 Interview, Andy Jabbour visits with James A. DeMeo and Herb Ubbens on their work with Crowdguard, facility security and security best practices and more.  James A. DeMeo, M.S. is a best-selling author, professional speaker, and event security expert. Mr. DeMeo brings vast experience to the public/private, non-profit, sports/entertainment, corporate, higher education & vendor management/contract analyst ecosystems. Mr. DeMeo serves as Vice President for Crowdguard US, a crowd safety solutions provider & CEO of Unified Sports and Entertainment Security Consulting, LLC., (USESC) based in Raleigh, NC. He was recognized by Security Magazine as The Most Influential People in Security 2017. Mr. DeMeo is also the author of the best-selling book, What’s Your Plan? A Step-By-Step Guide To Keep Your Family Safe During Emergency Situations. Mr. DeMeo holds professional memberships with both ASIS International and National Center for Spectator Sports Safety and Security-NCS4. He serves as a remote learning Adjunct Instructor with the following Universities: Tulane University’s School of Professional Advancement-SOPA, Jacksonville State University, Dept. of Kinesiology, Mercer University-Stetson School of Business where he teaches both graduate/undergraduate students about Event Security, Facilities and Risk Assessment. Mr. DeMeo is currently enrolled in an Online Higher Education Graduate Certificate Program at Appalachian State University-Cratis D. Williams School of Graduate Studies.  James on LinkedIn  James on Twitter: @JDeMeo007  Herb Ubbens. Guiding organizations to increase their resiliency and emergency preparedness, reduce risk and provide safety and value to their clients and assets. Board Certified in Security Management (CPP) and Physical Security (PSP). SAFETY Act DHS Assessor in BPATS (Best Practices for Anti-Terrorism Security). OSHA general industry and construction trainer, safety expert and Project Manager.  Herb on LinkedIn  In the discussion we address:  James’ and Herb’s backgrounds and the work they’re doing today to draw down risk and helping to secure mass gatherings and facilities.  Physical threats and reasonable ways to reduce risk  Best practices for organizations  James’ book, “What’s Your Plan?”  Thanksgiving, favorite drinks, and Gen X rock and hip hop!  A few references mentioned in or relevant to our discussion include:  Crowdguard US website: https://crowdguardus.com Want to see the latest innovation in pedestrian protection within public spaces? Join us for Crowdguard US Demo Day December 8, 2022 at the North Carolina Museum of Art where we will display the 2019 Counter Terror award winning Surface Guard barrier system. Read more here!  Andy mentions Dr. Tamara Herold  Incident: Several Injured After Car Reportedly Drives Into Carnival in South Central  Incident: Investigation into fatal crash at Apple store in Hingham continues  International Association of Venue Managers (IAVM)  Academy for Venue Safety and Security (AVSS) 

In the latest episode of Nerd Out, in which Dave continues to fumble with the introduction, Joe Levy and Bridget Johnson join to talk about a smooth election day, but what could be a long, tense post-election period that will be filled with recounts, and legal challenges. As she normally does, Bridget brought in the "cheer" of how extremists are viewing the results and how it could still be used for future attacks. Joe then took a look at venue security and how organizations should be more accustomed to being prepared for these type of events. Even so, as we move into the holidays there are several challenges facing organizations to include staffing shortages as well as challenges with experience levels. Then they wrapped up the pod with a fun "holiday food draft" where the Nerds went through their favorite holiday dishes and drinks. Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

It's never a good thing when Jen takes time and leaves Andy and Dave to their own devices. With Jen away, Andy tried to cover down for her and gave a shout out to all the cyber work being down by great security practitioners. Then the boys dug into hostile events and some of the challenges that individuals and organizations can face, even when they do the right thing. At the same time, there are also inherent responsibilities that we all have in identifying behaviors or contributing to a threat actor's pathway to violence by inaction (Michigan school shooting). Dave and Andy then talked about the upcoming election and all the work that is going to make safe and secure elections. However, there are also some potential risks that could occur in the aftermath. Finally, Dave and Andy have some fun talking about their top 5 (or 50) movies that they just can't turn off when they happen to see them on. Some of the areas covered on the pod include: Gate 15 SUN: https://paper.li/gate15  Catalin Cimpanu: @campuscodi & the Risky Biz Newsletter, https://riskybiznews.substack.com  Lawrence Abrams: @LawrenceAbrams and Bleeping Computer @bleepincomputer, bleepingcomputer.com  Brian Krebs: @briankrebs, krebsonsecurity.com  Ransomware Data Leaks: @ecrime_ch, https://ecrime.ch  Gate 15: Education on Hostile Event Preparedness: Hostile Event Attack Cycle, 10 Nov 2022, 1:00-2:30pm ET  Access Gate 15 White Paper on The Hostile Event Attack Cycle (HEAC), 2021 Update: https://gate15.global/white-paper-the-hostile-event-attack-cycle-heac-2021-update/ Former DHS Assistant Secretary for Infrastructure Protection Brian Harrell Urges Community to Collaborate During Infrastructure Security Month, HS Today, 30 Oct 2022 (Brian Harrell on Twitter: @gridsecure)  Nerd Out Security Panel Discussion: EP 30. Dave going solo talking Elections and Manifesto Impacts, 20 Oct 2022  The Gate 15 Interview EP 28: Talking election security, tea and baseball, with Scott Algeier, 25 Oct 2022  CISA Director, Jen Easterly, @CISAJen, on Face the Nation, @FaceTheNation, speaking to election security.  @DarthPutinKGB on Twitter and the Darth Web Shop: ‘Do not believe *anything* until The Kremlin denies it’  Prosecutors seek to introduce evidence Michigan school shooter's parents created a pathway to violence | CNN  FBI background check blocked gun sale to St. Louis school shooter  The USCP, FBI & San Francisco Police Joint Threat Investigation Conspiracy-Addled Intruder Allegedly Tried to Tie Up Paul Pelosi, Asked ‘Where’s Nancy?’ Pelosi attack stokes Congress' fears: "Somebody is going to die"  Paul Pelosi recovering as attack renews focus on toxic politics Lawmakers reveal — and dispute — FBI conclusion about 2017 baseball field shooting  Rand Paul attacker sentenced to additional prison time over yard assault  Capitol Police data indicates threats to lawmakers have surged since 2017  Domestic violent extremism investigations doubled from 2020 to 2021: FBI, DHS  An Assessment of the Second U.S. Government Domestic Terrorism Assessment  Analysis | For cyber experts, disinformation overshadows cyberthreats in midterms  Feds warn that domestic violent extremists pose heightened threat to midterm elections 'Complex threat environment' ahead of midterm elections, top cybersecurity official says  How ‘mule watchers’ evolved from a Truth Social meme into a ballot drop box patrol FBI investigating after Conservation Voters of NM gets letter with threats and ‘substance’  Experts fear rising global ‘incel’ culture could provoke terrorism

In this episode of The Gate 15 Interview, Andy Jabbour welcomes back Scott Algeier to discuss the work he’s doing with IT-ISAC and the Elections Industry Special Interest Group to help ensure, safe, secure, and reliable elections. Scott Algeier, who was on the Gate 15 interview earlier this year, is the Founder, President and CEO of Conrad, Inc. Cybersecurity Consulting. “Scott C. Algeier works at the intersection of cybersecurity policy and operations. He is the Founder, President and CEO of cybersecurity consulting firm Conrad, Inc., Executive Director of the Information Technology – Information Sharing and Analysis Center (IT-ISAC). Conrad, Inc. provides strategic policy and business consulting services to businesses and not for profit organizations focused on cyber security and critical infrastructure protection (CIP). Scott engages senior level policy makers in industry and government, domestically and internationally, on behalf of his clients. This includes direct engagement in the development of the nation’s most significant domestic cybersecurity and CIP policies and operational plans.” From his LinkedIn bio. To learn more about Conrad, Inc, visit the Conrad website and connect on Twitter and you can follow and learn more about Scott on LinkedIn. In the discussion we address:  What the IT-ISAC and the Elections Industry Special Interest Group (EI-SIG) are doing to help ensure safe, secure, and reliable elections.  Who is involved in the SIG.  The SIG’s mission, including Learning from Coordinated Sharing, Planning for Major Attacks or Incidents, and Enhancing Cybersecurity Protections.  The EI-SIG’s industry framework for a coordinated vulnerability disclosure program.  Scott returns to play three (more!) questions. A few references mentioned in or relevant to our discussion include:  Conrad website: https://www.conradinc.biz The IT-ISAC You Tube Channel with the Advancements TV segment IT-ISAC: https://www.youtube.com/itisac IT-ISAC: https://www.it-isac.org  Elections Industry Special Interest Group (SIG): https://www.it-isac.org/ei-sig The Gate 15 Interview: Scott Algeier on information sharing, critical infrastructure, cybersecurity & more! https://gate15.global/the-gate-15-interview-scott-algeier-on-information-sharing-critical-infrastructure-cybersecurity-more/ IT-ISAC Partners with Elections Infrastructure Sector Coordinating Council to Launch Threat Information-Sharing Group, 08 Aug 2018: https://130760d6-684a-52ca-5172-0ea1f4aeebc3.filesusr.com/ugd/b8fa6c_765f03ef0e584e7ca6819b41b7d16847.pdf FireWall Chats Episode 10, Pt. 1 - EI-SIG Members Eric Coomer, Sam Derheimer, and Brian Hancock: https://www.youtube.com/watch?v=Vqk-EiT5qZA&t=303s  FireWall Chats Episode 10, Pt. 2 - EI-SIG Members Keir Holeman, Ed Smith, and Chris Wlaschin: https://www.youtube.com/watch?v=QpSZTX8cEWY  IT-ISAC EI-SIG Two Years Of Progress White Paper, August 2020 (PDF): https://130760d6-684a-52ca-5172-0ea1f4aeebc3.filesusr.com/ugd/b8fa6c_1633ac012a1148eca2bf9dbaf3c965e9.pdf  If anyone has any questions on some of the work being doing by the FBI, CISA and others to help secure elections, or about some of the recent open source reporting regarding threats, please contact our team and we can provide a number of links.

In the latest episode of Nerd Out, Dave went without the panel and talked about two topics - Election preparedness and the impacts of a recent attack, specifically analyzing the manfesto from the threat actor in the recent Bratislava attack. Tackling the upcoming U.S. midterm elections, Dave talks through some of the key considerations for individuals and organizations and about the various risks not just leading up to the election, but after as well. Then Dave transitioned to talking about the recent attack against a LGBTQ business in Bratislava and the information that was gleamed from the manifesto. Particularly interesting was the inspiration that was gained from the Buffalo attacker in May. Referencing work by Nerd Out alumni Bridget Johnson, Dave talked through the importance of this analysis and then how it could be used by another threat actor in the future. Dave then wrapped up the pod (technical difficulties aside) with some mailbag questions related to weather preparedness and gaining leadership buy-in. Referenced in the pod: https://www.hstoday.us/featured/slovak-who-attacked-gay-bar-credits-buffalo-shooter-with-giving-him-final-nudge/

TCE talks Cybersecurity Awareness Month 2022 and Seeing Yourself in Cyber with Chris Foulon of the Breaking into Cybersecurity podcast. Resources and Mentions (it’s a long list, but we love to share resources and other’s great work) Breaking into Cybersecurity Podcast: A conversation about what you did before, why did you pivot into cyber, what was the process you went through Breaking Into Cybersecurity Develop Your Cybersecurity Career Path: How to Break into Cybersecurity at Any Level https://amzn.to/3443AUI by Gary Hayslip, Christophe Foulon, Renee Small Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career https://www.amazon.com/dp/1801816638/ by Ken Underhill, Christophe Foulon, Tia Hopkins The Whole Cyber Human Initiative https://www.wholecyberhumaninitiative.org/Creating Workforce Development to fix the talent gaps today @chris_foulon @BreakintoCyber Whole Cyber Human Initiative Valorr Cybersecurity NIST National Initiative for Cybersecurity Education (NICE) @InfoSecSherpa(Tracy Z. Maleeff) Cybersecurity Awareness Month https://staysafeonline.org/ @LisaPlaggemier The Gate 15 Interview: Cybersecurity Awareness Month 2022 with the National Cybersecurity Alliance, Auto-ISAC and FS-ISAC! Plus, background! shout-outs!! favorite movies, tigers, and more!!! Not mentioned in this podcast, but a couple of relevant (CS)²AI podcasts hosted by @Derek_Harp that I came across after – I hope they don’t mind the mentions! (CS)2AI Podcast 53: Career Advice for Women Pursuing Cybersecurity Positions with Danielle Jablanski (Nozomi Networks) @CyberSnark (CS)2AI Podcast 52: Cybersecurity Careers, Educational Requirements and Resume Advice with Ron Brash Ron Brash (aDolus) @ron_brash

On the latest episode of the Risk Roundtable, Andy leads Dave and Jen through a discussion of the various awareness campaigns and how these efforts do a great job of providing resources and materials for all organizations, big and small. Focusing first on Cybersecurity Awareness Month that is ongoing in the month of October, Jen talked through the messaging, the themes (See Yourself in Cyber) and the importance of each of us doing our part. Later in the podcast, Dave shared his thoughts on National Insider Threat Awareness Month that concluded in September and the theme of Critical Thinking for Digital Space and how everyone can do their part. The team also talked about security preparedness for the upcoming holidays. Andy capitalized on the discussion to talk about security awareness and mindfulness to appreciate, regardless of who you are and what your beliefs are. To cap off the episode, Andy took the roundtable through his three questions to include the always spicy debates on pumpkin pie and pumpkin flavored drinks. Microsoft Exchange links: https://www.microsoft.com/security/blog/2022/09/30/analyzing-attacks-using-the-exchange-vulnerabilities-cve-2022-41040-and-cve-2022-41082/ https://www.helpnetsecurity.com/2022/10/03/ms-exchange-cve-2022-41040-cve-2022-41082/ https://www.tenable.com/blog/cve-2022-41040-and-cve-2022-41082-proxyshell-variant-exploited-in-the-wild https://isc.sans.edu/forums/diary/Exchange+Server+0Day+Actively+Exploited/29106 Additional links include: Rob Joyce Cybersecurity Awareness Month Tweet: https://twitter.com/nsa_csdirector/status/1576879730006974464?s=21&t=i5SFfoTH_fMVxFbhMl1I2A Catalin Cimpanu Cybersecurity Awareness Month Tweet: https://twitter.com/campuscodi/status/1573485751278379018?s=21&t=i5SFfoTH_fMVxFbhMl1I2A Podcast link – https://gate15.global/the-gate-15-interview-cybersecurity-awareness-month-2022-with[…]ac-plus-background-shout-outs-favorite-movies-tigers-and-more/ Be A Cybersecurity Awareness Month Champion- https://staysafeonline.org/programs/cybersecurity-champion/ NCTC indicators – https://www.dni.gov/index.php/nctc-newsroom/nctc-resources/item/2272-u-s-violent-extremist-mobilization-indicators-2021 G15 resources IT - https://gate15.global/resources/insider-threat/ Jen Lyn Walker Tweet - https://twitter.com/gate15_jen/status/1576978983064780804?s=21&t=i5SFfoTH_fMVxFbhMl1I2A Major in the United States Army and a Maryland Doctor Facing Federal Indictment for Allegedly Providing Confidential Health Information to a Purported Russian Representative to Assist Russia Related to the Conflict In Ukraine https://www.justice.gov/usao-md/pr/major-united-states-army-and-maryland-doctor-facing-federal-indictment-allegedly Honolulu Man Pleads Guilty to Sabotaging Former Employer’s Computer Network - https://www.justice.gov/usao-hi/pr/honolulu-man-pleads-guilty-sabotaging-former-employer-s-computer-network

In this episode of The Gate 15 Interview, Andy Jabbour speaks with National Cybersecurity Alliance Executive Director, Lisa Plaggemier, Automotive ISAC Intelligence and Analysis Operations Manager & Vice Chair for the National Council of ISACs, Josh Poster, and FS-ISAC Senior Director, Strategic Partnerships, Bridgette Walsh, about Cybersecurity Awareness Month 2022! Lisa Plaggemier is Executive Director at the National Cybersecurity Alliance. She is a recognized thought leader in security awareness and education with a proven track record of engaging and empowering people to protect themselves, their families, and their organizations. Lisa has held leadership roles with the Ford Motor Company, CDK, InfoSec and MediaPRO, and is a frequent speaker at major events including RSA, Gartner and SANS. She is a University of Michigan graduate (Go Blue!) and while she wasn’t born in Austin, Texas, she got there as fast as she could. Twitter: @LisaPlaggemier Josh Poster is the Intelligence and Analysis Operations Manager for Auto-ISAC. In that role he also serves as the Leader, Auto-ISAC Intel & Analysis Division & Vice Chair, National Council of ISACs (NCI). His past roles have included Program Manager, Public Transportation and Surface Transportation ISACs, Program Manager, Information and Infrastructure Technologies, and Sr. Analyst, Electronic Warfare Associates, among others. He holds a Bachelor of Science degree in Anthropology and is a long time leader in the ISAC and homeland security communities. Bridgette Walsh is the Senior Director, Strategic Partnerships for the Financial Services-Information Sharing Analysis Center (FS-ISAC). Prior to her arrival at the FS-ISAC, Bridgette supported the Department of Homeland Security (DHS) mission since its inception in 2003 and has led various leadership positions within cybersecurity strategy and stakeholder engagement. She most recently served as the Deputy Assistant Director (A) for Stakeholder Engagement for the Cybersecurity and Infrastructure Security Agency (CISA) including standing up the 6th Division within CISA. She also served as the Chief of Staff for the Cybersecurity Division (CSD) in CISA and as the Senior Counselor for Cyber to the CISA Director providing strategic guidance and counselor on cyber issues for the Agency. While leading Partnerships & Engagement for the CSD Stakeholder Engagement and Cyber Infrastructure Resilience Sub-Division (SECIR) she oversaw the Departments’ development and delivery of the President’s Executive Order 13800 Critical Infrastructure deliverables and all major partnership engagements. See additional background on Bridgette below. In the discussion we address: The great organizations our guests belong to! Background on Cybersecurity Awareness Month DHS’s history and role with Cybersecurity Awareness Month Cybersecurity Awareness Month 2022 The role of the NCI and individual ISACs in message amplification Multi-factor authentication! Strong passwords and password managers! Updating software! Recognizing and reporting phishing! Books, movies, tigers and dogs, and our guests answer when they’d like to be in time! A few references mentioned in or relevant to our discussion include: Website Link: https://staysafeonline.org Cybersecurity Awareness Month Learn more about the National Cybersecurity Alliance’s Cybersecurity Awareness Month Champion program at https://staysafeonline.org/champion. Are you a Cybersecurity Awareness Month Champion yet? Sign up today to receive your toolkit of free infographics, social media posts, tip sheets and more! Join in helping everyone stay safe online. #BeCyberSmart Facebook: Staysafeonline Instagram: @natlcybersecurityalliance The Financial Services Information Sharing and Analysis Center (FS-ISAC) Automotive Information Sharing And Analysis Center (Auto-ISAC) National Council of ISACs (NCI) PPD-63 The Gate 15 Interview: Scott Algeier on information sharing, critical infrastructure, cybersecurity

In the latest episode of Nerd Out, Dave, Bridget, and Joe are together again and catch up on all the summer happenings to include an update on Bridget's ever-exciting news. The Nerd Out crew then turns to another list and talk about the significance and importance of the Homeland Security Today Hottest 50 list. Bridget gives some of the background on the list and some of the criteria that brought the list together while Dave and Joe were left to wonder if they might be on the list next year. Next, the gang talked about venue security and how the big summer season went relatively smoothly and what that could mean for the fall season and the upcoming significant events and holidays. Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

The latest episode of the Risk Roundtable brings a familiar voice to talk about the impact of her work. Homeland Security Today Managing Editor Bridget Johnson joins Andy, Jen and Dave to talk about her addition to "The List" - an accelerationist "hit list" based on her work on rooting out extremism and their propaganda. Bridget talks about the dual edged sword of safety while also knowing that her work is hitting the right spots with these hate-based actors. After Bridget left to handle matters connected to this threat, Dave, Andy, and Jen talked about the Multi-Factor Authentication and how it's important to implement but to also take appropriate care. Finally Dave took control and led the Roundtable through a new game of "Over-rated / Under-rated / Properly Rated". The team assessed where three security threats were rated and the reasons why. Andy finished things off with three questions that included Alf, Matthew McConaughey, and word association. Some of the topics discussed in this episode include: 0ktapus campaign: Twilio, Cloudflare, and over 130 more victims discovered by Group-IB: https://www.group-ib.com/media/0ktapus-campaign/ The Human Factor Report: https://www.proofpoint.com/us/resources/threat-reports/human-factor 

In this episode of The Gate 15 Interview, Andy Jabbour speaks with William (Bill) Flynn, the president of Garda Risk Management LLC, specializing in homeland and national security policy and operations with a focus on critical infrastructure security and resilience. Bill is a highly-sought after homeland security expert and is also a partner in The Power of Preparedness (TPOP) an e-learning company that goes beyond stand-up training to provide strategy and tactics to mitigate workplace violence and active assailant threats. He also serves on the board of the Faith-Based Information Sharing & Analysis Organization (FB-ISAO). Bill has served as a Senior Fellow at the George Washington University Center for Cyber & Homeland Security and was among the original leaders at DHS, where he served in a number of key leadership positions and including as the Principal Deputy Assistant Secretary of the Office of Infrastructure Protection (since renamed within what is today, CISA), where he led the coordinated national effort to reduce risk to our nation’s critical infrastructure. Read Bill’s complete bio below! Follow Bill on LinkedIn! Follow The Power of Preparedness on LinkedIn! Follow The Power of Preparedness on Twitter! @TPOPtraining In the discussion we address: Bill’s career of public service including time in the U.S. Navy, with the NYPD, and at DHS Bill’s ongoing work leading Garda Risk Management and with The Power of Preparedness · Threats, hostile events, behavioral indicators and preparedness Executive security and organizational risk and mitigation Creating a culture of security, the cost of preparedness vs. the costs of recovery, and the “three C’s” The Yankees, national monuments and icons, and much more! A few references mentioned in or relevant to our discussion include:  The Power of Preparedness: Online Training for Active Shooter Preparedness & Verbal De-Escalation Customized for Your Industry or Organization  The Gate 15 Hostile Events Preparedness Series (HEPS) and The Power of Preparedness (TPOP)  Faith-Based ISAO & TPOP  Get the White Paper! The Hostile Event Attack Cycle (HEAC), 2021 Update.  NCTC, FBI & DHS: U.S. Violent Extremist Mobilization Indicators 2021 Critical Infrastructure Threat Information Sharing Framework  A Reference Guide for the Critical Infrastructure Community, October 2016 PERSPECTIVE: Mass Shootings Are a Homeland Security Risk; Change starts with an accounting that what has been done – much of it laudable – has not been sufficient to the challenge. (Bill Flynn and Bob Kolasky, in Homeland Security Today, 11 June 2022)  The crisis after the crisis: What grocers can expect after an active shooter incident. Food retail managers should be prepared to handle external communication and support for victims and their families in the aftermath of violence, writes security expert William Flynn. International Association of Venue Managers (IAVM) FMI - The Food Industry Association The Restaurant Loss Prevention & Security Association (RLPSA)  Homeland Security - Office for Bombing Prevention (OBP)  Homeland Security - Protective Security Advisor (PSA) Program  Homeland Security - Regional Resiliency Assessment Program (RRAP)  On Executive Security, Bill and Andy discussed outspoken leaders and Andy shared comments made by Whole Foods CEO, John Mackey in this recent interview: Whole Foods' John Mackey (Reason, 10 Aug 2022) Gate 15 resources pages  Faith-Based Information Sharing & Analysis Organization Advisory Board

In the latest episode of Nerd Out, Dave goes solo and tackles security awards at the two-thirds part of the year. Looking at the important security issues or challenges of the year, Dave goes through a series of award tied to various pop-culture references before arriving at his two-thirds of the year MVP, if there really is a doubt. Then Dave transitions to a new security book he's reading and a couple shows that are on his list. Enjoy the show! Book mentioned: The Security Culture Playbook: An Executive Guide To Reducing Risk and Developing Your Human Defense Layer

TCE is back with another travel-related PSA. In episode 21, it’s another monologue and travel-related public service announcement – this time on the risk of automatic out-of-office notifications.

Ben Taylor, Executive Director of Cannabis ISAO, channels his inner Wolverine and makes his third stop on the Gate 15 podcasts as he joins Andy to talk about all things Cannabis as well as the collaborative effort to publish a joint security analysis around the Hard Reset. Dave then joins Andy to talk about recent cyber reporting and the value that they provide to organizations as they go beyond the numbers. Ensuring the episode hits key all-hazards, Andy and Dave discuss monkeypox and the lessons that can be applied from COVID that can help individuals and organizations make responsible, risk-informed decisions. Cannabis ISAO: Cannabis MSO Shares Cyber Threat Report: https://cannabisisao.org/2022/07/directors-cut-july-1-2022/  Risky Biz News, with Catalin Cimpanu (everyone with interests in cybersecurity should be subscribed to this), from 06 Jul 22: https://riskybiznews.substack.com/p/risky-biz-news-china-faces-its-first  Cannabis ISAO on the Hard Reset: https://cannabisisao.org/2022/07/directors-cut-july-15-2022/  Andy’s tweet on the Hard Reset report: https://twitter.com/andyjabbour/status/1550252329378713602?s=21&t=Kbwk6HAVKIkKf7xGrRUXrQ  Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update: https://gate15.global/white-paper-the-hostile-event-attack-cycle-heac-2021-update/  Nerd Out Security Panel Discussion: EP 27. The Hard Reset and Uvalde. https://gate15.global/nerd-out-security-panel-discussion-ep-27-the-hard-reset-and-uvalde/ Cannabis ISAO website: https://cannabisisao.org  Cannabis ISAO blog and Director’s Cut posts Ben’s previous pods Nerd Out Security Panel Discussion: EP 13. Cannabis ISAO! https://cannabisisao.org/home/blog/ The Gate 15 Interview: Ben Taylor, on Cannabis ISAO, Cannabis Industry security, cybersecurity, rescue dogs and more!  Monkeypox WHO Director-General's statement at the press conference following IHR Emergency Committee regarding the multi-country outbreak of monkeypox - 23 July 2022  CDC Monkeypox Statement from Raj Panjabi, Director of White House Pandemic Preparedness Office, on World Health Organization Declaration on Monkeypox  FACT SHEET: Biden-⁠Harris Administration’s Monkeypox Outbreak Response  IBM Cost of a Data Breach Report  Proofpoint State of Phish Report  SEKOIA.IO Mid-2022 Ransomware Threat Landscape ENISA Ransomware: Publicly Reported Incidents are only the tip of the iceberg & ENISA Threat Landscape for Ransomware Attacks.   Kim Milford, Executive Director, REN-ISAC interviewed in How Are K-12 and Higher Education Faring Against Ransomware?  Andy’s thread with KELA and noting The Record: Ransomware group demands £500,000 from British schools, citing cyber insurance policy  The Gate 15 Interview: Amanda Berlin and Megan Roddie talk cybersecurity, mental health hackers, DEFCON, musicals, fruits, and more! Homeland Security Today: hstoday.com

In this episode of The Gate 15 Interview, Andy Jabbour speaks with Amanda Berlin and Megan Roddie, cybersecurity leaders & mental health hackers, and they’ve got their hands in a lot more too!  Amanda is the Lead Incident Detection Engineer at Blumira and has worked in I.T. for almost her entire adult life. Before working at Blumira, Amanda’s responsibilities have included infrastructure security, network hardware and software repair, email management, network/server troubleshooting and installation, purple teaming with a focus on phishing employees and organizational infrastructure as well as teaching employees about security and preventing exploits. She currently serves as the Chief Executive Officer for Mental Health Hackers and is the co-host of the Brakeing Down Security Podcast (BrakeSec Podcast, @brakesec)!  Megan is a Senior Security Engineer at IBM, Co-Author of SANS FOR509 and has worked in cybersecurity since graduating from Sam Houston State University (and while she was still a student!). Previous roles have been with the Texas Department of Public Safety, Recon InfoSec, and with IBM’s X-Force. She currently serves as the Chief Financial Officer for Mental Health Hackers. Megan is also a Muay Thai fighter and coach.  Follow Mental Health Hackers on Twitter! @HackersHealth Follow Amanda on Twitter at @InfoSystir and on LinkedIn and follow Blumira on Twitter! Follow Megan on Twitter at @megan_roddie and on LinkedIn.  In the discussion we address:  Amanda & Megan’s backgrounds and origin stories  Awesome tips for breaking into security!  DEFCON and how to score a free breakfast at DEFCON!!  Mental Health Hackers  The Brakeing Down Security podcast  Muay Thai, Musicals, Apples & Bannanas!  Fruits, music and so much more!  A few references mentioned in or relevant to our discussion include:  Mental Health Hackers website  Mental Health Hackers on Twitter! @HackersHealth  Amanda on Twitter at @InfoSystir and on LinkedIn.  Megan on Twitter at @megan_roddie and on LinkedIn.  Tom Williams on Twitter: @ginger_hax  Amanda’s InfoSec Staples tweet - https://twitter.com/infosystir/status/972906318875983873?s=21&t=CCp0CmDgDcZXQVWtnpEXEA Blackhat USA 2022 - https://www.blackhat.com/us-22/defcon.html?_mc=sem_bhus_sem_bhus_x_tspr_Google_defcon30_bhusagcompetitvedefcon30_2022&gclid=Cj0KCQjwn4qWBhCvARIsAFNAMihsrClH8Aygi2UnTsbSus3teDdktlK2NiamBzyAORwM5nHcaE4pynwaArHkEALw_wcB  DEFCON 30 - https://defcon.org 10th Annual Brazilian Jiu-Jitsu Smackdown. A Brazilian Jiu-Jitsu event for information security professionals hosted by Jeremiah Grossman during Black Hat and Defcon - https://www.eventbrite.com/e/10th-annual-brazilian-jiu-jitsu-smackdown-tickets-348058561527 Amanda’s Book! Defensive Security Handbook: Best Practices for Securing Infrastructure (1st Edition) - https://www.amazon.com/Defensive-Security-Handbook-Practices-Infrastructure/dp/1491960388 Megan’s SANS Course! FOR509 Course Update - Introducing Google Workspace, the Multi-Cloud Intrusion Challenge - https://www.sans.org/blog/for509-course-update---introducing-google-workspace-the-multi-cloud-intrusion-challenge-and-more/

In the latest of Nerd Out, Bridget and Dave talk about all things extremism with the most recent publication of "The Hard Reset" as well as the latest accelerationist document "Make it Count". Specifically they discussed:  the contents of the documents, the wide ranging themes, the targets mentioned tactics and techniques,   how this information could be used, what organizations can do  the recent joint product with contributors from multiple ISAC / ISAO, partners, and agencies Then Dave and Bridget talked through the Uvalde school shooting and the recent lessons learned report from the Texas House of Representatives and how organizations can use the report to review their own security as well as avoid some of the issues identified. Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

On America's Independence Day, Andy and Dave pulled up to discuss the latest security challenges organizations face. Starting with the recent Copenhagen incident, they talked continued a previous discussion about the noise surrounding hostile events and how they distract from the real issues. Working back to the hostile events attack cycle, Andy brought up the numerous resources, many low-cost, that organizations can leverage as they continue to build out their state of preparedness. Dave and Andy also talked about drones, their continued risk, as well as the latest efforts by the U.S. government to start to address the risk. Finally, the roundtable talked about weather events and wildfires to round about the holiday special. And even though Jen was enjoying much deserved time off, Andy made sure to bring up cyber related threats and items of interest. But no episode is complete without Andy's three questions. This month, they talked about Obi Wan (and Star Wars in general), music, and 4th of July memories!  Links to items discussed in the episode include: Copenhagen shooting: Shopping mall gunman charged with murder (BBC, 4 July 2022) https://www.bbc.com/news/world-europe-62034089 Andy’s Tweet on conspiracy theories https://twitter.com/andyjabbour/status/1543935473088925697?s=20&t=5L8OF3My0RCPxfC5ZEBibg Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update https://gate15.global/white-paper-the-hostile-event-attack-cycle-heac-2021-update/ Run. Hide. Fight. (FBI) https://www.fbi.gov/video-repository/run-hide-fight-092120.mp4/view Run. Hide. Tell. (UK) https://www.npcc.police.uk/StaySafeAssets/FINAL%20MPS168715%20Run%20Tell%20Hide%20A5%20Lflt%20Blk%20Eng%20v3.pdf Gate 15 Resources Pages https://gate15.global/resources/ Faith-Based ISAO Resources Pages https://faithbased-isao.org/resources/ What's YOUR Plan, by James DeMeo on Amazon https://www.amazon.com/Whats-YOUR-Plan-James-DeMeo/dp/099892864X Andy’s Tweet on his time discussing Hostile Events, Active Shooter and De-escalation at Loudoun Hunger Relief/@LoudounHunger. https://twitter.com/andyjabbour/status/1542876302058946571?s=20&t=YbaxIcwp_-rArFWa2WSWRg Andy’s Tweet on Outlook Rules https://twitter.com/andyjabbour/status/1543668162780139520?s=20&t=YbaxIcwp_-rArFWa2WSWRg White House, FACT SHEET: The Domestic Counter-Unmanned Aircraft Systems National Action Plan (25 April 2022) https://www.whitehouse.gov/briefing-room/statements-releases/2022/04/25/fact-sheet-the-domestic-counter-unmanned-aircraft-systems-national-action-plan/ A Drone Tried to Disrupt the Power Grid. It Won't Be the Last; An attack attempt in 2020 proves the UAS threat is real—and not enough is being done to stop it (Brian Barrett/@brbarrett in WIRED, 25 Nov 2021) https://www.wired.com/story/drone-attack-power-substation-threat/ Drone shows instead of July 4 fireworks? More Colorado communities are making the switch for fire safety (Matt Bloom, CPR News, 01 Jul 2022) https://www.cpr.org/2022/07/01/july-4-fireworks-drone-shows-wildfire-risk-colorado/ “Singles” soundtrack info on Wikipedia and listen on Spotify https://open.spotify.com/album/58BEJ01sL8wK5LV3TPyngC?si=wQzLq88lSx6iuQDurXsvhA&nd=1 “No Woman. No Cry.” From The Office via Yarn, and the legendary song by Bob Marley & The Wailers (1974) https://open.spotify.com/track/3PQLYVskjUeRmRIfECsL0X?si=5159bc1a07484b29&nd=1

In this episode of The Gate 15 Interview, Andy Jabbour speaks with Scott Algeier, Founder, President and CEO, Conrad, Inc. Cybersecurity Consulting. “Scott C. Algeier works at the intersection of cybersecurity policy and operations. He is the Founder, President and CEO of cybersecurity consulting firm Conrad, Inc., Executive Director of the Information Technology – Information Sharing and Analysis Center (IT-ISAC). Conrad, Inc. provides strategic policy and business consulting services to businesses and not for profit organizations focused on cyber security and critical infrastructure protection (CIP). Scott engages senior level policy makers in industry and government, domestically and internationally, on behalf of his clients. This includes direct engagement in the development of the nation’s most significant domestic cybersecurity and CIP policies and operational plans.” To learn more about Conrad, Inc, visit the Conrad website and connect on Twitter and you can follow and learn more about Scott on LinkedIn. “building partnerships is in large part being able to find common ground” In the discussion we address:  Scott’s work at Conrad, Inc.  Cybersecurity Consulting and his work with IT-ISAC and other information sharing communities.  Working with critical infrastructure Building communities of trust The state of private-public partnerships  The war in Ukraine and the enduring Russian cyber threat  Making cybersecurity a kitchen table issue  And a lot more!  A few references mentioned in or relevant to our discussion include:  Conrad website: https://www.conradinc.biz Some of Conrad’s clients: https://www.conradinc.biz/clients Advancements, A Series Hosted By Ted Danson, featuring IT-ISAC: https://advancementstv.com IT-ISAC: https://www.it-isac.org  CyberShare - The small broadband provider ISAC: https://www.ntca.org/member-services/cybershare  CompTIA ISAO: https://connect.comptia.org/membership/comptia-isao  The Gate 15 Interview: Elections Security 2020, with the FBI and the Elections Infrastructure ISAC (26 Oct 2020): https://gate15.global/the-gate-15-interview-elections-security-2020-with-the-fbi-and-the-elections-infrastructure-isac/  On the importance of having a “partner mindset,” Scott says, “at the end of the day, we can do more good by collaboration than by fighting (over business)“- Scott Algeier, Founder, President and CEO, Conrad, Inc. Cybersecurity Consulting

The latest episode of Nerd Out feels like one of the first with the return or Travis Moran to the pod. Travis came on to talk about the energy sector and his new work to help make sure that his critical infrastructure is positioned for the number of threats facing the industry. Travis goes into detail about his role and the role of security practitioners and some of the ways that they can be successful with training and exercises. Dave then asked Travis to put on one of his old hats and talked about the looming Roe v Wade decision and what it could for organizations from a protest and demonstration standpoint. Turning to lighter fare, the two shared their love for the sport of lacrosse, Maryland's dominance, the rigor of a season, and why they may or may not be fans of the Premier Lacrosse League. Travis Moran is a Senior Reliability & Security Advisor with SERC Reliability Corporation; tmoran@serc1.org; he can be found on Twitter at @dronin_on

After a drawn out thank you for the success of episode 19 (and 18), The Cybersecurity Evangelist is back to chatting about the human side of cyber in this summer PSA on travel-related scams. Resources mentioned in this episode: Threat Actors Prepare Travel-Themed Phishing Lures for Summer Holidays Avoid Scams When You Travel ReportFraud.ftc.gov

It started off with sweaty shirts and Jen's big announcement and ended with Dave wondering about green tea. But in-between the latest episode of the risk roundtable saw Andy, Jen and Dave talk about familiar topics - namely persistent threats. Unfortunately for all the times we have talked about them, these threats hang around and continue to strike at individuals and organizations. Whether they are cyber or physical related, threat actor continue to go to the proverbial well again and again because they work. The gang talked about the latest cyber threats and recounted the latest string of hostile events ranging from Buffalo, to Texas, to California, and all the others in-between. Equally important to this discussion was the release of the latest National Terrorism Advisory System (NTAS) bulletin that addressed the latest threats and extremist risks (https://www.dhs.gov/ntas/advisory/national-terrorism-advisory-system-bulletin-june-7-2022). After going through the roulette round, Andy led Jen and a partially paying attention Dave through some fun yes or no questions. Items referenced in the Pod include: @Shadowserver https://twitter.com/Shadowserver - https://www.shadowserver.org Dave post on Active Shooter Incidents https://gate15.global/highlights-fbi-update-on-active-shooter-incidents-in-the-united-states/ Rob Yandow's paper on Physiological Response. https://gate15.global/the-brain-and-the-body-the-physiological-response-that-occurs-when-we-experience-fear-stress-trauma-and-critical-incidents/ HEAC White Paper https://gate15.global/white-paper-the-hostile-event-attack-cycle-heac-2021-update/ KEV: https://www.cisa.gov/known-exploited-vulnerabilities MFA page (new) https://www.cisa.gov/mfa CISA Jen: https://twitter.com/cisajen/status/1534055424600641537?s=21&t=S54nhjh7Vjp_q7Co9wk0fg Water ISAC and Dragos. https://www.waterisac.org/portal/waterisac-partners-new-dragos-ot-cert-help-underserved-water-and-wastewater-systems @RobertMLee Dawn’s active on LinkedIn (Dawn Cappelli, CISSP) https://www.cisa.gov/uscert/ncas/alerts https://www.cisa.gov/uscert/ncas/current-activity Plus many more - listen in

Leigh is the founder and CEO of Tall Poppy, where she helps companies protect their employees from online harassment. She was previously a Technology Fellow at the ACLU’s Project on Speech, Privacy, and Technology, and also worked at Slack, Salesforce.com, Microsoft, and Symantec. She has co-founded two hackerspaces - HackLabTO in the Kensington Market area in Toronto, and a feminist space called the Seattle Attic Community Workshop in Pioneer Square, Seattle. She is now a member and Chief Security Officer of Double Union, a feminist hackerspace in San Francisco, and she advises several nonprofits and startups. Leigh has a degrees from the University of Toronto where she majored in Computer Science and Equity Studies. Leigh points out that the latter major is about equity as in equality, not as in finance.  To learn more about Tall Poppy, visit the Tall Poppy website and connect on Twitter and you can follow and learn more about Leigh on Twitter: @HYPATIADOTCA and LinkedIn.  “tall poppy syndrome is a cultural phenomenon in which people hold back, criticize, or sabotage those who have or are believed to have achieved notable success in one or more aspects of life, particularly intellectual or cultural wealth-‘cutting down the tall poppy.’ It describes a draw towards mediocrity and conformity. Commonly in Australia and New Zealand, ‘cutting down the tall poppy’ is used to describe those who deliberately put down another for their success and achievements.“-via Wikipedia  In the discussion we address:  Leigh’s background and the personal and professional progression that led her to found Tall Poppy  What Tall Poppy is doing to help protect individuals through personal digital safety  Hackerspaces, equity, diversity and women in cybersecurity  Leadership  Emerging issues in information security  Leigh’s ever-colorful hair, CanRock, KiwiCon, and much more!  A few references mentioned in or relevant to our discussion include:  Tall Poppy website - https://www.tallpoppy.com Leigh mentioned KYC for crypto. For more on that see What Is KYC and Why Does It Matter For Crypto? (25 Mar 22) - https://www.coindesk.com/learn/what-is-kyc-and-why-does-it-matter-for-crypto/ Leigh spoke about device security and the threat of SIM swapping. Read more from this FBI IC3 Public Service Announcement, Criminals Increasing SIM Swap Schemes to Steal Millions of Dollars from US Public (08 Feb 22) - https://www.ic3.gov/Media/Y2022/PSA220208 CISA: Walk This Way to Enable MFA (05 May 22) - https://www.cisa.gov/blog/2022/05/05/walk-way-enable-mfa CISA Director Jen Easterly tweeting about #MFAMay and #MoreThanAPassword (05 May 22)  The Kelihos botnet campaign aimed at Apple iCloud accounts was mentioned. Here’s a 2014 blog post from Symantec and a summary from the BBC - https://community.broadcom.com/symantecenterprise/communities/community-home/librarydocuments/viewdocument?DocumentKey=7273883f-edd4-46c6-a723-ab83ea0b8264&CommunityKey=1ecf5f55-9545-44d6-b0f4-4e4a7f5f5e68&tab=librarydocuments Andy mentioned another advocate for people and communities he’s a fan of. Learn more about Matt Mitchell in The Gate 15 Interview: Matt Mitchell, a Champion for Security and Privacy (26 Apr 21)  Andy took the opportunity to put in a plug for the upcoming InfraGardNCR Cyber Camp (scheduled for 18-22 July!)  And Leigh and Andy gave some unsolicited promotions for 1Password, and Leigh also offered BitWarden as great options for password managers. Leigh also suggested reviewing the Consumer Reports and New York Times’ Wirecutter for reliable reviews

In the latest Nerd Out podcast, Dave is joined by Bridget Johnson to talk about the hostile event at the Top's Supermarket in Buffalo, New York. Looking at the attack through the lens of Gate 15's Hostile Events Attack Cycle (HEAC), Dave and Bridget talked about all the planning and preparedness that went into the attack as documented by the attacker's manifesto. Bridget went into length about the way the attacker outlined his beliefs while showcasing his admiration and reverence to previous attackers, especially the 2019 New Zealand mosque attacker. They wrapped up the pod with some thoughts for organizations to consider and how the lessons learned and behaviors identified can be applied to any location and organization. Bridget wrapped up up with some strong words that this manifesto is dangerous and deliberately speaks to a vulnerable group who may seek inspiration in their own lives. In addition, it represents a journey into hate that organizations need to be mindful of. Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

This month, Jen tries to put the “evangelize” in The Cybersecurity Evangelist by spreading the word on some great work in the ICS cybersecurity community. Resources evangelized in this episode: @BEERISAC OT/ICS Security Podcast Playlist https://podcasts.apple.com/us/podcast/beerisac-ot-ics-security-podcast-playlist/id1459741251 Consequence-driven Cyber-informed Engineering (CCE) https://inl.gov/cce/ ICS4ICS https://gca.isa.org/ics4ics Top 20 Secure PLC Coding Practices https://www.plc-security.com/index.html

In the latest episode of the Risk Roundtable, in a nod to Jen, the team goes full nerd about a series of new cybersecurity products and reports. Starting off with CISA's Known Exploited Vulnerabilities Catalog Jen can barely contain her excitement about the importance of the report while also addressing the challenges organizations face. Dave, clearly out of his element, tries to counter with his own report - Sophos' The State of Ransomware 2022 report that reminded everyone ransomware is still alive and well....and thriving. Shifting to the roulette round, Dave assumes control, albeit briefly, while Jen and Andy talk about various innovative methods organizations can take to strenghten their internal programs and processes. The roundtable wrapped up with some lighter topics during Andy's three questions that were perfect for the time of year. Some of the links discussed in the pod include: Sophos: The State of Ransomware 2022: https://news.sophos.com/en-us/2022/04/27/the-state-of-ransomware-2022/ PDF in DB  KEV https://www.cisa.gov/known-exploited-vulnerabilities-catalog  CISA, FBI, NSA, and International Partners Warn Organizations of Top Routinely Exploited Cybersecurity Vulnerabilities:  https://www.cisa.gov/news/2022/04/27/cisa-fbi-nsa-and-international-partners-warn-organizations-top-routinely-exploited   The Gate 15 Interview: Cannabis ISAO. https://gate15.global/the-gate-15-interview-ben-taylor-on-cannabis-isao-cannabis-industry-security-cybersecurity-rescue-dogs-and-more/  The Cybersecurity Evangelist: Ep 18 – Space Systems are Critical Infrastructure for Critical Infrastructure: https://gate15.global/the-cybersecurity-evangelist-ep-18-space-systems-are-critical-infrastructure-for-critical-infrastructure%EF%BF%BC/  Cofense Annual Phishing Report Highlights 10 Point Increase in Credential Phishing: https://cofense.com/press/cofense-annual-phishing-report-highlights/  S4x22 ICS Security Event: https://s4xevents.com/  OT/ICS Security – Consequence-driven Cyber-informed Engineering (CCE): https://www.waterisac.org/portal/otics-security-%E2%80%93-consequence-driven-cyber-informed-engineering-cce (edited)

In this episode of The Gate 15 Interview, Andy Jabbour speaks with Ben Taylor, Executive Director for the Cannabis ISAO. Ben Taylor is the Executive Director of the Cannabis-ISAO. Ben also serves as a Risk Analyst to several Information Sharing & Analysis Centers and has previous security and operations experience as an Army Officer as well as working through the Department of Homeland Security’s (then) Office of Infrastructure Protection (now part of the Cybersecurity and Infrastructure Security Agency [CISA]). Ben has also spent several years in marketing and partner development roles within the tourism industry, to include working to promote Cannabis tourism in Oakland, California. To learn more about Cannabis ISAO, visit the Cannabis ISAO website, or on Twitter: @CannabisISAO and LinkedIn.  In the discussion we address:  Ben’s background and the work he’s doing with Cannabis-ISAO today  Some background on the development of Information Sharing and Analysis Centers (ISACs) and Organizations (ISAOs)  Physical security challenges for the Cannabis Industry  Cybersecurity threats and issues facing the sector Scams, and other threats facing the community  Among other topics, Ben plays three questions with Andy to discuss dogs, favorite books, and more! A few references mentioned in or relevant to our discussion include:  Cannabis ISAO website https://cannabisisao.org Cannabis ISAO Security Town Hall https://cannabisisao.org/2022/03/cannabis-security-town-hall/ Cannabis ISAO blog and Director’s Cut posts https://cannabisisao.org/home/blog/ Cannabis ISAO Director’s Cut: December 03, addressing a ransomware incident in the Cannabis Industry https://cannabisisao.org/home/report-incident/ Report an Incident - Cannabis ISAO https://cannabisisao.org/home/report-incident/ Get Involved - Cannabis ISAO https://cannabisisao.org/home/get-involved/ Executive Order -- Promoting Private Sector Cybersecurity Information Sharing (13 Feb 2015) https://obamawhitehouse.archives.gov/the-press-office/2015/02/13/executive-order-promoting-private-sector-cybersecurity-information-shari Executive Order -- Improving Critical Infrastructure Cybersecurity (12 Feb 2015) https://obamawhitehouse.archives.gov/the-press-office/2013/02/12/executive-order-improving-critical-infrastructure-cybersecurity Presidential Policy Directive -- Critical Infrastructure Security and Resilience (12 Feb 2015) https://obamawhitehouse.archives.gov/the-press-office/2013/02/12/presidential-policy-directive-critical-infrastructure-security-and-resil PDD-63 - Critical Infrastructure Protection (20 May 1998) https://clinton.presidentiallibraries.us/items/show/12762 Nerd Out Security Panel Discussion: EP 13. Cannabis ISAO! (18 May 2021) https://gate15.global/nerd-out-security-panel-discussion-ep-13-cannabis-isao/ The Cybersecurity Evangelist: EP 8 – The ISAC Series, Part 4 – Faith-Based ISAO (10 Mar 2021) https://gate15.global/the-cybersecurity-evangelist-ep-8-the-isac-series-part-4-faith-based-isao/ Blog Post: So why a Cannabis ISAO? (02 Apr 2021) https://cannabisisao.org/2021/04/blog-founder/ Tucky Blunt Twitter https://twitter.com/BluntTucky Uncle Ike’s https://ikes.com/locations/white-center/

There was no shortage of topics for the Nerd Out gang to get into this month as Dave, Bridget and Joe dug into recent events. Starting off with some follow ups to hurricane predictions, outdoor festivals, and Piers Morgan (is it marketing or misinformation), the team batted around some of some of the challenges with these areas and some recent publications that can help teams plan for moving forward. Then the nerds really got into some great discussions around monitoring and situational awareness around recent incidents in NYC (subway shooting) and Ohio (arrest of security guard), as well as the escalated protests around the Quran burning in Sweden and if organizations need to think about copy-cats or a revival of protests and demonstrations this coming summer. Wrapping up with an attempt to be fun, the gang just showed how big of nerds they are yet still managed to give some suggestions for light-hearted shows or materials. Discussed on the pod: Conspiracy Theories: https://www.npr.org/2022/04/20/1093698123/online-conspiracy-theories-are-bleeding-into-all-parts-of-georgias-politics AstroWorld Report: https://gov.texas.gov/news/post/governor-abbotts-texas-task-force-on-concert-safety-releases-final-report Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/ Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

A chat with Erin Miller, Executive Director of Space ISAC, from the 37th Space Symposium Have you ever thought about just how much reliance there is on space systems and how satellites – tons of them – are actually flying computers with IP addresses? In an episode that is out of this world, the Gate 15 Podcast Channel welcomes back a very special guest – Erin Miller, Executive Director of Space ISAC on the 18th episode of The Cybersecurity Evangelist – to talk about all that and more from the 37th Space Symposium at The Broadmoor in Colorado Springs. From an event that Erin called, “bigger than Disneyland,” we talked about the importance of securing space systems, the pivotal role that Space ISAC is playing to increase the cybersecurity posture for the global space community, and the general passion for cybersecurity among attendees and speakers at the symposium. Resources mentioned in this episode: Space ISAC 37th Space Symposium Dr. Stacey Dixon (LinkedIn) – Principal Deputy Director of National Intelligence, ODNI CISA Director, Jen Easterly (Twitter) Women in Cybersecurity (WiCyS) Alert (AA22-076A) Strengthening Cybersecurity of SATCOM Network Providers and Customers Purdue University University of Colorado Colorado Springs Colorado Springs Chamber & EDC United States Space Force United States Space Command United States Air Force Academy The Gate 15 Interview Ep. 16: Erin Miller, Executive Director, Space ISAC. Securing Space Infrastructure (and terrestrial critical infrastructure too!)

Little did Andy know when he let Dave take the controls that he would turn it into a mini-McLaughlin Group (those in the DMV know). In this format Andy and Jen talked about four key questions around Ukraine while Dave attempted to moderate. This discussion dove deep into concerns around the current conflict in the Ukraine, Russian capabilities and organizational defenses, as well as key areas for organizations to remain mindful of! The group landed with a dud when a pop star question fell flat, but Jen quickly picked up and talked about her recent conference attendance and meeting some power people (hi CISA Jen!). The group wrapped up with some some reminders and quick hits before heading into Andy's final 3 questions.  Some of the reference mentioned in the pod include: https://criticalinfrastructuredefense.org/ https://www.cisa.gov/shields-up https://www.cisa.gov/uscert/shields-technical-guidance https://www.cyberscoop.com/ukraine-russia-us-cybersecurity-companies/ https://www.cisa.gov/known-exploited-vulnerabilities-catalog https://www.cisa.gov/uscert/ncas/current-activity/2022/03/29/mitigating-attacks-against-uninterruptable-power-supply-devices https://www.cisa.gov/uscert/ncas/current-activity/2022/03/17/strengthening-cybersecurity-satcom-network-providers-and-customers https://www.cisa.gov/uscert/ncas/current-activity/2022/03/15/russian-state-sponsored-cyber-actors-access-network-misconfigured https://www.cisa.gov/uscert/ncas/current-activity/2022/03/24/state-sponsored-russian-cyber-actors-targeted-energy-sector-2011 https://www.ic3.gov/Media/News/2022/220325.pdf

The gang is back together as Bridget Johnson and Joe Levy join Dave on the podcast to catch up on what they've missed while turning their attention to Ukraine and outdoor events. Within Ukraine, the nerdites talked about the effects of the current conflict, TikTok and the evolving information wars to include disinformation and misinformation campaigns on all sides, and what some outcomes may be long term. The gang then turned to thoughts of warmer weather and the upcoming outdoor events and activities. Looking at it through a security lens the Bridget, Joe and Dave looked at some important considerations while also keeping focus on those other events leading up to the 2022 election season. Before wrapping up with some pointed security plugs, the team talked about hurricane predictions and outdoor events to look forward to. Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/    Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

In this episode of The Gate 15 Interview, Andy Jabbour speaks with Gary Warner, Director of Research in Computer Forensics’ for the University of Alabama at Birmingham (UAB) and the Director of Threat Intelligence for DarkTower. From his LinkedIn bio, “Gary is the ‘Director of Research in Computer Forensics’ for the University of Alabama at Birmingham (UAB). In this role, which brings together the Computer Science and Criminal Justice departments, he is concentrating on research that will help law enforcement and other security professionals to identify, apprehend, prosecute and convict those who are committing cybercrime, and spread information to victims and potential victims about cybercrime issues. 90 analysts and programmers work in the UAB Computer Forensics Lab building tools and providing intelligence for a variety of clients around Cybercrime, Fraud, and Terrorism, as well as the Social Media aspects of more traditional crimes, including Gang Activity and Transnational Drug Networks. In addition to his duties at UAB, Warner serves as the Director of Threat Intelligence for DarkTower, a subsidiary of Queen Associates in Charlotte, North Carolina. Gary Warner was the founding president of the Birmingham InfraGard chapter, and has served as secretary and member of the board of the InfraGard National Members Alliance, among other roles.  Read more on LinkedIn. Gary on Twitter: @GarWarner. Gary’s blog: CyberCrime & Doing Time; A Blog about Cyber Crime and related Justice issues. “Malware analysis is a team sport” – Gary Warner, on information sharing, during our podcast recording In the discussion we address:  • Gary’s backstory and the work he’s doing today  • Information sharing and the value of plugging into information sharing communities  • The great work being done by the FBI and CISA  • The importance of knowing your competition, China, Russia, and ongoing threats  • Some of Gary’s go-to resources  • Gary talks about haikus, Talking Heads, GarBot, birdwatching, and more! “CISA, it's a new era of info sharing in the government” before giving some shout outs to CISA’s first Director, Chris Krebs, and current Director, Jen Easterly  A few references mentioned in or relevant to our discussion include:  • CISA’s Known Exploited Vulnerabilities Catalog (KEVC), something Gate 15’s Jen Walker raves about often, including in our recent Risk Roundtable: The Risk Roundtable EP 27: Don’t let bias guide your preparedness (07 Mar 22). https://www.cisa.gov/known-exploited-vulnerabilities-catalog • Gary discussed this event: Justice Department Announces Court-Authorized Effort to Disrupt Exploitation of Microsoft Exchange Server Vulnerabilities (13 Apr 21) https://www.justice.gov/opa/pr/justice-department-announces-court-authorized-effort-disrupt-exploitation-microsoft-exchange • BITNET https://bit.net • FBI SENTINEL System https://www.fbi.gov/services/information-management/foipa/privacy-impact-assessments/sentinel • Intellipedia https://en.wikipedia.org/wiki/Intellipedia • REN-ISAC https://www.ren-isac.net • Gary’s four CISA “must watch” sites from the CISA cyber landing page:  o Current activity: https://www.cisa.gov/uscert/ncas/current-activity  o Alerts: https://www.cisa.gov/uscert/ncas/alerts  o Bulletins: https://www.cisa.gov/uscert/ncas/bulletins  o Analysis: https://www.cisa.gov/uscert/ncas/analysis-reports  • Gary strongly encouraged listeners to check CISA Director Jen Easterly’s “about” section in her LinkedIn profile to understand why she is so excellently qualified to be the woman leading CISA today (something Chris Krebs, her predecessor at CISA agrees with)

This month, The Cybersecurity Evangelist chats with a couple of budding podcasters. For the third appearance on the Gate 15 Podcast Channel, the Health Information Sharing and Analysis Center (H-ISAC) joins me for episode 17. I got to put my ISAC analyst hat on and talk with the heart of Health-ISAC – the dynamic duo of Zach Nelson (Threat Operations Center Manager) and Joshua Justice (Senior Cyber Threat Intelligence Analyst) from the Threat Operations Center about what drives Health-ISAC and the goals of the Threat Operations Center – the privacy and security of our protected health information (PHI) and why threat actors want that information – yours and mine! We also talked a little about cross-sector collaboration, especially between the ISACs, and rounded it out with a general reminder for all to be #BeCyberSmart about phishing themes leveraging the Russia-Ukraine conflict. Resources mentioned in this episode Health-ISAC H-ISAC Events The Gate 15 Interview: A Conversation with Errol Weiss, Chief Security Officer, Health-ISAC (27 July 2020) Nerd Out Security Panel Discussion: EP 15. Let’s talk about Health! (July 2021) Current and Emerging Healthcare Cyber Threat Landscape (watch for the TLP:WHITE version of this report) What To Know About Medical Identity Theft (FTC)

In the latest Risk Roundtable, Andy, Jen, and Dave talk about the war in Ukraine and what it means for preparedness. Sometimes you just have to call a spade a spade and not allow personal, political or other bias to affect your organization’s analysis or preparedness. While Andy and Dave throw flags on their previous predictions, Jen brings us back to reality and talks about being aware, being prepared, and reminds “don’t panic.” Andy then drills down on bias and how it can have an impact on organizations. During the Roulette Round, Jen talked about CISA’s Known Exploited Vulnerabilities Catalog, vulnerabilities, and patching (while Dave ensured it wasn’t his Windows 2000 computer exposure that Jen was referring to…), then Dave brought up the importance of disaster preparedness in light of spring and summer severe weather events. Andy wrapped things up with a quick talk about the “People’s Convoy” and the battle of the Washington, D.C. Beltway! The pod wraps up with three questions – from COVID predictions, to Andy’s confusion about when seasons start, to Batman. Link mentioned in the pod include: CISA’s Shields Up webpage: https://www.cisa.gov/shields-up CISA: Russia Cyber Threat Overview and Advisories. https://www.cisa.gov/uscert/russia#russian And our post on the Gate 15 blog from 03 March, Russian Cybersecurity Threats: 5 Asks from the FBI: https://gate15.global/russian-cybersecurity-threats-5-asks-from-the-fbi/ Bridget Johnson on Twitter, and at Homeland Security Today (HS Today) CISA Adds 95 Known Exploited Vulnerabilities to Catalog (03 Mar 22): https://www.cisa.gov/uscert/ncas/current-activity/2022/03/03/cisa-adds-95-known-exploited-vulnerabilities-catalog WaterISAC: Update (March 3, 2021) – 95 Added to CISA’s Known Exploited Vulnerabilities Catalog (03 Mar 22): https://www.waterisac.org/portal/cisa’s-known-exploited-vulnerabilities-catalog Microsoft: Customer Guidance for WannaCrypt attacks (12 May 17): https://msrc-blog.microsoft.com/2017/05/12/customer-guidance-for-wannacrypt-attacks/ ZDNet Ransomware attack: Hospitals still struggling in aftermath of WannaCrypt's rampage (15 May 17): https://www.zdnet.com/article/ransomware-attack-hospitals-still-struggling-in-aftermath-of-wannacrypts-rampage/

Why Scammers Love Love Too! On Episode 16, The Cybersecurity Evangelist talks about love! Well, more specifically romance scams. I talked about the social engineering component of romance scams, a few fraud reports and financial losses due to romance scams, red flags that could indicate someone you know is caught in a romance scam, some common and practical steps to defeating romance and other types of social engineering based scams, and the importance of reporting romance scams. No matter how painful, falling for a romance scam is nothing to be ashamed of. Romance scams can happen to anyone at any age. Resources mentioned in this episode: The Gate 15 SUN https://paper.li/gate15#/ (subscribe!!) FTC https://www.consumer.ftc.gov/ & ReportFraud.FTC https://reportfraud.ftc.gov/#/ Stop. Think. Connect. https://stopthinkconnect.org/ Stay Safe Online (National Cybersecurity Alliance) https://staysafeonline.org/ Cybercrime Support Network (CSN) https://cybercrimesupport.org/ Fight Cybercrime https://fightcybercrime.org/ Identity Theft Resource Center (ITRC) https://www.idtheftcenter.org/

In this episode of The Gate 15 Interview, Andy Jabbour speaks with Joseph Marks, Washington Post reporter for The Cybersecurity 202. From his Washington Post bio, “Joe Marks writes The Cybersecurity 202 newsletter focused on the policy and politics of cybersecurity. Before joining The Washington Post, Marks covered cybersecurity for Politico and Nextgov, a news site focused on government technology and security. He also covered patent and copyright trends for Bloomberg BNA and federal litigation for Law360. Marks began his career at Midwestern newspapers covering city and county governments, crime, fires and features. He spent two years at the Grand Forks Herald in North Dakota and is originally from Iowa City. Joe on Twitter, @Joseph_Marks_. Joe on LinkedIn. Subscribe to The Cybersecurity 202. In the discussion we address: Joe’s background and the work he’s doing today at the Washington Post Joe’s perspective on “insider the beltway” cybersecurity The Cybersecurity and Infrastructure Security Agency (CISA) Cybersecurity and geopolitical threats Joe plays three questions and more!   A few references mentioned in or relevant to our discussion include: Subscribe to The Cybersecurity 202 https://www.washingtonpost.com/newsletters/the-cybersecurity-202/  The Cybersecurity 202: The cyber fight in Ukraine is getting more serious, 16 Feb https://www.washingtonpost.com/politics/2022/02/16/cyber-fight-ukraine-is-getting-more-serious/ The Cybersecurity 202: Cyber’s role in the Ukraine-Russia crisis remains unclear, 15 Feb https://www.washingtonpost.com/politics/2022/02/15/cybers-role-ukraine-russia-crisis-remains-unclear/  Jen Easterly's Keynote at the Munich Cybersecurity Conference - Just one word: Culture! On YouTube. https://www.youtube.com/watch?v=Hgr4h8ufxVU Deputy Attorney General Lisa O. Monaco Delivers Remarks at Annual Munich Cyber Security Conference https://www.justice.gov/opa/speech/deputy-attorney-general-lisa-o-monaco-delivers-remarks-annual-munich-cyber-security An interesting thread on Twitter from Doug Madory (@DougMadory), Director of Internet Analysis at Kentik (@kentikinc), on the assertion that Russia had cut a subsea cable when it annexed Crimea, mentioned without detail in the podcast. https://twitter.com/dougmadory/status/1488608548099612674?s=21 Our recent Gate 15 Risk Roundtable where Dave, Jen and I talk Ukraine and Jen shares some thoughts on preparedness: The Risk Roundtable EP 26: Making the Quantum Leap! CISA: Shields Up https://www.cisa.gov/shields-up CISA: Russian State-Sponsored Actors Target Cleared Defense Contractor Networks, 16 Feb https://www.cisa.gov/uscert/ncas/current-activity/2022/02/16/russian-state-sponsored-actors-target-cleared-defense-contractor CISA: Alert (AA22-047A) - Russian State-Sponsored Cyber Actors Target Cleared Defense Contractor Networks to Obtain Sensitive U.S. Defense Information and Technology, 16 Feb https://www.cisa.gov/uscert/ncas/alerts/aa22-047a CISA: Russia Cyber Threat Overview and Advisories https://www.cisa.gov/uscert/russia

Dave goes solo again to handle some common questions he faces, but only after sharing some of his thoughts on the Olympics and his favorite t.v. shows. But then getting down to business Dave talked about three questions - starting your security plan (now), getting into the business (be flexible and get your foot in the door), and the security shortage (invest in your people). Security is a challenge but it's even harder when you put it off time and time again - get started and refine and improve. Dave then gets on his soapbox and tells others to get off his yard when talking about getting into the business while having organizations stop complaining about the lack of talent and instead investing in their own to build a strong workforce. Along the way, Dave even said a nice thing about Andy.

In the first Risk Roundtable of 2022 - the gang is finally back in the same country again to talk about the latest security issues. Not that they went back in time, but harkening back to the Cold War, the roundtable talked about the current tensions between Ukraine and Russia. Highlighting the differences form that bygone era, Jen talked about the global reach that Russia has to target organizations well beyond the European Continent. Dave then expounded and reminded listeners of the importance of looking at capabilities and not focused on a far off land. Then Jen gave Andy much credit for recognizing our hero Troy Hunt for all the great work that he, and other security professionals and teams who provide services for free or low costs. Before going into Andy's three questions Dave expounded a bit and talked about the Global Risk Report from the World Economic Forum. The gang ended on some fun talking about Valentine's Day, Quantum Leap, and Boba! Some links: Link to Ronnie video Ronnie Rants on You Tube https://youtu.be/kd1dXZcncgI Known exploited vulnerabilities https://www.cisa.gov/known-exploited-vulnerabilities-catalog Buy me a coffee. ‘I’m no Troy Hunt’ https://gate15.global/opinion-the-best-things-in-life-are-free-like-hibp-but-maybe-chip-in/ WEF: Global Risk Report https://www.weforum.org/reports/global-risks-report-2022 CIS: https://www.cisecurity.org/controls/cis-controls-list/

In the latest episode of Nerd Out, Dave starts off by talking about his recent quarantine experience in Costa Rica (21 days!) before welcoming in a panel to discuss the Colleyville, Texas synagogue attack. Bringing in Mayya Saab, Seth Ozer, and Ed Heyman the panel went through the hostile event and looked at initial reactions, what can be learned from this situation, and some of the key takeaways. The team then stressed the importance of training in this situation, but also discussed several low cost options and ways to make their location more secure. Mayya Saab is the Executive Director of the Faith-Based Information Sharing and Analysis Organization (FB-ISAO); Seth Ozer is Senior Consultant with Woodstone Consulting, LLC; Ed Heyman is the co-chair of the FB-ISAO Organizational Residence Group

Please enjoy this episode of The Gate 15 Interview podcast on Anchor, Spotify, Apple, Google, as well as other locations accessible via the Anchor link or almost anywhere you listen to your favorite podcasts. In this episode of The Gate 15 Interview, Andy Jabbour speaks with Ronnie Tokazowski, Principal Threat Advisor at Cofense. Ronnie is a recognized expert cybersecurity researcher with success in reverse engineering both crimeware and Advanced Persistent Threat malware, including creation of decoders and indicators for detecting malicious attacks. When he’s not frustrating bad guys, Ronnie is an accidental YouTuber, likes cooking, spicy food, and memes. Ronnie on Twitter, @iHeartMalware. Ronnie’s YouTube channel: Ronnie Rants. In the discussion we address: Ronnie’s background and the work he’s doing at Cofense Business Email Compromise (BEC) Voodoo (no, seriously…) Ronnie’s hair and more! “(at Cofense), we try to go back to the human…” – Ronnie Tokazowski, during our discussion, 10 Jan 2022 A few references mentioned in or relevant to our discussion include: What 6 Years of Success in a Global Takedown Operation Looks Like, and How You Can Do It, Too, a Medium post by Ronnie, 02 Jan Cofense Faith-Based Information Sharing and Analysis Organization (FB-ISAO) FBI on Business Email Compromise (numerous links to BEC related information from the FBI) FBI 2020 IC3 Annual Report & 2020 State Reports G4 Boyz x G4Choppa "Scam Likely" (Official Video) G4 Boyz feat. G4Choppa - SBA Job (Official Music Video) G4Choppa & G4 Boyz - “In Scam We Trust” (Official Music Video - WSHH Exclusive) Here’s Ronnie providing some commentary: Fun with Fraudsters - Reacting to SBA Job by G4 Boyz Cofense Wins AI-Based Cybersecurity Solution of the Year in 2021 CyberSecurity Breakthrough Awards, 05 Oct 2021 Cofense Joins Microsoft Intelligent Security Association (MISA), 26 Oct 2021 Channel Insider: Best Email Security Providers & Services 2022, 23 Dec 2021 Traffic Light Protocol (TLP) Definitions And Usage, via CISA In our discussion, Ronnie mentions Brian Krebs’ Krebs on Security blog (and on Twitter, @briankrebs). Some links to his BEC-related posts can be accessed here.

This first TCE episode of 2022 (and first video - on Spotify) includes a few gentle and some not-so-gentle reminders on cybersecurity best practices and practices for better cyber hygiene. I start with a few cybersecurity controls for businesses to buckle down on this year, including identifying assets, vetting vulnerabilities, and pursuing more potent password policies. Then, I actually persist on the password point with some pontification about our predilection for problematic passwords and propose pointers for a more polished password posture. While there’s probably nothing new in this episode, I hope it serves as a gentle nudge to promote better cyber hygiene habits – not just resolutions for 2022, but positive habits to develop for all-time toward a more cyber secure you! I also evangelize for a new CISA resource - the Known Exploited Vulnerabilities Catalog. Other resource mentioned in this episode: https://www.consumer.ftc.gov/articles/password-checklist

The Gate 15 Interview: RILA Perspective on Organized Retail Crime, plus Mama’s Meatballs, Country Music and Jersey Rock n’ RollIn this episode of The Gate 15 Interview, Andy Jabbour speaks with two leaders from the Retail Industry Leaders Association (RILA), Ms. Lisa LaBruno, RILA’s Senior Executive Vice President of Retail Operations, and Mr. Michael Hanson, RILA’s Senior Executive Vice President of Public Affairs. The RILA “is the U.S. trade association for leading retailers. RILA partners with leading retailers to meet the challenges of a dynamic economy. Through collaboration and thought leadership, we advance ideas that foster free markets, competition, economic growth, and sustainability.” RILA on Twitter, @RILATweeets.In the discussion we address: The enduring threat of Organized Retail Crime (ORC) Private sector activity relating to ORC Private-public partnership and legislative action on ORC RILA’s focus for 2022 Country music, meatballs, Springsteen, and more! A few references mentioned in or relevant to our discussion include: RILA website - https://www.rila.org Real Estate Information Sharing and Analysis Center (RE-ISAC) RILA: CEOS Call on Congress to Address Surge of Retail Crime, 09 Dec 2021 The Buy Safe America Coalition Impact of Organized Retail Crime and Product Theft, Buy Safe America The INFORM Consumers Act of 2020, Buy Safe America Retailers Press Amazon to Back INFORM Consumers Act, Buy Safe America, 27 Aug 2020 Durbin, Cassidy, Grassley, Hirono, Coons, Tillis Introduce Bill to Ensure Greater Transparency for Third-Party Sellers of Consumer Products Online (The Integrity, Notification, and Fairness in Online Retail Marketplaces for Consumers [INFORM Consumers] Act), 23 Mar 2021 Amazon: INFORM Act punishes small businesses and favors one particular business model, 28 Apr 2021 Buy Safe release announcing the study: Retail Theft Balloons to over $68 Billion, Buy Safe America Homeland Security Express Concern on Retail Crime, Buy Safe America ‘What is organized retail crime? Organized retail crime (ORC) refers to professional shoplifting or other theft occurring in retail stores. These criminals are increasingly turning to online marketplaces to quickly and discretely move mass quantities of stolen merchandise. Unfortunately, these criminal rings are growing more brazen and violent, putting the safety of customers and store employees in jeopardy. Organized rings are often involved in other crimes within the community, including narcotics, money laundering and human trafficking.’ – Buy Safe America, https://www.buysafeamerica.org/myth-vs-facts Lisa LaBruno is RILA’s Senior Executive Vice President of Retail Operations. In this role, LaBruno leads RILA’s efforts in the association’s key retail disciplines including asset protection, store operations, supply chain and e-commerce. She directs all research initiatives, educational programming for the annual LINK and Retail Asset Protection conferences, and executive networking to promote operational excellence within the industry. She has 30 years of relevant experience in both the public and private sector, including as an assistant prosecutor (Hudson County, NJ), in-house attorney at the Archdiocese of Newark and in-house attorney at The Home Depot and serves on the Board of Directors of the Loss Prevention Foundation. Michael Hanson is RILA’s Senior Executive Vice President of Public Affairs, overseeing the Association’s government affairs and communications arms. Hanson is responsible for identifying the industry’s top public policy challenges and working with both leading retailers and key stakeholders to elevate the industry in Washington, DC and across the country. Hanson most recently served as chief public policy officer at Sabre, a leading travel technology company, where he led legi

The last Nerd Out episode of the season comes out strong talking about retail crime as Bridget shared stories of her busting out shoplifting trends, and then talking about the larger security issues at play (specifically overwhelming security) with the latest smash and grab incidents during the holidays. Joe then talked about the ways that these type of issues could spread to other sectors and encouraged organizations to evaluate their processes and training. The nerds then turned the clock back to look at some of the takeaways from 2021 while looking ahead to 2022 to see what organizations can do to start planning for. And for all the areas that were covered, there were so many more highlighting the continued challenge that organizations face. Wrapping up the year on a fun note, the merry band of nerds talked about their favorite holiday movie. Can you guess them all? It's been quite a year for the Nerd Out podcast and we want to wish you all a safe holidays, and we are looking forward to a great 2022!  Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/   Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ

In the latest episode of the Risk Roundtable, Andy leads the team through a review of the latest risks facing individuals and organizations. Jen decked the halls talking about the latest holiday scams that continue to bring coal to good boys and girls. Then Dave talked about the latest school shooting in Michigan and tried not to be a Scrooge by talking about some positive take-aways while highlighting important lessons still to be learned in Christmas future. Then, while Dave danced to spinning the wheel in his head, the roundtable talked about their favorite moments from across the Gate 15 Podcast Channel, after all, we are living in a physical world (Jen). The podcast wrapped up with some holiday cheer talking about favorite television or movies for the season. From all of us at Gate 15, to all of the security teams and organizations around the world, here is hoping for a happy holidays and a wonderful 2022! Companies Linked to Russian Ransomware Hide in Plain Sight. Cybersecurity experts tracing money paid by American businesses to Russian ransomware gangs found it led to one of Moscow’s most prestigious addresses. https://www.nytimes.com/2021/12/06/world/europe/ransomware-russia-bitcoin.html  Gate 15 Releases a White Paper with an Update to the Hostile Event Attack Cycle. https://gate15.global/gate-15-releases-a-white-paper-with-an-update-to-the-hostile-event-attack-cycle/  Known Exploited Vulnerabilities Catalog | CISA. https://www.cisa.gov/known-exploited-vulnerabilities-catalog  Advanced threat predictions for 2022. Over the past 12 months, the style and severity of APT threats has continued to evolve. Despite their constantly changing nature, there is a lot we can learn from recent APT trends to predict what might lie ahead in the coming year. https://securelist.com/advanced-threat-predictions-for-2022/104870/

In this episode of The Gate 15 Interview, Andy Jabbour talks with Robert (Bob) Kolasky, Cybersecurity and Infrastructure Security Agency’s (CISA) Assistant Director, leading the National Risk Management Center (NRMC) since 2018. At the NRMC, Bob “oversees the Center’s efforts to facilitate a strategic, cross-sector risk management approach to cyber and physical threats to critical infrastructure. The Center provides a central venue for government and industry to combine their knowledge and capabilities in a uniquely collaborative and forward-looking environment. Center activities support both operational and strategic unified risk management efforts. ” Bob’s complete DHS bio (https://www.cisa.gov/bob-kolasky). Bob on LinkedIn (https://www.linkedin.com/in/bob-kolasky-92ab554/). Bob on Twitter, @BobKolasky. In the discussion we address: • Bob’s background • The CISA National Risk Management Center • Election security and election integrity • DHS’s role in 5G risk management • DSH and climate change • Designated sectors of critical infrastructure and some potential upcoming changes • Growing up Gen X, music, pizza and more! A few references mentioned in or relevant to our discussion include: About the NRMC: • The Cybersecurity and Infrastructure Security Agency’s (CISA) National Risk Management Center (NRMC) • Visit the NRMC Initiatives to learn more about each initiative - https://www.cisa.gov/nrmc-initiatives • Visit the NRMC Newsroom for the latest press releases, media advisories, and blog articles - https://www.cisa.gov/nrmc-newsroom • Download and share the National Risk Management Center Fact Sheet - https://www.cisa.gov/publication/national-risk-management-center-fact-sheet Additional background (general): • NSA-CISA Series on Securing 5G Cloud Infrastructures • Auto-ISAC. We tipped our hats to Auto-ISAC Executive Director, Faye Francy. • The Elections Infrastructure Information Sharing and Analysis Center™ (EI-ISAC®) was established by the EIS-GCC to support the cybersecurity needs of the elections subsector. Through the EI-ISAC, election agencies will gain access to an elections-focused cyber defense suite, including sector-specific threat intelligence products, incident response and remediation, threat and vulnerability monitoring, cybersecurity awareness and training products, and tools for implementing security best practices • White House: Readout of President Joseph R. Biden, Jr. Call with President Vladimir Putin of Russia, 09 Jul (RE: ransomware). • White House: FACT SHEET: Ongoing Public U.S. Efforts to Counter Ransomware, 13 Oct. • White House: Background Press Call on the Virtual Counter-Ransomware Initiative Meeting, 13 Oct. • White House: Joint Statement of the Ministers and Representatives from the Counter Ransomware Initiative Meeting October 2021, 14 Oct. Space as critical infrastructure: • The Gate 15 Interview Ep. 16: Erin Miller, Executive Director, Space ISAC. Securing Space Infrastructure (and terrestrial critical infrastructure too!) • INSA: Designating Space Systems As New U.S. Critical Infrastructure Sector, 02 Nov. • Space hacking risks pose cyber policy test for Biden admin, 02 Nov. • Aspen Institute Panel: Space as Critical Infrastructure, 03 Nov. • Space could be the next frontier for cyber threats, 08 Nov. • FACT SHEET: Vice President Harris Announces Initiatives on Space and Cybersecurity, 10 Nov. Faith-Based organizations as critical infrastructure: • Security Debrief: A Letter to the Trump Administration – Establish a Faith-Based Sector of Critical Infrastructure, 15 Jun 2020. • The Cybersecurity Evangelist: EP 8 – The ISAC Series, Part 4 – Faith-Based ISAO Climate Change: • DHS Actions: Climate Change - https://www.dhs.gov/dhs-actions-climate-change • White House Fact Sheet: Prioritizing Climate in Foreign Policy and National Security, 21 Oct. • DHS Strategic Framework for Addressing Climate Change. “The U.S. Department

In the latest episode of Nerd Out, this is a very special two parter. In the first part, the nerdies (Bridget and Joe) talk about the fallout from the Houston Astropark disaster ranging from the considerations that go into the event planning, and whether there should be a blame game. And then they look at how threat actors may use this event for future threat planning (note the Hostile Events Attack Cycle) before turning their attention to the latest National Terrorism Advisory System Bulletin release and what it could mean for the holidays. In part two, Dave welcomes in Tamara Herold and goes a little deeper into the Houston incident and what it could mean for events moving forward.  Some references brought up in the podcast: Example of Crowd wave: https://www.youtube.com/watch?v=BgpdmAtbhbE Crowd Dynamics: https://www.youtube.com/watch?v=kmqsc7srIfY and https://www.youtube.com/watch?v=Txrs4ssiAz0 Roger Federer saves kid: https://www.youtube.com/watch?v=RymfiBXKuMQ 2018 Concert in Italy: https://celebrityaccess.com/2018/12/08/all-ages-concert-stampede-in-italy-leaves-at-least-6-dead/ Dave Pounder is a Senior Risk Analyst for Gate. Twitter: @dpounder; email: david@gate15.global  Joe Levy is the chairman of the International Associate of Venue Managers (IAVM) Venue Safety and Security Committee. In addition, Joe is the Chief Operating Officer at the Usdan Center for the Creative & Performing Arts. IAVM website https://www.iavm.org/ Venue Safety and Security committee contact information: vssc@iavm.org; LinkedIn Profile: https://www.linkedin.com/in/joelevy1/  Bridget Johnson is the Managing Editor for Homeland Security Today. In addition her contributions on Homeland Security Today (hstoday.us), they are also running a series of webinars (Webinar signups, https://www.eventbrite.com/e/le-only-anti-government-extremists-who-they-are-how-to-combat-them-tickets-144507635227?aff=ebdsoporgprofile). Twitter: @BridgetCJ Tamara D. Herold, Ph.D., Associate Professor, Graduate Director, University of Nevada, Las Vegas (UNLV) Director, Crowd Management Research Council Department of Criminal Justice. Twitter: @advancetheline and @herold_tamara

In the latest Risk Roundtable, Andy, Dave and Jen ponder whether or not we live in the physical world or if a little time off took Jen to a whole new dimension. Kicking off with another acronym soup month, the team looks at Critical Infrastructure Security and Resilience Month and the downstream impacts that can affect organizations who fail to incorporate for critical infrastructure into their preparedness plans. Then roundtable talked about the recent warning of terrorist capabilities to strike the U.S. as well as whether organizations are better prepared today to address a crisis than they were pre-COVID. In the process, the team came up with a new term - "Preparedness Calculus" - and whether organizations are evaluating events and factoring that into their preparedness process. The discussions wrapped up with Andy's three questions involving some favorite fall themes - warm clothing, turkey, and the Lion's losing. But before signing off, Dave had to talk about his enjoyment for Dune, but did he show some hypocratic tendencies? Some links to items discussed in the podcast included: White House Critical Infrastructure Month Proclamation. https://www.whitehouse.gov/briefing-room/presidential-actions/2021/10/29/a-proclamation-on-critical-infrastructure-security-and-resilience-month-2021/ CISA Infrastructure Security Month Materials: https://www.cisa.gov/infrastructure-security-month https://www.cisa.gov/publication/guide-critical-infrastructure-security-and-resilience (2019) https://www.cisa.gov/publication/methodology-assessing-regional-infrastructure-resilience (June 2021) Critical Infrastructure Sectors. https://www.cisa.gov/critical-infrastructure-sectors See Something Say So