The Gate 15 Podcast Channel Gate 15

On this week's Security Sprint, Dave and Alec talked about the following topics.

Nerd Spoiler - initial excitement for The Acolyte

Olympic threats.
Physical

https://www.bbc.com/news/world-europe-68815081
https://www.dailymail.co.uk/news/article-13451553/French-cops-foil-Incel-plot-carry-ma[…]-years-Elliot-Rodger-massacre-left-six-dead-California.html
https://www.bbc.com/news/articles/cv22xy1y884o
https://thesoufancenter.org/intelbrief-2024-april-26/
https://www.politico.eu/article/france-paris-olympics-emmanuel-macron-terror-security/
https://news.sky.com/story/paris-olympics-16-year-old-arrested-after-he-said-he-wanted-to-die-a-martyr-at-games-13122216
https://www.asisonline.org/security-management-magazine/latest-news/today-in-security/2024/march/paris-olympics-security-challenges/

Cyber

https://www.nytimes.com/2024/04/16/world/europe/paris-olympics-cyberattacks.html
https://www.nytimes.com/2024/04/08/us/politics/france-cyberattacks-summer-olympics.html
https://hackread.com/cybersecurity-loopholes-paris-2024-olympics-infrastructure/
https://apnews.com/article/paris-olympics-cybersecurity-cyberattacks-russia-a2fef5133e4ea142bfcb4111d987ff50
https://www.france24.com/en/live-news/20240327-french-cyberdefence-chief-warns-paris-olympics-a-target




https://thesoufancenter.org/intelbrief-2024-may-28/
https://www.hstoday.us/subject-matter-areas/counterterrorism/detroit-man-arrested-and-charged-after-attempting-to-provide-money-to-isis/
https://www.justice.gov/opa/pr/idaho-man-arrested-attempting-provide-material-support-isis
https://www.dni.gov/files/NCTC/documents/news_documents/Mobilization_Indicators_Booklet_2021.pdf
https://www.dhs.gov/nationwide-sar-initiative-nsi
https://www.dhs.gov/see-something-say-something




https://apnews.com/article/warner-trump-facebook-russia-disinformation-election-6bd27f4e79af8073589222a4a6e4c579
https://www.dni.gov/files/NCTC/documents/jcat/firstresponderstoolbox/151s_First_Re[…]iolent_Extremists_Use_of_Generative_Artificial_Intelligence.pdf


Quick hits

https://hackread.com/one-phish-two-phish-red-phish-blue-phish/
https://www.sans.org/newsletters/ouch/simple-steps-vacation-cybersecure/
https://www.washingtonpost.com/world/2024/06/03/poland-russia-belarus-sabotage-arrests/aaed2f10-21b6-11ef-bc8d-a8ae61b84dde_story.html
https://therecord.media/thousands-of-devices-vulnerable-checkpoint

In the latest episode of Nerd Out, Alec and Dave talked through a series of topics that include examining the recent arrest of an individual who was planning a hostile event, as well as others that were disrupted speaking to the importance reporting suspicious behaviors. Then they talked about nation-states and their ability to influence through a variety of actions and leading up to the election. They wrapped up the security portion of the pod on severe weather and the importance of preparedness. Finally, the ran through the upcoming slate of Marvel movies and television shows to determine if they are in or out.



Some of the materials discussed in the pod include:

Mass shootings


https://www.nbcnews.com/news/us-news/new-jersey-marine-accused-threats-kill-white-people-mass-shooting-rcna152082
https://www.cbsnews.com/philadelphia/news/delaware-county-linen-shooting-pennsylvania/
https://www.nbcphiladelphia.com/news/local/chester-workplace-shooting-delaware-county-linen-deadly-disgruntled-employee-pennsylvania/3866970/
https://projects.voanews.com/mass-shootings/english/locations/workplace.html
https://www.dni.gov/files/NCTC/documents/news_documents/Mobilization_Indicators_Booklet_2021.pdf
https://www.dhs.gov/nationwide-sar-initiative-nsi/online-sar-training
https://www.dhs.gov/see-something-say-something
https://www.cisa.gov/topics/physical-security/insider-threat-mitigation
https://www.cisa.gov/resources-tools/resources/preventing-workplace-violence-security-awareness-considerations-infographic

Foreign Influence


https://www.reuters.com/world/uk/suspects-alleged-russia-linked-uk-arson-attack-face-trial-next-year-2024-05-10/#:~:text=United%20Kingdom-,Suspects%20in%20alleged%20Russia%2Dlinked%20UK%20arson,to%20face%20trial%20next%20year&text=LONDON%2C%20May%2010%20(Reuters),British%20court%20heard%20on%20Friday.
https://www.nbcnews.com/news/investigations/russias-brazen-intensifying-sabotage-campaign-europe-rcna147178
https://abcnews.go.com/International/wireStory/poland-arrests-sabotage-suspects-warns-potential-hostile-acts-110438127
https://apnews.com/article/russia-estonia-baltics-sabotage-spying-kallas-62835b00fdb31f648ebe2259908ca2a1
https://www.wsj.com/world/europe/europe-sees-signs-of-russian-sabotage-but-hesitates-to-blame-kremlin-72598d4b
https://www.telegraph.co.uk/news/2024/05/11/russia-recruiting-far-right-extremists-attacks-west-putin/

Hurricanes


https://www.noaa.gov/news-release/noaa-predicts-above-normal-2024-atlantic-hurricane-season
https://tropical.colostate.edu/forecasting.html
https://www.ready.gov/

On the latest episode of the Security Sprint, Dave and Andy talked about the following topics.
Warm Start

Information Sharing: A Valuable Tool in Preventing Cyber Attacks
CISA: Prepared Together – Cyber Storm IX Recap

 
Main Topics
 
Physical Threats & Violence

Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update
New Jersey Marine arrested after allegedly making threats to kill White people, 'began planning' mass shooting
DOJ: Maryland Woman Pleads Guilty to Conspiring to Destroy the Baltimore Region Power Grid

 
U.S. Department of State: Worldwide Caution, 17 May. Due to the potential for terrorist attacks, demonstrations, or violent actions against U.S. citizens and interests, the Department of State advises U.S. citizens overseas to exercise increased caution. 
 
Elections, Info Ops, Resources: 

Misinformation perceived as a bigger informational threat than negativity: A cross-country survey on challenges of the news environment
Sekoia: Master of Puppets: Uncovering the DoppelGänger pro-Russian influence campaign
Canadian Centre for Cyber Security How to identify misinformation, disinformation, and malinformation (ITSAP.00.300).
Opening Statement by CISA Director Jen Easterly at the Update on Foreign Threats to the 2024 Elections Hearing
US intelligence spotted Chinese, Iranian deepfakes in 2020 aimed at influencing US voters
Contagious Disruption: How CCP Influence and Radical Ideologies Threaten Critical Infrastructure and Campuses Across the United States
Russian Connections to Israel-Gaza Protests

 
Democratic People's Republic of Korea Leverages U.S.-Based Individuals to Defraud U.S. Businesses and Generate Revenue. 

Charges and Seizures Brought in Fraud Scheme, Aimed at Denying Revenue for Workers Associated with North Korea
Justice Department Announces Arrest, Premises Search, and Seizures of Multiple Website Domains to Disrupt Illicit Revenue Generation Efforts of Democratic People’s Republic of Korea

 
Quick Hits

UK NCSC: Business email compromise: new guidance to protect your organisation
Canadian Centre for Cyber Security Rethink your password habits to protect your accounts from hackers (ITSAP.30.036)
CISA: Encrypted DNS Implementation Guidance
Software Transparency in SaaS Environments
TLP:CLEAR | FB-ISAO Newsletter. 
Reliaquest: New Black Basta Social Engineering Scheme
Microsoft: Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
Stairwell threat report: Black Basta overview and detection rules
Iran Declares Mourning Period As President, Foreign Minister Killed In Helicopter Crash
Israel insists 'it wasn't us' after 'Butcher of Tehran' Iranian president is killed in mysterious helicopter crash a month after ordering missile attack on the Jewish state while Islamic regime supports Hamas in Gaza war
ICC prosecutor seeks arrest warrants against Netanyahu, Hamas leaders.
Senators unveil plan to regulate AI, as companies race ahead
Men accused of plot to attack Jews with machine guns in north-west England
DHS Announces Creation of the Homeland Intelligence Advisory Board. 
U.S. Attorney’s Office and Law Enforcement Partners Take Action Against Money Mules in Order to Disrupt Transnational Fraud Schemes and Educate Public.
Two Foreign Nationals Arrested for Laundering At Least $73M Through Shell Companies Tied to Cryptocurrency Investment Scams
Feds nab alleged money launderers for pig butchering scheme
Senator Vance issues warning on China-backed Volt Typhoon threat to US critical infrastructure
BreachForums seized by FBI for 2nd time
6K-plus AI models may be affected by critical RCE vulnerability
Tinyproxy (CVE-2023-49606) – Vulnerability Analysis and Exploitation
British engineering giant Arup revealed as $25 million deepfake scam victim

 

In this episode of The Gate 15 Interview, Andy Jabbour talks with Mark Herrera, Director of Education for the International Association of Venue Managers (IAVM) and more importantly, with special guest, his granddaughter, Miss Kaylani Herrera, the reigning New Mexico Cinderella State Tot.In the discussion we break from our usual type of Interview to pause and think about talking to our friends and loved ones about having an appropriate security mindset as we head into summer. As we look towards a season of mass gatherings, special events, travel and other situations that may experience security incidents, it’s important to help our loved ones think about the potential of threats, being prepared, and having an age-appropriate security mindset. Mark, Kaylani and Andy address:

The importance of threat and situational awareness.
How to prepare family, not scare them.
Age-appropriate security conversations.
School safety.
And we play Three Questions with Kaylani!

Mark is the Director of Safety and Security for the International Association of Venue Managers and recognized as one of the top 25 most influential leaders in the meetings and event industry. In addition, as the Director of Safety and Security for the International Association of Venue Managers, Herrera represents the Department of Homeland Security Office of Infrastructure Protection as the current Chair for the Public Assembly Facility Sub-Sector Council. Herrera is also a seasoned law enforcement officer and trainer, having spent twenty years with the Hobbs, New Mexico, Police Department. See Mark on LinkedIn for his complete bio. Mark on Instagram.
Miss Kaylani’s Bio. Hi, everyone, my name is Kaylani Herrera. I’m seven years old, currently in the second grade and attend Saint Helena Catholic school. I am your 2023-2024 NM Cinderella state Tot. I recently started competing in the natural pageant world. At my first pageant I was crowned the Lea County overall tot, from there I went on to compete at the state level pageant that was held in June and won the overall New Mexico tot ages 4-6 along with New Mexico State talent competition and first alternate cameo. When I am not busy fulfilling my queen duties, I also am a dancer and Gymnast. I recently competed in my first gymnastics meet and won 4th place overall for my age division. I enjoy spending time with my sister and parents, playing with my dog Dallas as well as talking with my Gpa (Mark Herrera) about how to make the world a safer place.

In this week's Security Sprint, Dave and Andy talked about the following topics:
Main Topics

⁠A Russian Influence Campaign Is Exploiting College Campus Protests⁠
⁠FBI PSA: Foreign Terrorist Organizations and their Supporters Likely Heighten Threat Environment during 2024 Pride Month⁠, May 10, 2024
⁠GW: Majority Of University Protesters Arrested Weren’t Even Students, Police Say⁠
⁠The network behind campus antisemitism⁠
⁠Secret Hamas Files Show How It Spied on Everyday Palestinians⁠


⁠Guidance for organisations considering payment in ransomware incidents⁠

⁠U.S. Charges Russian National with Developing and Operating Lockbit Ransomware⁠
⁠Increase of Lockbit ransomware attacks⁠
⁠Ascension: Network Interruption Update⁠
⁠Fitsec: Welcome to Fitsec's Akira Help⁠

 
First Responders Toolbox: ⁠Violent Extremists’ Use of Generative Artificial Intelligence⁠. =
o   ⁠Statement from NSC Spokesperson Adrienne Watson on the U.S.-PRC Talks on AI Risk and Safety⁠
o   ⁠US, China meet in Geneva to discuss AI risks⁠
 
⁠Faith-Based Daily Awareness Post 13 May 2024⁠
o   ⁠Abbeville: Parishioners stop teen armed with rifle from entering church during Mass⁠
o   ⁠Bomb Squad at Clearlake Baptist Church-Packaged Marked “Bomb” with Swastikas Brought Inside⁠
 
Quick Hits
 
Mass Gatherings Tool (CISA). https://www.cisa.gov/resources-tools/resources/mass-gathering-security-planning-tool
CISA updates:

⁠CISA and Partners Release Guidance for Civil Society Organizations on Mitigating Cyber Threats with Limited Resources⁠
⁠Fact Sheet: Biden-⁠Harris Administration Releases Version 2 of the National Cybersecurity Strategy Implementation Plan⁠
⁠Thompson, Swalwell Release Statement on the Biden Administration Releasing the First Cybersecurity Posture of the United States Report⁠
⁠CISA wants ‘high-quality feedback’ for another month on CIRCIA rule⁠

 
Secure by Design:

CISA Unveils New Public Service Announcement – We Can Secure Our World. Today, the Cybersecurity and Infrastructure Security Agency (CISA) is pleased to launch ⁠We Can Secure Our World⁠.
⁠CISA Announces Secure by Design Commitments from Leading Technology Providers⁠
⁠ASD’s ACSC, CISA, and Partners Release Secure by Design Guidance on Choosing Secure and Verifiable Technologies⁠
⁠CERT-NZ: Joint Guidance: Choosing Secure and Verifiable Technologies⁠
⁠CISA Unveils New Public Service Announcement – We Can Secure Our World⁠
⁠CISA boss: Secure code is the 'only way to make ransomware a shocking anomaly'⁠

 
Elections:
o   ⁠Open Hearing: An Update on Foreign Threats to the 2024 Elections⁠
o   ⁠Exclusive: Homeland Security ramping up 'with intensity' to respond to election threats⁠
o   ⁠In Arizona, election workers trained with deepfakes to prepare for 2024⁠
o   ⁠Top FBI Official Urges Agents to Use Warrantless Wiretaps on US Soil⁠
o   ⁠MI: AG Nessel Charges Attorney Stefanie Lambert and Former Adams Township Clerk Scott for 2020 Election Voter Data Breach⁠. 
o   ⁠The Answer to Election Deniers Is in an Idaho County Website⁠
 
RSAC 2024: ⁠Technology and the Transformation of U.S. Foreign Policy⁠

⁠RSAC 2024: US Secretary of State Blinken advocates solidarity, not sovereignty, for cyber⁠
⁠Volt Typhoon operation came up 'directly' in US-China talks, ambassador says⁠
⁠Warner: Lawmakers 'in process' of finding Section 702 fix⁠
⁠Cyber world heads to San Francisco⁠
⁠RSAC 2024: AI adds new dimension to virus detection⁠
⁠RSAC 2024: How to use AI without getting in trouble⁠
⁠Readout of Deputy Attorney General Lisa Monaco’s Trip to California and Participation in the 2024 RSA Cybersecurity Conference⁠


⁠DHS, CISA Announce Membership Changes to the Cyber Safety Review Board⁠
⁠Canadian Centre for Cyber Security⁠ ⁠Common employee IT

In this week's Security Sprint, Dave and Andy talked about the following topics.

Warm Start:

Tribal-ISAC merch! 
National Security Memorandum on Critical Infrastructure Security and Resilience. 
Biden-Harris Administration Announces New National Security Memorandum to Strengthen U.S. Department of Energy’s Role in Ensuring Security and Resilience Across America’s Energy Sector
Biden signs new memo to boost security of US critical infrastructure
White House announces new policy guiding infrastructure protection

 
Verizon 2024 Data Breach Investigations Report

Verizon’s 2024 Data Breach Investigations Report: 5 key takeaways
Verizon DBIR: Enterprises Know The Pain Of Zero Day Exploits All Too Well
Verizon’s 2024 DBIR Unpacked: From Ransomware Evolution to Supply Chain Vulnerabilities
Bitsight Reveals More than 60 Percent of Known Exploited Vulnerabilities Remain Unmitigated Past Deadlines in First-of-its-Kind Analysis of CISA’s KEV Catalog
Organizations patch CISA KEV list bugs 3.5 times faster than others, researchers find
Forescout: Exposing the exploited: Analyzing vulnerabilities that live in the wild

 
Info Ops

Russia is trying to exploit America's divisions over the war in Gaza; The effort includes artificial intelligence, fake social media accounts and a spike in state-sponsored Russian propaganda
NewsGuard: Russia-Ukraine Disinformation Tracking Center: 477 Websites Spreading War Disinformation And The Top Myths They Publish
Campus Protests Give Russia, China and Iran Fuel to Exploit U.S. Divide; America’s adversaries have mounted online campaigns to amplify the social and political conflicts over Gaza flaring at universities, researchers say.

 
Hurricane Preparedness. A Proclamation on National Hurricane Preparedness Week, 2024.

Oklahoma and Kansas at High Risk of Extreme Storms and Tornadoes
Heavy rains ease around Houston but flooding remains after hundreds of rescues and evacuations
Dashcam shows tornado obliterate Nebraska building
Nebraska tornado survivor recounts mayhem: 'The windows exploded and glass was flying everywhere'


Death toll from southern Brazil rainfall rises to 78, many still missing

 
China & Resilience! 

SAVE THE DATE! CISA Hosts CISA Live! – “People’s Republic of China Cyber Threats and What We Can Do”. On Wednesday, May 15, we will host our next CISA Live! - “People’s Republic of China Cyber Threats and What We Can Do” 
Under the Digital Radar: Defending Against People’s Republic of China’s Nation-State Cyber Threats to America’s Small Businesses.

 
Quick Hits

Australian police shoot dead 'radicalized' teen
Germany Travel Advisory-Level 2: Exercise Increased Caution-May 1, 2024
Sweden “On Terror Level Four” As Security Is Tightened A Week Before Eurovision Song Contest
Bird flu's wild range; Counties where avian flu has been detected in wild mammals since 2022


House Energy and Commerce Committee: What We Learned: Change Healthcare Cyber Attack


French cyberwarriors ready to test their defense against hackers and malware during the Olympics
The United States Condemns Malicious Cyber Activity Targeting Germany, Czechia, and Other EU Member States
FBI Releases 2023 Elder Fraud Report with Tech Support Scams Generating the Most Complaints and Investment Scams Proving the Costliest


CISA and Partners Release Fact Sheet on Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity
Communication gaps between IT departments and senior corporate leadership worsening application security risks
SBOM Sharing Primer
CISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate Directory Traversal Vulnerabilities
Maersk says Red Sea disruption will cut capacity by 15-20% in second quarter
Chinese-Made Surveillance Cameras Are Spreading Across Eastern Europe, Despite Security Concerns


Wichita government shuts down systems after ransomware i