52 min
The Risk Roundtable EP: 40. Jen returns! Plus cybersecurity news, Nashville, staying on top of vulnerabilities and more! The Gate 15 Podcast Channel
-
- Government
In the latest episode of the Risk Roundtable, the prodigal cybersecurity expert returns full of wisdom and words Dave admires but can't understand. Jen brings her expertise to the table and talks about 3CX, and staying vigilant. Dave builds upon vigilance talking about Nashville and about the value of taking stock of lessons learned from the latest school shooting. In the quick hits, Jen and Dave talk about protests, severe weather, and more cybersecurity updates. Not to be outdone, Andy pulls it all together and adds in his usual common sense approach and holding the security profession accountable. Then Andy runs the gang through love it, hate it, or don't care.
Some of the references in the pod include:
3CX:
3CX - https://www.securityweek.com/mandiant-investigating-3cx-hack-as-evidence-shows-attackers-had-access-for-months/3CX - Amazing work and helping the community - Huntress! https://www.huntress.com/blog/3cx-voip-software-compromise-supply-chain-threats
Check My Operator (3CX). “This site is a way for users to identify if they were potentially impacted by the supply chain attack against 3CX from March 2023. If the background appears in red, the IP address you are visiting this site from was flagged by security researchers as potentially impacted. We do not have the ability to determine if you are still impacted. This site is a best effort to broadly notify potential impacted parties of this attack by members of the cyber security research community. If the background appears in gray, the IP address you are visiting this site from has not been reported to this site.”
Nashville:
Details about the Nashville shooter's gender identity sow confusion and disinformation.
Audrey Hale’s family ‘laying low,’ communicating through church in wake of Nashville shooting
Attacks on Christian schools ‘inevitable' amid rising violence permeating society: Christian education expert warns
Hoax Shooting Threats Shut Down New York Schools Days After Nashville Tragedy
How Nashville Prepared for the Day It Never Wanted to Face
Understand the Threat. Gate 15 White Paper on The Hostile Event Attack Cycle (HEAC), 2021 Update.
Protests:
Online threats of violence but few signs of far-right organizing around Trump indictment
Marjorie Taylor Greene calls for protests in New York after Trump indictment
Severe Weather:
32 dead as tornadoes torment from Arkansas to Delaware. The President has made disaster declarations for Arkansas and Mississippi as concerns remain over continued tornado and other severe weather threats. And a reminder from CISA that criminals always seek to leverage these tragedies with scams.
Significant Wintry Conditions from Intermountain West to Upper Midwest
Here we go again: 2nd tornado outbreak in 5 days looms for Midwest
Website Security:
Exchange on-prem throttling - https://techcommunity.microsoft.com/t5/exchange-team-blog/throttling-and-blocking-email-from-persistently-vulnerable/ba-p/3762078
Website Injection - https://blog.sucuri.net/2023/03/the-top-10-most-dangerous-types-of-injection-attacks.html
Initial Access techniques - https://blog.qualys.com/vulnerabilities-threat-research/2023/03/30/risk-fact-3-initial-access-brokers-attack-what-organizations-ignore & https://thedfirreport.com/2023/03/06/2022-year-in-review/ & https://vulncheck.com/blog/2022-cisa-kev-review
KEV! IABs!:
Bleeping Computer: 15 million public-facing services vulnerable to CISA KEV flaws (31 Mar). Read the report from Rezilion: Get to Know KEV In Our New Research Report (30 Mar)
Others:
Executive Order on Prohibition on Use by the United States Government of Commercial Spyware that Poses Risks to National Security
Mandiant: Contracts Identify Cyber Operations Projects from Russian Company NTC Vulkan, 30 Mar
In the latest episode of the Risk Roundtable, the prodigal cybersecurity expert returns full of wisdom and words Dave admires but can't understand. Jen brings her expertise to the table and talks about 3CX, and staying vigilant. Dave builds upon vigilance talking about Nashville and about the value of taking stock of lessons learned from the latest school shooting. In the quick hits, Jen and Dave talk about protests, severe weather, and more cybersecurity updates. Not to be outdone, Andy pulls it all together and adds in his usual common sense approach and holding the security profession accountable. Then Andy runs the gang through love it, hate it, or don't care.
Some of the references in the pod include:
3CX:
3CX - https://www.securityweek.com/mandiant-investigating-3cx-hack-as-evidence-shows-attackers-had-access-for-months/3CX - Amazing work and helping the community - Huntress! https://www.huntress.com/blog/3cx-voip-software-compromise-supply-chain-threats
Check My Operator (3CX). “This site is a way for users to identify if they were potentially impacted by the supply chain attack against 3CX from March 2023. If the background appears in red, the IP address you are visiting this site from was flagged by security researchers as potentially impacted. We do not have the ability to determine if you are still impacted. This site is a best effort to broadly notify potential impacted parties of this attack by members of the cyber security research community. If the background appears in gray, the IP address you are visiting this site from has not been reported to this site.”
Nashville:
Details about the Nashville shooter's gender identity sow confusion and disinformation.
Audrey Hale’s family ‘laying low,’ communicating through church in wake of Nashville shooting
Attacks on Christian schools ‘inevitable' amid rising violence permeating society: Christian education expert warns
Hoax Shooting Threats Shut Down New York Schools Days After Nashville Tragedy
How Nashville Prepared for the Day It Never Wanted to Face
Understand the Threat. Gate 15 White Paper on The Hostile Event Attack Cycle (HEAC), 2021 Update.
Protests:
Online threats of violence but few signs of far-right organizing around Trump indictment
Marjorie Taylor Greene calls for protests in New York after Trump indictment
Severe Weather:
32 dead as tornadoes torment from Arkansas to Delaware. The President has made disaster declarations for Arkansas and Mississippi as concerns remain over continued tornado and other severe weather threats. And a reminder from CISA that criminals always seek to leverage these tragedies with scams.
Significant Wintry Conditions from Intermountain West to Upper Midwest
Here we go again: 2nd tornado outbreak in 5 days looms for Midwest
Website Security:
Exchange on-prem throttling - https://techcommunity.microsoft.com/t5/exchange-team-blog/throttling-and-blocking-email-from-persistently-vulnerable/ba-p/3762078
Website Injection - https://blog.sucuri.net/2023/03/the-top-10-most-dangerous-types-of-injection-attacks.html
Initial Access techniques - https://blog.qualys.com/vulnerabilities-threat-research/2023/03/30/risk-fact-3-initial-access-brokers-attack-what-organizations-ignore & https://thedfirreport.com/2023/03/06/2022-year-in-review/ & https://vulncheck.com/blog/2022-cisa-kev-review
KEV! IABs!:
Bleeping Computer: 15 million public-facing services vulnerable to CISA KEV flaws (31 Mar). Read the report from Rezilion: Get to Know KEV In Our New Research Report (30 Mar)
Others:
Executive Order on Prohibition on Use by the United States Government of Commercial Spyware that Poses Risks to National Security
Mandiant: Contracts Identify Cyber Operations Projects from Russian Company NTC Vulkan, 30 Mar
52 min