Weekly Security Sprint EP 61. Iran, Hostile Events, Cyber awareness, Vehicle Ramming and more!

Please enjoy our newest podcast, the Weekly Security Sprint, on Spotify, Apple, as well as other locations accessible via the Spotify for Podcasters link or almost anywhere you listen to your favorite podcasts.

---

In this Week’s Security Sprint, Dave and Andy talked about the topics below. For more of these and other security updates, subscribe to our free daily report, delivered directly to your inbox, the Gate 15 SUN. To subscribe, please email [email protected].

• Palo Alto Command Injection Vulnerability in PAN-OS GlobalProtect
  • Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS, CVE-2024-3400
  • Zero-Day Exploitation of Unauthenticated Remote Code Execution Vulnerability in GlobalProtect (CVE-2024-3400)
  • Volexity on GitHub Adding content for Palo Alto Networks GlobalProtect post
  • Palo Alto Networks Security Advisories CVE-2024-3400 CVE-2024-3400 PAN-OS: OS Command Injection Vulnerability in GlobalProtect
  • Palo Alto: Applying Vulnerability Protection to GlobalProtect Interfaces
  • Palo Alto Unit 42: Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400
  • Risky Biz News: Palo Alto Networks scrambles to push zero-day patch
• Compromise of Sisense Customer Data
  • Brian Krebs: Why CISA is Warning CISOs About a Breach at Sisense
  • Sisense customers told to reset credentials amid supply chain attack fears
  • Risky Biz News: Sisense breach has CISA and everyone else panicking

Main Topics

• Israeli war cabinet to meet again to consider response to Iran’s attack
  • Iran Issues Fresh Threat to U.S.
  • US will not take part in any Israeli retaliatory action against Iran
  • The Latest | World leaders urge Israel not to retaliate for the Iranian drone and missile attack
  • U.S. details Pentagon’s role in defending Israel from Iranian attack
  • Analysis: Israel Repelled Iran’s Huge Attack. But Only With Help From U.S. and Arab Partners.

• Idaho Man Arrested for Attempting to Provide Material Support to ISIS
• Idaho teen arrested for allegedly plotting to attack church in name of ISIS

• What we know about Clenard Parker, the man accused of driving into a Brenham DPS office
  • ‘Obvious’ Sydney killer targeted women – Australian police. The man who went on a stabbing rampage in a Sydney shopping centre appears to have targeted women, police say. Joel Cauchi, 40, sent the crowded Westfield Bondi Junction complex into panic on Saturday when he began stabbing people with a long blade. Five of the six people who died were women. Several others, including a baby, were injured. The New South Wales police commissioner told Australia’s ABC News that it was “obvious” Cauchi focused on women.
  • Man who confronted attacker with bollard and other bystanders praised for heroic acts during Bondi stabbings. “It has been incredible to see complete strangers jump in, run towards the danger, put their own lives in harm’s way to save someone that they’ve never met before.” 
  • Stabbing rampage at Sydney mall leaves at least 7 dead, including attacker
  • Sydney stabbing: Police say no ideological motivation
  • English Tutor Identified as Mall Stabbing Attacker Left Behind Disturbing Facebook Post
  • Sydney knife attacker Joel Cauchi ‘had worked as male escort’ before Bondi shopping centre stabbings
  • False claims started spreading about the Bondi Junction stabbing attack as soon as it happened

• Posture Statement of General Timothy D. Haugh 2024. “ Beijing, Moscow, and Tehran increasingly use social media and state-sponsored disinformation sites, both overt and covert, to shape narratives and sow confusion… In addition, violent extremist groups still operate in cyberspace. Though their capabilities have been eroded, the Islamic State in Iraq and Syria (ISIS), al Qaida, and other terrorist groups maintain the intent to target Americans.”
  • Chinese nationalist trolls pretend to be Trump supporters ahead of US elections

Quick Hits

• UK NPSA: Personal Safety and Security for High-Risk Individuals
• Delaware Woman Arrested for International Sextortion and Money Laundering Scheme
• LastPass: Hackers targeted employee in failed deepfake CEO call
• UNSW: World-first Cybercrime Index ranks countries by cybercrime threat level
• Chinese National Residing in California Arrested for Theft of Artificial Intelligence-Related Trade Secrets from Google
• Director Wray’s Remarks to the ABA Standing Committee on Law and National Security
• Russia thwarts planned terrorist attack on Moscow Synagogue
• Change Healthcare breach data may be in hands of new ransomware group
• Politico: Grassley knocks agencies slacking on cyber
• CISA & FBI: Transitioning to .Gov: Helping Mitigate Election Office Cybersecurity and Impersonation Risks
• CISA Directs Federal Agencies to Immediately Mitigate Significant Risk From Russian State-Sponsored Cyber Threat / CISA Issues Emergency Directive 24-02: Mitigating the Significant Risk from Nation-State Compromise of Microsoft Corporate Email System. 
• CDC Data Modernization Efforts Accelerate Nation’s Ability to Detect and Rapidly Respond to Health Threats
• The Black Market That Delivers Elon Musk’s Starlinks to U.S. Foes
• China’s attacks on U.S. infrastructure aren’t going anywhere
• Police Scour LockBit Ransomware Evidence, Turning Up 200 Leads
• TLP:CLEAR | FB-ISAO Newsletter
• Man on terror watchlist was released by Border Patrol
• IMF Warns of Cyber Risks to Financial Sector
• CISA Announces Malware Next-Gen Analysis
• NSA Issues Guidance for Maturing Data Security
• UK NCSC: Interactive administration in the cloud: managing the risks
• Microsoft Releases April 2024 Security Updates 
• April’s Patch Tuesday Brings Record Number of Fixes

Read more about Gate 15’s full podcast menu at our Podcast page. You can subscribe and enjoy all the Gate 15 Podcasts on Spotify for Podcasters, Apple, Spotify, as well as other locations accessible from the Spotify for Podcasters link. Week-to-week, you can hear and learn more about our all-hazards threats, risks, mitigation and other issues impacting homeland security risk management from our team as well as our regular and special guests. The full podcast menu includes:

• The Security Sprint is our weekly rundown of the week’s notable all-hazards security news, risks and threats and some of the key focus areas for organizations to consider behind the headlines. Gate 15 team members discuss physical security, cybersecurity, natural hazards, health threats and other issues across our environment.
• Nerd Out! Security Panel Discussion, moderated by Dave Pounder, focuses on physical security topics including terrorism, extremism, hostile events, and other pertinent topics.
• The Gate 15 Interview, is a monthly interview between Gate 15’s founder and Managing Director, Andy Jabbour and guests from throughout the homeland security risk management community addressing a wide range of all-hazards topics and issues.
• Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15’s founder and Managing Director, Andy Jabbour hosts short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.
• The Cybersecurity Evangelist, with Jennifer Lyn Walker, is a cybersecurity-focused discussion with Jen and invited guests. This is presently a Gate 15 special podcast and occasionally is updated on our Gate 15 podcast channel.
• The Risk Roundtable, was a monthly discussion among our team and occasional guests exploring the all-hazards threats and risks impacting the United States and internationally. This was suspended in September 2023.

We hope you’ll subscribe, listen and share your ideas and other feedback! Reach out to us on Threads,  LinkedIn, via email at: [email protected], and also on X, the platform formerly known as Twitter.