The Gate 15 Podcast Channel

Gate 15
The Gate 15 Podcast Channel

The Gate 15 Company is a leader in helping organizations by providing threat-informed, risk-based approaches to analysis, preparedness and operations.

  1. OCT 1

    Weekly Security Sprint EP 83. Helena recovery, Crimes report, and CSAM

    In this week's Security Sprint, Dave and Andy covered the following topics: Warm Open   Water, Water, Everywhere! §  WaterISAC – EPA: National Security Information Sharing Bulletin §  WaterISAC - Cybersecurity Fundamentals for Water and Wastewater Utilities §  WaterISAC: Incident Awareness – Ransomware Attackers Target Kansas Water Treatment Facility §  Kansas water plant cyberattack forces switch to manual operations §  WaterISAC: EPA’s Hazard Mitigation for Natural Disasters: A Starter Guide for Water and Wastewater Utilities §  Fears of Weakness in Water Cybersecurity Grow After Kansas Attack §  WaterISAC: Potential Supply Chain Impacts from East Coast and Gulf Coast Labor Negotiations (Updated September 26, 2024) §  Deluge of Threats to Water Utilities: Securing Operational Technology Against Cyberattacks   INC Ransomware had a very active weekend! GRIP subscribers saw some of that in the SUN, and see more in this week’s Ransomware and Data Breach Digest and a special Bricklayer AI-informed TARGET Report on INC Ransomware.   Main Topics   Severe Weather, Hurricane Helene, and Resilience Planning.   Crime FBI Releases 2023 Crime in the Nation Statistics. ADL: New FBI Data Reflects Record-High Number of Anti-Jewish Hate Crimes FBI Releases 2024 Quarterly Crime Report and Use-of-Force Data Update.   CSAM. A Proclamation on Cybersecurity Awareness Month, 2024. T-Mobile Required to Change Business Practices After Data Breaches. Derek Johnson. T-Mobile reaches $31.5 million settlement with FCC over past data breaches.   Quick Hits JCAT First Responders Toolbox: Enhancing Bystander Reporting to Prevent Terrorism UK NCSC: Multi-factor authentication for your corporate online services NZ NCSC - Joint Guidance: Detecting and mitigating Active Directory compromises CISA Warns of Hurricane-Related Scams.  Federal Trade Commission’s Staying Alert to Disaster-related Scams and Before Giving to a Charity,  Consumer Financial Protection Bureau's Frauds and scams, and  CISA’s Phishing Guidance, Stopping the Attack Cycle at Phase One to help organizations reduce likelihood and impact of successful phishing attacks.  Wifi suspended at big UK train stations after ‘cybersecurity incident.’ Israel issues warnings, guidelines for travel abroad ahead of Jewish holidays Indictment Alleges the Activity Was a More Recent Phase of a Wide-Ranging Hacking Conspiracy in Support of IRGC Targeting of Current and Former U.S. Officials Iranian hackers indicted Friday allegedly sought to impersonate Ginni Thomas as they targeted Trump campaign Treasury Sanctions Iranian Regime Agents Attempting to Interfere in U.S. Elections Rewards for Justice: Election interference Individual - IRGC Hackers, up to $10 Million Election Security Update as of Mid-September 2024: 45 Days Until Election 2024.  Staying a Step Ahead: Mitigating the DPRK IT Worker Threat Iran was behind thousands of text messages calling for revenge over Quran burnings, Sweden says Maryland Woman Sentenced for Conspiring to Destroy the Baltimore Region Power Grid Patch for Critical CUPS vulnerability: Don't Panic Neo-Nazis are using AI to rebrand Hitler for a new generation Axios Vibes: Americans blame politicians for misinformation Neo-Nazi Telegram Users Panic Amid Crackdown and Arrest of Alleged Leaders of Online Extremist Group Man threw explosive device inside California courthouse on day of arraignment Republican Homeland Security Committee bill set to combat CCP cyber threats, boost cyber resilience

    24 min
  2. SEP 23

    The Gate 15 Interview EP 50. TribalNet! Building a Cybersecurity Culture, Tribal-ISAC, and how we rock!

    In this episode of The Gate 15 Interview, we’re mixing things up! Andy Jabbour recorded this session onsite at TribalNet 2024 with TribalHub’s Senior Marketing & Communications Manager, Michelle Bouschor, who took over as moderator. They were joined by Adam Gruscynski, IT Director, Potawatomi Casino Hotel and Tribal-ISAC Steering Committee member and Drew Ludwick, Director of IT Operations, Muckleshoot Casino Resort, to discuss ideas around cybersecurity and organizational culture.In the discussion the group discusses: Organizational culture and what makes a cyber strong organizational culture. Tribal-ISAC! What it is, how it’s like other ISACs, what makes it special. How to build a strong organizational culture and the importance of leadership buy-in and taking things in “chewable bites.” Why we love TribalNet! Some of our favorite concert experiences – some we shared as we talked from Linkin Park to Snoop. And more, of course! Selected Links: TribalNet Conference 2024 Tribal-ISAC Michelle Bouschor. With 15 years of experience in tribal casino marketing, tribal government public relations, media, and community relations, I’ve honed my skills in navigating the unique landscape of indigenous communities. For the past 5 years, I’ve proudly contributed to TribalHub, leveraging my expertise to empower tribal entities through innovative solutions and strategic partnerships. Passionate about fostering collaboration and growth within tribal communities, I’m dedicated to driving positive change and sustainable development.·      Michelle on LinkedIn Adam Gruscynski. Responsible for the day-to-day operations of the IT Department for Potawatomi Casino Hotel while ensuring all of the technology needs, whether current or future, of the organization are met. Adam joined Potawatomi Casino Hotel in 2008. During his time at PCH, Adam has gained an abundance of experience by taking on various roles including IT Security Manager, Senior Cybersecurity Engineer, Lead Network Administrator, Network Administrator, and Application Administrator. Prior to PCH, Adam was Network Engineer at the Milwaukee Journal Sentinel where he began his career as Help Desk Intern.·      Adam on LinkedIn Drew Ludwick. A seasoned IT executive with over 25 years of progressive leadership experience in technology management, specializing in cybersecurity, strategic planning, and technology governance. Known for shaping and executing technology strategies aligned with business goals, leading diverse technology teams, and fostering innovation.·      Drew on LinkedIn

    33 min
  3. Weekly Security Sprint EP 82. Assassination, BEC, and All-Hazards

    SEP 17

    Weekly Security Sprint EP 82. Assassination, BEC, and All-Hazards

    In this week's Security Sprint, Dave and Andy covered the following topics: Warm Start: TribalNet! TLP:CLEAR | FB-ISAO Newsletter. The September 2024 Newsletter has been directly distributed to members and may be accessed here.   Main Topics:   Assassiination / Election Security:  FBI and CISA Release Joint PSA, Just So You Know: False Claims of Hacked Voter Information Likely Intended to Sow Distrust of U.S. Elections. The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are issuing this public service announcement (PSA) to raise awareness of attempts to undermine public confidence in the security of U.S. election infrastructure through the spread of disinformation falsely claiming that cyberattacks compromised U.S. voter registration databases. PDF. CISA: Physical Security Checklist for Election Offices and Election Infrastructure Cybersecurity Readiness and Resilience Checklists 2025 Counting and Certification of Electoral Votes Designated a National Special Security Event   BEC.  Business Email Compromise: The $55 Billion Scam. The BEC scam continues to target small local businesses to larger corporations, and personal transactions while evolving in their techniques to access those business or personal accounts. Between December 2022 and December 2023, there was a 9% increase in identified global exposed losses. In 2023, the IC3 saw a growth in BEC reporting where funds were sent directly to a financial institution housing custodial accounts held by third-party payment processors, or peer-to-peer payment processors, and cryptocurrency exchanges which directly contributed to the increase in global exposed losses. IC3 data shows the BEC scam has been reported in all 50 states and 186 countries, with over 140 countries receiving fraudulent transfers. Based on the financial data reported to the IC3 for 2023, international banks located in the United Kingdom and Hong Kong often acted as an intermediary stop for funds, followed by China, Mexico, and the UAE. The following BEC statistics were reported to the FBI IC3, law enforcement and derived from filings with financial institutions between October 2013 and December 2023: o   Domestic and international incidents: 305,033  o   Domestic and international exposed dollar loss: $55,499,915,582 o   Total U.S. victims: 158,436  o   Total U.S. exposed dollar loss: $20,089,561,364  o   Total non-U.S. victims: 6,546  o   Total non-U.S. exposed dollar loss: $1,638,490,375   All-Hazards. The disaster no major U.S. city is prepared for. Experts warn this type of catastrophe — a combined power outage with a heat wave — is a scenario that cities and states are unprepared for. “I don’t think it’s likely — I think it’s an absolute certainty,” said Brian Stone, a professor and director of the Urban Climate Lab at the Georgia Institute of Technology. “I think it’s an absolute certainty that we will have an extreme heat wave and an extended blackout in the United States.”   Quick Hits:  FBI Publishes 2023 Cryptocurrency Fraud Report Hacker tricks ChatGPT into giving out detailed instructions for making homemade bombs Recorded Future: H1 2024: Malware and Vulnerability Trends Report Kentucky I-75 shooting suspect vowed over text to ‘kill a lot of people,’ arrest warrant says

    21 min
  4. Weekly Security Sprint EP 81. Arrest and Disruption Tuesday - hostile events, terrorgram, and more.

    SEP 10

    Weekly Security Sprint EP 81. Arrest and Disruption Tuesday - hostile events, terrorgram, and more.

    In this week's Security Sprint, Dave and Andy covered the following topics: Warm Start:  Press Release! Gate 15 Partners with Cyware to Enhance Cybersecurity and Homeland Security Resilience. Gate 15's Resilience and Intelligence Portal (GRIP) now leverages the robust capabilities available in Cyware's Collaborate platform to provide the homeland security community with all-hazards technology-enhanced, human-driven analysis products.   Main Topics:   Physical Threats, Notable Dates: ·       Pakistani National Charged for Plotting Terrorist Attack in New York City in Support of ISIS ·       Man Plotted to Kill Jews in New York on Oct. 7 Anniversary, U.S. Says ·       Man Arrested For Making Threats To Elected Officials ·       U.S. charges Hamas leaders with terrorism, citing Oct. 7 attack   Terrorgram Arrests ·       Leaders of Transnational Terrorist Group Charged with Soliciting Hate Crimes, Soliciting the Murder of Federal Officials, and Conspiring to Provide Material Support to Terrorists ·       Feds say white supremacist leaders of "Terrorgram" group plotted assassinations, inspired attacks   Influence Ops ·       Justice Department Disrupts Covert Russian Government-Sponsored Foreign Malign Influence Operation Targeting Audiences in the United States and Elsewhere. ·       Info Ops: ODNI - Election Security Update as of Early September. Foreign actors are increasing their election influence activities as we approach November. ·       US seeks to reassure voters that presidential election will be safe. ·       Russia focusing on US social media stars to covertly influence voters ·       Treasury Takes Action as Part of a U.S. Government Response to Russia’s Foreign Malign Influence Operations ·       AP: Right-wing influencers were duped to work for covert Russian influence operation, US says ·       Conservative Podcasters Respond to Russian Influence Allegations ·       The Record: US indicts two RT employees for alleged Russian disinformation effort ·       TV Presenter Who Worked for Channel One Russia Charged with Violating U.S. Sanctions Imposed on Russia ·       2024's triple threats on election disinformation ·       TikTok: Continuing to protect the integrity of TikTok through the US elections ·       Chinese State-Linked Influence Operation Spamouflage Masquerades as U.S. Voters to Push Divisive Online Narratives Ahead of 2024 Election ·       Activists Charged With Pushing Russian Propaganda Go on Trial in Florida ·       AI-Fakes Detection Is Failing Voters in the Global South ·       Activists Charged With Pushing Russian Propaganda Go on Trial in Florida   Quick Hits:   More Russia: o   FBI, CISA, NSA, and US and International Partners Release Advisory on Russian Military Cyber Actors Targeting US and Global Critical Infrastructure o   Exclusive: US sees increasing risk of Russian ‘sabotage’ of key undersea cables by secretive military unit Georgia: Apalachee High School Shooting: o   14-Year-Old School Shooter Kills Four and Wounds Nine o   At least nine people were injured. Here’s what else to know. o   What we know about the Georgia high school shooting o   Georgia High School Received Threat Warning Of Shooting Before Gunman Opened Fire: Report o   Father of Teen Suspect Charged in Georgia School Shooting o   Georgia school-shooting suspect struggled with mental health, aunt says o   ASIS: Apalachee High School Shooting: What We Know o   Georgia Gunman Colt Gray Was ‘Ridiculed’ and Called Gay by Bullies at School o   Mother of Georgia suspect is said to have called school before shooting, warning of ‘emergency’ Sextortion o   Sextortion Scams Now Include Photos of Your Home.  o   Sextortion scam now use your

    25 min
  5. Weekly Security Sprint EP 80. The start of alphabet soup with Insider Threat, and National Preparedness, plus election security

    SEP 3

    Weekly Security Sprint EP 80. The start of alphabet soup with Insider Threat, and National Preparedness, plus election security

    In this week's Security Sprint, Dave and Andy covered the following topics: National Insider Threat Awareness Month! ·       Insider Threat! Employee arrested for locking Windows admins out of 254 servers in extortion plot ·       Insider Threat: Pa. church member accused of stealing $225K from congregation ·       GRIP: Insider Threat Awareness -Don't Let Errors Cost You, 28 August 2024 ·       Palo Alto: Deepfake report: https://unit42.paloaltonetworks.com/dynamics-of-deepfake-scams/   National Preparedness Month! Ready.gov: National Preparedness Month, “Start a Conversation.” A Proclamation on National Preparedness Month, 2024 September is National Preparedness Month; FEMA Releases the National Resilience Guidance + Other Upcoming Events & Climate Week NYC: Communicating Disaster Preparedness, Sep 23, 2024 02:30 PM.  Do you have an emergency and recovery plan? Get started or update it this National Preparedness Month Addressing OT cyber risk management threats and attacks with risk registers and tabletop exercises   Election Security: ·       Man Charged with Threatening Election Officials, State Judge, and Federal Law Enforcement Agents Donald Trump Assassination Updates: o   Opening Statement to Media on Updates to the Butler, Pennsylvania, Assassination Attempt Investigation o   FBI Pittsburgh Special Agent in Charge's Remarks to Media on Updates to the Butler, Pennsylvania, Assassination Attempt Investigation o   Would-be Trump assassin saw ex-president as 'target of opportunity.'   o   FBI releases photos of the gun used in Trump assassination attempt ·       DOD Will Provide Homeland With Support During Presidential Campaigns ·       US voters targeted in phishing campaign ·       When Get-Out-The-Vote Efforts Look Like Phishing ·       Intel officials say they anticipate more hacking attempts as US election nears ·       Election Security Partners Host 7th Annual Tabletop the Vote Exercise for 2024   Quick Hits: ·       Two Foreign Nationals Charged in Swatting Conspiracy Targeting Lawmakers, Private Victims, Houses of Worship, and Businesses ·       European terror attacks alarm US intelligence, NYPD briefing shows ·       CIA official: Suspects in foiled plot to attack Taylor Swift shows aimed to kill ‘tens of thousands.’ ·       Solingen Stabbing Ignites Fears of Resurgent Jihadism Targeting Germany ·       CISA - Iran-based Cyber Actors Enabling Ransomware Attacks on US Organizations ·       Halliburton cyberattack linked to RansomHub ransomware gang o   FBI: RansomHub ransomware breached 210 victims since February o   US agencies warn against ransomware group behind hundreds of attacks in recent months ·       KnowBe4 Report Reveals Critical Infrastructure Under Siege with Cyber Attacks Increasing 30 Percent in One Year ·       Chinese government hackers penetrate U.S. internet providers to spy o   Lumen: Taking The Crossroads: The Versa Director Zero-Day Exploitation o   Chinese government hackers targeted U.S. internet providers with zero-day exploit, researchers say o   China’s Volt Typhoon Hackers Caught Exploiting Zero-Day in Servers Used by ISPs, MSPs   ·       Microsoft: Peach Sandstorm deploys new custom Tickler malware in long-running intelligence gathering operations ·       Cybercrime and sabotage cost German firms $300 bln in past year ·       France formally charges Telegram founder, Pavel Durov, over organized crime on messaging app ·       Worldwide Trends in COVID-19-Related Attacks Against Healthcare: A Review of the Safeguarding Health in Conflict Coalition Database ·       Kasada’s Releases 2024 State of Bot Mitigation Report ·       CISA Launches New Portal to Improve Cyber Reporting ·

    20 min
  6. SEP 2

    Venue Security, The IAVM Podcast Series EP 8. Managing Risk plus: Bobbleheads! Partnerships! and the value of diversity.

    In this final episode of Venue Security, The IAVM Podcast Series, Andy Jabbour talks with Byron K. Johnson II, Director of Public Safety and Security, with the Raleigh Convention and Performing Arts Complex, which includes several venues in lovely Raleigh, North Carolina. Raleigh Convention & Performing Arts Complex: “The City is proud to own and manage several marquee venues in the area. Whether you want to see a concert, host a convention, or catch a ballet, we’ve got you covered: Red Hat Amphitheater Martin Marietta Center for the Performing Arts Coastal Credit Union Music Park Raleigh Convention Center Byron on LinkedIn In the discussion Byron and Andy address the concept of a venue, its diverse range of facilities, common and specific risks, and the evolving nature of the industry. They also delved into the aspects of risk management, the importance of understanding unique risks associated with different types of events and facilities, and the role of technology in venue management. In closing, they emphasized the value of diverse perspectives in risk assessment and decision-making, the significance of leadership, and the importance of a strong reputation in the community. Plus: Byron’s background. The IAVM Academy for Venue Safety and Security (AVSS) with some name dropping! Leadership, being open minded, and open to sharing. The value of risk assessments and bringing in diverse perspectives. The importance of building relationships with the DHS Protective Security Advisors! With a kind Byron shoutout to our Gate 15 podcasts and more. Venue Security, The IAVM Podcast Series has been a collaboration between Gate 15 and the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) as Andy Jabbour speaks with special guests from the IAVM community. This episode is our last in this limited run series.

    25 min

Ratings & Reviews

5
out of 5
4 Ratings

About

The Gate 15 Company is a leader in helping organizations by providing threat-informed, risk-based approaches to analysis, preparedness and operations.

To listen to explicit episodes, sign in.

Stay up to date with this show

Sign in or sign up to follow shows, save episodes, and get the latest updates.

Select a country or region

Africa, Middle East, and India

Asia Pacific

Europe

Latin America and the Caribbean

The United States and Canada