Please enjoy our newest podcast, the weekly Security Sprint, on Spotify, Apple, as well as other locations accessible via the Spotify for Podcasters link or almost anywhere you listen to your favorite podcasts.
On this week’s Security Sprint, Jen and Andy covered the topics below.
- Join the new Gate 15 Resilience and Intelligence Portal – the GRIP! and get our daily report, the SUN, TARGET reports, our ransomware digest, partner reports, and more! Join the GRIP!
- Space ISAC! Space industry group warns of escalating cyber threats, outmatched defenses
- Secretary Mayorkas Outlines National Priorities for Critical Infrastructure Security and Resilience for Next Two Years
- Cannabis ISAO! Navigating cybersecurity in the cannabis industry with the CEO of SideChannel
- The GRIP is here! Gate 15’s Resilience and Intelligence Portal now available
- “I’ve been paid to kill you but wish to spare you.” Death Threat Email Scams
- The Gate 15 Interview – ENCRYPTION, part 1. A conversation with Sharon Polsky and Hanna Bozakov: A magic key to backdoor encryption can’t exist in a free and open society.
Main Topics
Severe Weather!
CDK Global: Highlighting the need for ransomware resilience!
- CDK Global outage caused by BlackSuit ransomware attack
- Ripple effect from CDK hack widens as more US auto dealers flag hit
- After 2 hacks, CDK Global warns customers of social-engineering attacks
- CDK Global begins to restore systems after cyber hack hits thousands of retailers
- CDK Global hacked again while recovering from first cyberattack
- ‘It’s like we returned to the Stone Age’: North Bay car dealers weigh in amid cyberattack
- With Pen and Paper in Hand, Car Dealers Improvise as Cyber Outage Persists
- CDK Starts Restoring Systems After Car Dealer Hack
FBI Releases 2023 Active Shooter Incidents in the United States Report, 24 Jun. The FBI is releasing the 2023 Active Shooter Incidents in the United States report to provide an overview of active shooter incidents to help law enforcement, other first responders, and the public better understand the levels of threats associated with active shooter incidents. The focus of the report encourages media, law enforcement, and public information officers to shift their focus from the perpetrators of active shooter incidents toward the victims, survivors, and heroes who stopped them, as well as the communities that come together to help in the healing process.
- Active Shooter Incidents in the United States in 2023
- Active Shooter Safety Resources
- Shooting at grocery store in Arkansas kills 3 and wounds 10 others, police say
- Michigan 19-year-old charged after allegedly planning synagogue attack
- Two French teens charged over terror plot to attack Jewish targets
- West Boca Raton man threatened mass shooting at synagogue, arrest report says
Info Ops:
- Vlad’s online bot army spewing fake quotes from Lionel Messi, Jennifer Aniston & other celebs in new propaganda campaign
- Top 10 Generative AI Models Mimic Russian Disinformation Claims A Third of the Time, Citing Moscow-Created Fake Local News Sites as Authoritative Sources
- China accuses U.S. of “malign intention” to discredit its COVID vaccines
- ISIS Created Fake CNN and Al Jazeera Broadcasts
- How Deepfakes May Impact Upcoming Elections Worldwide
- Deluge of fake news websites threatens to drown out truth during US election
- Attitudes towards COVID-19 vaccines may have “spilled over” to other, unrelated vaccines along party lines in the United States
- How AI turned a Ukrainian student into a fake Russian fan of China
- Overview and key findings of the 2024 Digital News Report
Quick Hits
- Second Edition of NCIRP 2024 Newsletter and upcoming Virtual Listening Session. The JCDC Planning Office is pleased to share the second edition of New and Noteworthy – a publication designed to keep critical infrastructure stakeholders and key partners informed of planning efforts underway to update the National Cyber Incident Response Plan (NCIRP) 2024. This edition includes feedback from the first public listening session and information on stakeholder outreach and engagement. Our second NCIRP 2024 virtual listening session will be held on Friday, June 27. The intent of these sessions is to provide a brief introduction to the NCIRP update and hear feedback about the existing NCIRP and any experience with incident response coordination with the federal government more broadly. Perspectives gathered during the listening sessions will inform the update which will be published at the end of calendar year 2024. The preregistration link is here: https://cisa.webex.com/weblink/register/r9d7d76a2172c4c2948186580e8ac0a79. In the spirit of public-private collaboration, we encourage partners to disseminate this newsletter across their respective communities to ensure broad awareness of efforts underway and ways the critical infrastructure community can get involved. If you have any questions, please do not hesitate to reach out to the team at [email protected].
- CISA Issues Notification of Chemical Security Assessment Tool (CSAT) Cybersecurity Intrusion. The Cybersecurity and Infrastructure Security Agency’s (CISA) Chemical Security Assessment Tool (CSAT) was the target of a cybersecurity intrusion by a malicious actor from January 23, 2024, to January 26, 2024. Following the reporting requirements under the Federal Information Security Modernization Act (FISMA), CISA is notifying participants in the Chemical Facility Anti-Terrorism Standards program that information in the CSAT could have been inappropriately accessed. While CISA’s investigation found no evidence of data exfiltration, this may have resulted in the potential unauthorized access of Top-Screen surveys, Security Vulnerability Assessments, Site Security Plans, Personnel Surety Program submissions, and CSAT user accounts. CISA encourages facilities to maintain vigilant cybersecurity and physical security postures and address vulnerabilities, both physical and virtual, as soon as possible. While there is no evidence of stolen credentials, CISA recommends individuals who had CSAT accounts reset the passwords for any account, business or personal, which used the same password. For more information on the incident, mitigation recommendations, and to access our frequently asked questions, visit cisa.gov/csat-notification. In addition to the notifications, CISA is hosting two webinars for stakeholders during which we will review the information provided in the frequently asked questions. The webinars will be held on Monday, June 24, 2024, at 2:30 pm ET (11:30 am PT) and Tuesday, July 9, 2024, at 2:30 pm ET (11:30 am PT). Both webinars will cover the same material.
- Questions about this incident by chemical facilities or their third-party partners should be addressed to CISA Chemical Security at [email protected]. Potentially impacted individuals should review the webpage for additional tools and resources.
- White House: Fact Sheet: Cybersecurity Resources (21 June 2024)
- GrimResource – Microsoft Management Console for initial access and evasion
- Canadian Centre for Cyber Security – Protecting high-value information: Tips for small and medium organizations (ITSAP.40.001)
- Discussions on Deterring Malicious Cyber Activity and the UN Framework of Responsible State Behavior in Cyberspace
- Five Eyes’ Critical 5 nations focus on adapting to evolving cyber threats to boost critical infrastructure security, resilience
- CISA: Enhancing Election Security Through Public Communications
- Scathing report on Medibank cyberattack highlights unenforced MFA
- Commerce Department Prohibits Russian Kaspersky Software for U.S. Customers
- US bans Kaspersky software for alleged Russian links
- New Government Ban on Kaspersky Would Prevent Company from Updating Malware Signatures in U.S.
- NCC Group Monthly Threat Pulse – Review of May 2024
- Don’t blame us for people suffering – London hospital hackers
- Former Colorado Resident Sentenced to Life in Prison for Federal Hate Crimes and Firearm Offenses Related to Mass Shooting at Club Q
Read more about Gate 15’s full podcast menu at our Podcast page. You can subscribe and enjoy all the Gate 15 Podcasts on Spotify for Podcasters, Apple, Spotify, as well as other locations accessible from the Spotify for Podcasters link. Week-to-week, you can hear and learn more about our all-hazards threats, risks, mitigation and other issues impacting homeland security risk management from our team as well as our regular and special guests. The full podcast menu includes:
- The Security Sprint is our weekly rundown of the week’s notable all-hazards security news, risks and threats and some of the key focus areas for organizations to consider behind the headlines. Gate 15 team members discuss physical security, cybersecurity, natural hazards, health threats and other issues across our environment.
- Nerd Out! Security Panel Discussion, moderated by Dave Pounder, focuses on physical security topics including terrorism, extremism, hostile events, and other pertinent topics.
- The Gate 15 Interview, is a monthly interview between Gate 15’s founder and Managing Director, Andy Jabbour and guests from throughout the homeland security risk management community addressing a wide range of all-hazards topics and issues.
- Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15’s founder and Managing Director, Andy Jabbour hosts short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.
- The Cybersecurity Evangelist, with Jennifer Lyn Walker, is a cybersecurity-focused discussion with Jen and invited guests. This is presently a Gate 15 special podcast and occasionally is updated on our Gate 15 podcast channel.
- The Risk Roundtable, was a monthly discussion among our team and occasional guests exploring the all-hazards threats and risks impacting the United States and internationally. This was suspended in September 2023.
We hope you’ll subscribe, listen and share your ideas and other feedback! Reach out to us on Threads, LinkedIn, via email at [email protected].