The Gate 15 Podcast Channel

Gate 15
The Gate 15 Podcast Channel

The Gate 15 Company is a leader in helping organizations by providing threat-informed, risk-based approaches to analysis, preparedness and operations.

  1. 3일 전

    The Gate 15 Interview EP 52. Angela Haun, ONE-ISAC, good intentions, and Rick Springfield

    In this episode of The Gate 15 Interview, Andy Jabbour speaks with Angela Haun. Angela is the Executive Director with the Oil and Natural Energy Information Sharing and Analysis Center (ONE-ISAC). Appointed as ONE-ISAC Executive Director in September 2018, Angela is a retired FBI Special Agent with extensive experience in cybersecurity and protecting critical assets. Since joining the ONE-ISAC, she has expanded the ONE-ISAC’s membership with a Strategic Partnership Pilot Program, bringing new organizations, expertise, resources and funding to support the ISAC’s efforts. In addition, Angela has been a subject matter expert speaker, organizer and participant in numerous energy-related conferences, briefings, exercises, meetings, webinars and other events. Ms. Haun is actively pursuing upgraded technologies and additional benefits for ONE-ISAC member analysts and executives. Prior to her work in support of ONE-ISAC, Angela served over twenty years at the FBI. Learn more about Angela on LinkedIn. “Potential gets me so excited!” In the discussion Angela and Andy discuss: Angela’s Background. ONG-ISAC background. The new, ONE-ISAC. Private-public partnership. Good intentions, unintended consequences. An increasing appreciation of OT security. Destructive attacks. Building Resilience. We play Three Questions and discuss playing golf course, the U.S. Capitol, and Rick Springfield, Jessie’s Girl! Selected links: ONE-ISAC. ONE-ISAC serves as a central point of coordination and communication to aid in the protection of exploration and production, transportation, refining, and delivery systems of the ONE industry, through the analysis and sharing of trusted and timely cyber threat information, including vulnerability and threat activity specific to ICS and SCADA systems. Critical Infrastructure Security and Resilience Month Critical Infrastructure Security and Resilience Month Toolkit The Gate 15 Interview: Jeff Troy, President, Aviation ISAC, on public service, cybersecurity, understanding threats (and... colonizing the ocean?), 23 Aug 2023

    39분
  2. Weekly Security Sprint EP 90. CISA future, more liability, and password problems

    11월 20일

    Weekly Security Sprint EP 90. CISA future, more liability, and password problems

    In this week's Security Sprint, Dave and Andy covered the following topics. Warm Start: • Auto-ISAC: Thomas Farmer Assumes Position as Director of Operations • News from the Auto-ISAC Cybersecurity 2024 Summit • Follow Up from last Sprint: FBI Statement Regarding Offensive Text Messages o Bigoted text messages after Trump victory also targeted Latinos, LGBTQ+ communities, FBI says o FBI investigates new wave of offensive messages targeting Hispanic, LGBTQ people • Groundbreaking Framework for the Safe and Secure Deployment of AI in Critical Infrastructure Unveiled by Department of Homeland Security • Media Advisory: Chairman Green Announces Worldwide Threats Hearing Featuring DHS Secretary Mayorkas, FBI Director Wray, NCTC Acting Director Holmgren: November 20, 2024, at 10:00 AM ET • Senate Judiciary Committee: Big Hacks & Big Tech: China’s Cybersecurity Threat: November 20, 2024, at 2:00 PM ET Main Topics: Homeland Security Transitions. Rand Paul has plans to kneecap the nation’s cyber agency. The incoming chair of the Senate Homeland Security Committee has pledged to severely cut the powers of the Cybersecurity and Infrastructure Security Agency or eliminate it entirely. • CISA Director Jen Easterly to depart on Inauguration Day • House Homeland Releases “Cyber Threat Snapshot” Highlighting Rising Threats to US Networks, Critical Infrastructure • Joint Statement from FBI and CISA on the People's Republic of China (PRC) Targeting of Commercial Telecommunications Infrastructure • Salt Typhoon: T-Mobile Hacked in Massive Chinese Breach of Telecom Networks • Salt Typhoon: Intelligence community briefed Congress on Chinese telecom intrusions • Volt Typhoon rebuilds malware botnet following FBI disruption • China's Hacker Army Outshines America Liability: Legal Report: A Michigan Agency Agrees to $13 Million Settlement Concerning Surprise Active Shooter Drill. Cyber Resilience: • NordPass: Top 200 Most Common Passwords. • 2023 Top Routinely Exploited Vulnerabilities. PDF: AA24-317A 2023 Top Routinely Exploited Vulnerabilities Quick Hits: • Palo Alto! Risky Biz News: Unpatched zero-day in Palo Alto Networks is in the wild. • CISA Adds Two Known Exploited Vulnerabilities to Catalog o CVE-2024-9463 Palo Alto Networks Expedition OS Command Injection Vulnerability o CVE-2024-9465 Palo Alto Networks Expedition SQL Injection Vulnerability • EPA: Management Implication Report: Cybersecurity Concerns Related to Drinking Water Systems. o US EPA report cites cybersecurity flaws in drinking water systems, flags disruption risks and lack of incident reporting o Drinking water systems for 26M Americans face high cybersecurity risks • Moody’s Cyber Heat Map flags extreme cyber risks for critical infrastructure, impacting telecommunications and airlines • 35 dead as driver hits crowd at sports center in southern Chinese city • ODNI - Potential Global Economic Consequences of a Use by Russia of Nuclear Weapons in Ukraine • Australia-Japan-United States Trilateral Defense Ministers' Meeting November 2024 Joint Statement • Justice Department Announces Murder-For-Hire and Related Charges Against IRGC Asset and Two Local Operatives • Iranian “Dream Job” Campaign 11.24 • Fans scuffle despite heavy security presence at France-Israel soccer match • Hate, Extremism & Terrorism: o Houston man charged with attempting to provide material support to ISIS o The FBI says it stopped a possible terrorist attack in Houston o California Teenager Pleads Guilty in Florida to Making Hundreds of ‘Swatting’ Calls Across the United States o Nazi Group Marches Through Ohio Town o Germany: 17-year-old arrested over alleged terror plot o Teens accused of plotting to bomb pro-Israel rally on Parliament Hill o Man dead after explosions outside Brazil supreme court ahead of G20

    26분
  3. Weekly Security Sprint EP 89. Post election texts, terror arrests and threats, and compromised emails

    11월 12일

    Weekly Security Sprint EP 89. Post election texts, terror arrests and threats, and compromised emails

    In this week's Security Sprint, Dave and Andy covered the following topics. Warm Start: • US cybersecurity chief says disinformation surge hasn't impacted election • FBI Statement About Fabricated Videos and Statements Falsely Attributed to the FBI. • Food and Agriculture Sector Eyes Cybersecurity Threats • Food and Ag Sector 2024 Cyber Threat Report (PDF) Main Topics: Black people are receiving racist text messages about picking cotton 'at the nearest plantation.' The FBI and the FCC have weighed in on the messages that multiple Black people across the country received on Wednesday. • FBI Statement on Offensive and Racist Text Messages • FB-ISAO reports Antisemitic text messages • Louisiana attorney general reveals new findings on racist texts • Text service says it shut down accounts allegedly behind racist messages Be security curious amid enduring extremism & terrorism threats, mass gatherings: • Man Arrested and Charged with Attempting to Use a Weapon of Mass Destruction and to Destroy an Energy Facility in Nashville • Cholo Abdi Abdullah Convicted for Conspiring to Commit 9/11-Style Attack at the Direction of Al Shabaab • Florida Man Indicted for Posting Threats on the Internet FBI Cyber Threat Updates: • Easy Access to Information for Conducting Fraudulent Emergency Data Requests Impacts US-Based Companies and Law Enforcement Agencies. As of August 2024, FBI noted an uptick in criminal forum posts regarding conducting fraudulent emergency data requests and is releasing this notification for industry awareness. Cybercriminals are likely gaining access to compromised US and foreign government email addresses and using them to conduct fraudulent emergency data requests to US based companies, exposing the personal information of customers to further use for criminal purposes. • HSI and Partners Announce Return of $1.8 Million Stolen During Business Email Compromise Scam Quick Hits: • Israel to collect soccer fans from Amsterdam after apparent antisemitic attacks • Israeli soccer fans attacked in Amsterdam, in what Dutch authorities call antisemitic incidents • Dave’s Severe Weather threat and preparedness reminders • China Hack Enabled Vast Spying on U.S. Officials, Likely Ensnaring Thousands of Contacts • U.S. Agency Warns Employees About Phone Use Amid Ongoing China Hack • Russia Suspected of Plotting to Send Incendiary Devices on U.S.-Bound Planes • Mystery fires were Russian 'test runs' to target cargo flights to US • Halliburton misses profit estimate, buyback target as cyber attack hurts. Halliburton missed Wall Street estimate on a previously disclosed cyber hack that forced the oilfield services provider to pause a share repurchase program, executives said on Thursday. • Unwrapping the emerging Interlock ransomware attack • NEWPARK RESOURCES INC. Newpark Resources, Inc. is a worldwide provider of value-added drilling fluids systems and composite matting systems used in oilfield and other commercial markets. NEWPARK’s 8K. • Major Oilfield Supplier Hit by Ransomware Attack • 764 Terror Network Member Richard Densmore Sentenced to 30 Years in Prison

    22분
  4. Weekly Security Sprint EP 88. Elections, Liability, and Off-boarding.

    11월 5일

    Weekly Security Sprint EP 88. Elections, Liability, and Off-boarding.

    In the latest Security Sprint, Dave and Andy covered the following topics. Warm Start. • CISA: Critical Infrastructure Security and Resilience Month 2024. “Resilience means doing the work up front to prepare for a disruption, anticipating that it will in fact happen, and exercising not just for response but with a deliberate focus on continuity and recovery, improving the ability to operate in a degraded state, and significantly reducing downtime when an incident occurs.” o A Proclamation on Critical Infrastructure Security and Resilience Month, 2024 o Biden declares November as critical infrastructure security and resilience month, calls safeguarding these systems • FS-ISAC: Ransomware Essentials. A Guide for Financial Services Firm Defense (PDF) Main Topics: Election Week! • Joint ODNI, FBI, and CISA Statement. • US cybersecurity chief says disinformation surge hasn't impacted election • CISA: Election Security Rumor vs. Reality • Georgia Poll Worker Arrested for Making Bomb Threat to Election Workers • FBI PSA: Scammers Exploit 2024 US General Election to Perpetrate Multiple Fraud Schemes • Colorado accidentally put voting system passwords online, but officials say election is secure • Joint ODNI, FBI, and CISA Statement on Russian Election Influence Efforts (01 Nov). Liability: • Attorney General James Secures $2.25 Million from Capital Region Health Care Provider to Protect Patient Data • HHS Office for Civil Rights Settles Ransomware Cybersecurity Investigation for $500,000 • HHS Office for Civil Rights Settles HIPAA Ransomware Cybersecurity Investigation for $90,000 Insider Threats! Fired Employee Allegedly Hacked Disney World's Menu System to Alter Peanut Allergy Information Quick Hits: • Wiz CEO says company was targeted with deepfake attack that used his voice • Ripple effect: the devastating impact of data breaches • Canadian Centre for Cyber Security - Cyber Security Readiness • Defendants with Ties to White Supremacy Sentenced in Connection with Plot to Destroy Energy Facilities • United States Welcomes the United Kingdom’s Actions Against Known Purveyors of Kremlin Disinformation • Hybrid Russian Espionage and Influence Campaign Aims to Compromise Ukrainian Military Recruits and Deliver Anti-Mobilization Narratives • Army of bots promotes petrostate hosting global climate talks • Reset Tech Investigation - Clickbait Cures: How Meta and Google Tolerate a Dubious Meds Market in the EU • Fitness app Strava gives away location of Biden, Trump and other leaders, French newspaper says • Meet Interlock — The new ransomware targeting FreeBSD servers • Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network • Spain floods disaster: death toll rises to 205 as extra troops mobilised • Biden Administration Announces Additional Security Assistance for Ukraine • Iran Tells Region ‘Strong and Complex’ Attack Coming on Israel • Cybersecurity Advisory – Threats Posed by Remote Technology Workers with Ties to Democratic People’s Republic of Korea • Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments • New Tradecraft of Iranian Cyber Group Aria Sepehr Ayandehsazan aka Emennet Pasargad • Cybercriminals Are Stealing Cookies to Bypass Multifactor Authentication • Canadian Centre for Cyber Security - National Cyber Threat Assessment 2025-2026 • Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats • Massive PSAUX ransomware attack targets 22,000 CyberPanel instances • Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files

    23분
  5. Weekly Security Sprint EP 87. AI, MDM, Elections and Hiring Risks

    10월 29일

    Weekly Security Sprint EP 87. AI, MDM, Elections and Hiring Risks

    In this week's Security Sprint, Dave and Andy covered the following topics. Warm Start: Organizational Cyber Security Culture • The Gate 15 Interview – Rob Sherman on CISOs: “Focus on risk, focus on resilience.” Plus: A Salt and Pepper America, burnout, beta, and more! • TribalHub x Gate 15: Organizational Cyber Culture Meets Concert Moments & The Gate 15 Interview – TribalNet! Building a Cybersecurity Culture, Tribal-ISAC, and how we rock! Memorandum on Advancing the United States’ Leadership in Artificial Intelligence; Harnessing Artificial Intelligence to Fulfill National Security Objectives; and Fostering the Safety, Security, and Trustworthiness of Artificial Intelligence • Statement from National Economic Advisor Lael Brainard on National Security Memorandum (NSM) on Artificial Intelligence (AI) • FACT SHEET: Biden-⁠Harris Administration Outlines Coordinated Approach to Harness Power of AI for U.S. National Security • Biden administration urges US agencies to ‘harness’ AI systems for national security • White House will order Pentagon and intel agencies to increase use of AI • US to unveil AI national security memo to avoid China’s ‘strategic surprise’ Main Topics: Info Ops • Russian propaganda exploits US hurricane response to undermine FEMA and Ukraine support. 2024 Elections • Joint ODNI, FBI, and CISA Statement. • Pennsylvania officials rebut false voter fraud claims from home and abroad • U.S. officials say Russia smeared Tim Walz, might stoke post-vote violence • American creating deepfakes targeting Harris works with Russian intel, documents show • CISA Launches #PROTECT2024 Election Threat Updates Webpage • Joint Statement by FBI and CISA on PRC Activity Targeting Telecommunications • Chinese Hackers Are Said to Have Targeted Phones Used by Trump and Vance • Foreign threats to the US election are on the rise, and officials are moving faster to expose them • Election Security Update as of Late October 2024 • Foreign Threats to US Elections After Voting Ends in 2024 • Foreign influence operations will expand before election and linger afterward, US agencies say • Recorded Future: Operation Overload Impersonates Media to Influence 2024 US Election • Microsoft: As the U.S. election nears, Russia, Iran and China step up influence efforts • Justice Department Announces Four Cases Brought by Election Threats Task Force • Secretary of State’s Office says they stopped cyberattack aimed at crashing voter website • Wisconsin sued over voting system’s allegedly weak cyber protections • Philadelphia Resident Charged for Election-Related Threat to State Party Representative • Maine man made homemade bombs and dropped some from drones, officials say • Dr. Paul Requests Information On DHS & CISA’s Participation At Election Day Cybersecurity Conference Quick Hits: Terrorism • Arizona grand jury indicts juvenile for planning attack at Phoenix Pride Festival • Maryland Man Charged With Attempting To Provide Material Support To ISIS • Suburban Chicago Man Sentenced to 18 Years in Prison for Trafficking Fentanyl and Attempting To Support ISIS Ransomware: • Black Basta ransomware poses as IT support on Microsoft Teams to breach networks • New Iranian-based Ransomware Group Charges $2000 for File Retrieval • Japanese Man Convicted of Making Virus Using AI; Likely 1st Person in Japan to be Convicted in Criminal Case for Abusing Generative AI • New Qilin.B Ransomware Variant Boasts Enhanced Encryption and Defense Evasion • Crystal Rans0m: Rust-Based Hybrid Ransomware • Avast Releases Free Decryptor for Mallox Ransomware • Decrypted: Mallox ransomware • Microsoft Threat Intelligence healthcare ransomware report highlights need for collective industry action • Embargo ransomware: Rock’n’Rust • macOS NotLockBit | Evolving Ransomware Samples Sug

    23분
  6. Weekly Security Sprint EP 86. Election security, arrests, and exercises

    10월 23일

    Weekly Security Sprint EP 86. Election security, arrests, and exercises

    In this week's Security Sprint, Dave and Andy covered the following topics: Election 2024: Just So You Know: Foreign Threat Actors Likely to Use a Variety of Tactics to Develop and Spread Disinformation During 2024 U.S. General Election Cycle. The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are issuing this public service announcement (PSA) to raise awareness of the efforts posed by foreign threat actors to spread disinformation in the lead up to, and likely in the days following, the 2024 U.S. general election. Just So You Know: Foreign Threat Actors Likely to Use a Variety of Tactics to Develop and Spread Disinformation During 2024 U.S. General Election Cycle CISA: A Message to Election Officials from CISA Director Jen Easterly ISIS-K behind foiled Election Day terrorism plot, U.S. officials say ‘You are next’: online posts show Islamic State interest in attacks on US ahead of election New cases of political violence roil US ahead of contentious election   DOJ: Two Sudanese Nationals Indicted for Alleged Role in Anonymous Sudan Cyberattacks on Hospitals, Government Facilities, and Other Critical Infrastructure in Los Angeles and Around the World. U.S. charges Sudanese men with running powerful cyberattack-for-hire gang Risky Biz News: Anonymous Sudan's Russia Links Are (Still) Obvious Hacker Charged With Seeking to Kill Using Cyberattacks on Hospitals U.S. Indicts 2 Linked to Oct. 7 Cyberattack on Israeli Warning System USGS: (Some) Assembly Required. How to sign your organization up for the Great ShakeOut.   Quick Hits Germany: police arrest man over Israeli Embassy attack plot Digging into Salt Typhoon Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach Check Point: A Closer Look at Q3 2024: 75% Surge in Cyber Attacks Worldwide

    22분

평가 및 리뷰

5
최고 5점
4개의 평가

소개

The Gate 15 Company is a leader in helping organizations by providing threat-informed, risk-based approaches to analysis, preparedness and operations.

좋아할 만한 다른 항목

무삭제판 에피소드를 청취하려면 로그인하십시오.

이 프로그램의 최신 정보 받기

프로그램을 팔로우하고, 에피소드를 저장하고, 최신 소식을 받아보려면 로그인하거나 가입하십시오.

국가 또는 지역 선택

아프리카, 중동 및 인도

아시아 태평양

유럽

라틴 아메리카 및 카리브해

미국 및 캐나다