Please enjoy our newest podcast, the weekly Security Sprint, on Spotify, Apple, as well as other locations accessible via the Spotify for Podcasters link or almost anywhere you listen to your favorite podcasts. You can view here.
In this week’s Security Sprint, Dave and Andy covered the following topics:
Opening:
- Check out the new SUN format and Subscribe to GRIP! Gate 15’s Resilience and Intelligence Portal
- Big News! The Tribal-ISAC Appoints First Executive Director to Advance Cybersecurity for Tribal Governments and Enterprises – Tribal-ISAC | 27 Jan 2026
- Keys & Locks – The Overlooked Security Risk – Fact Sheet — WaterISAC | 28 Jan 2026
Main Topics:
Insider Threats: Assembling A Multi-Disciplinary Insider Threat Management Team — CISA | 27 Jan 2026(Analysis/Commentary) CISA’s new infographic guides organizations in forming insider threat teams that bring together HR, legal, IT, security, and leadership under a “Plan, Organize, Execute, Maintain” framework. It stresses early behavior detection, governance, and ongoing training rather than purely punitive approaches, and links this product to CISA’s broader Insider Threat Mitigation Guide. Target: Government and private-sector organizations building or maturing insider threat programs (CISA) DIG: This is a good reference for boards and execs who may still treat insider threat as “just IT’s problem”; alignment across disciplines is crucial, especially in high-trust sectors like critical infrastructure and healthcare. And read: CISA Urges Critical Infrastructure Organizations to Take Action Against Insider Threats; New Guidance Empowers Stakeholders Build Strong, Multi-Disciplinary Threat Management Teams (PDF).
- Savannah Best Buy employee says hacker group blackmailed him into theft ring scheme
- Study: Future workers would sell patient data
- Former Google Engineer Found Guilty of Economic Espionage and Theft of Confidential AI Technology
- Former TD Bank Employee Pleads Guilty to Accepting Bribes and Laundering $55 Million From Colombia
- Two Recent Guilty Pleas Highlight Financial Crime Risks Posed by Bank Insiders
- The Evolution of Insider Threat
Ransomware Threat Outlook 2025-2027 — Canadian Centre for Cyber Security | 28 Jan 2026 The Cyber Centre assesses that ransomware against Canadian organizations is increasing and rapidly evolving, with actors almost certainly opportunistic and financially motivated, and essentially all organizations and individuals at risk of being targeted at some point. The report highlights the maturation of a global RaaS ecosystem, growing use of AI and cryptocurrency to scale operations, and the likelihood that ransomware will remain a significant threat to Canada through at least 2027, particularly for critical infrastructure and public-sector entities. (Canadian Centre for Cyber Security) Target: Canadian public- and private-sector organizations, especially critical infrastructure (energy, health, government, municipal services). DIG: Treat this as a baseline strategic reference for your ransomware sections—its key judgments (AI, crypto, RaaS, opportunistic targeting) map almost 1:1 to U.S. infrastructure realities and can be cited for North American-wide context.
- Ransomware: How to Prevent and Recover (ITSAP.00.099) — Canadian Centre for Cyber Security
- Ransomware Playbook (ITSM.00.099) — Canadian Centre for Cyber Security
- Threat Spotlight: Ransomware and Cyber Extortion in Q4 2025
- NCC Group Monthly Threat Pulse – Review of December 2025
- The Convergence of Infostealers and Ransomware: From Credential Harvesting to Rapid Extortion Chains
FBI Operation Winter SHIELD: 10 Cybersecurity Actions for Critical Infrastructure & FBI Launches ‘Winter SHIELD’ Cyber Campaign — FBI & Infosecurity Magazine, 29 Jan 2026. The FBI’s Winter SHIELD campaign lays out ten concrete cybersecurity actions for critical infrastructure and other organizations, emphasizing phish-resistant authentication, risk-based vulnerability management, retiring end-of-life tech, tightening third-party risk management, and improving incident reporting and collaboration with the Bureau; Infosecurity’s coverage highlights that these recommendations are distilled from years of major nation-state and criminal investigations, and the FBI produced two concise infographics on the top 10 actions (one oriented to CISOs/technical leaders, one for business leaders) to help operationalize the guidance across leadership levels. TARGET: Critical infrastructure owners/operators, hospitals, SLTT agencies, and enterprise security leaders seeking practical, law-enforcement-backed hardening steps. DIG: Treat Winter SHIELD as a ready-made checklist for board and exec briefings—map your current program against the ten actions, assign owners, and use the FBI’s infographics as visual anchors for a 6–12 month resilience push. Related: FBI launches campaign to protect hospitals, other critical infrastructure against cyberattacks.
- NSA Releases Phase One and Phase Two of the Zero Trust Implementation Guidelines
- How to prepare and plan your organisation’s response to a severe cyber threat: a guide for CNI
- Cyber security considerations for drone use (ITSAP.00.143)
- Cyber security advisory AV26-058: OpenSSL Security Advisory
- Cyber Incident Reporting Guidelines: Key Information & Sharing Requirements — Canadian Centre for Cyber Security, 2026
- DOD: JIATF 401 Publishes New Guidance for Physical Protection of Critical Infrastructure (U.S. Department of Defense, Jan 2026)
- Spotting malicious email messages (ITSAP.00.100) — Canadian Centre for Cyber Security | Jan 2026
Quick Hits:
- 2025 Threat Report: Exploitation Grows Across IT, IoT, and OT — Forescout Vedere Labs | 29 Jan 2026
- Man arrested after spraying substance on Rep. Ilhan Omar
- USCP Threat Assessment Cases for 2025 – Source: U.S. Capitol Police, 27 Jan 2026.
Read more about Gate 15’s full podcast menu at our Podcast page. You can subscribe and enjoy all the Gate 15 Podcasts on Spotify for Podcasters, Apple, Spotify, as well as other locations accessible from the Spotify for Podcasters link. Week-to-week, you can hear and learn more about our all-hazards threats, risks, mitigation and other issues impacting homeland security risk management from our team as well as our regular and special guests. The full podcast menu includes:
- The Security Sprint is our weekly rundown of the week’s notable all-hazards security news, risks and threats and some of the key focus areas for organizations to consider behind the headlines. Gate 15 team members discuss physical security, cybersecurity, natural hazards, health threats and other issues across our environment.
- Nerd Out! Security Panel Discussion, moderated by Dave Pounder, focuses on physical security topics including terrorism, extremism, hostile events, and other pertinent topics.
- The Gate 15 Interview, is a monthly interview between Gate 15’s founder and Managing Director, Andy Jabbour and guests from throughout the homeland security risk management community addressing a wide range of all-hazards topics and issues.
- The Cybersecurity Evangelist, with Jennifer Lyn Walker, is a cybersecurity-focused discussion with Jen and invited guests. This is presently a Gate 15 special podcast and occasionally is updated on our Gate 15 podcast channel.
- Venue Security, The IAVM Podcast Series was a 2024 limited series podcast as Gate 15’s founder and Managing Director, Andy Jabbour hosted a series of short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.
- The Risk Roundtable, was a monthly discussion among our team and occasional guests exploring the all-hazards threats and risks impacting the United States and internationally. This was suspended in September 2023.
We hope you’ll subscribe, listen and share your ideas and other feedback! Reach out to us on Bluesky, LinkedIn, via email at Gate15@gate15.global.
