Weekly Security Sprint EP 66. Cyber Storm, Hostile Events, MDM, and deceptive hiring

22 May 2024

Please enjoy our newest podcast, the Weekly Security Sprint, on Spotify, Apple, as well as other locations accessible via the Spotify for Podcasters link or almost anywhere you listen to your favorite podcasts.

---

In this Week’s Security Sprint, Dave and Andy talked about the topics below. For more of these and other security updates, subscribe to our free daily report, delivered directly to your inbox, the Gate 15 SUN. To subscribe, please email [email protected].

• Information Sharing: A Valuable Tool in Preventing Cyber Attacks
• CISA: Prepared Together – Cyber Storm IX Recap

Main Topics

Physical Threats & Violence

• Gate 15 White Paper: The Hostile Event Attack Cycle (HEAC), 2021 Update
• New Jersey Marine arrested after allegedly making threats to kill White people, ‘began planning’ mass shooting
• Mercer County Man Charged with Communicating Threats to Attack White People
• DOJ: Maryland Woman Pleads Guilty to Conspiring to Destroy the Baltimore Region Power Grid

🏳️‍🌈 U.S. Department of State: Worldwide Caution, 17 May. Due to the potential for terrorist attacks, demonstrations, or violent actions against U.S. citizens and interests, the Department of State advises U.S. citizens overseas to exercise increased caution.  The Department of State is aware of the increased potential for foreign terrorist organization-inspired violence against LGBTQI+ persons and events and advises U.S. citizens overseas to exercise increased caution.  U.S. citizens should: Stay alert in locations frequented by tourists, including Pride celebrations and venues frequented by LGBTQI+ persons. (continues). State Department warns of ‘increased potential’ for terrorism targeting LGBTQ+ community during Pride Month

Elections, Info Ops, Resources: 

• Misinformation perceived as a bigger informational threat than negativity: A cross-country survey on challenges of the news environment
• Sekoia: Master of Puppets: Uncovering the DoppelGänger pro-Russian influence campaign
• Canadian Centre for Cyber Security How to identify misinformation, disinformation, and malinformation (ITSAP.00.300).
• Opening Statement by CISA Director Jen Easterly at the Update on Foreign Threats to the 2024 Elections Hearing
• US intelligence spotted Chinese, Iranian deepfakes in 2020 aimed at influencing US voters
• 🇨🇳 Chinese Communist Party-linked network behind ‘well-funded’ anti-Israel campus protests
• Contagious Disruption: How CCP Influence and Radical Ideologies Threaten Critical Infrastructure and Campuses Across the United States
• 🇷🇺 Russian Connections to Israel-Gaza Protests

Democratic People’s Republic of Korea Leverages U.S.-Based Individuals to Defraud U.S. Businesses and Generate Revenue. 

• Charges and Seizures Brought in Fraud Scheme, Aimed at Denying Revenue for Workers Associated with North Korea
• Justice Department Announces Arrest, Premises Search, and Seizures of Multiple Website Domains to Disrupt Illicit Revenue Generation Efforts of Democratic People’s Republic of Korea
• Justice Dept. makes arrests in North Korean identity theft scheme involving thousands of IT workers

Quick Hits

• UK NCSC: Business email compromise: new guidance to protect your organisation
  • Canadian Centre for Cyber Security Rethink your password habits to protect your accounts from hackers (ITSAP.30.036)
  • CISA: Encrypted DNS Implementation Guidance
  • Software Transparency in SaaS Environments
• TLP:CLEAR | FB-ISAO Newsletter. 
  • Learn about the origins of the word Phishing. 
  • What you need to know about the Security Awareness products on our blog site.
  • So, the FireArms in the House program is coming to an end – what’s next?
• Ransomware & Data Breaches:  🎶 I love it when you call me Black Basta… 🎶
  • Reliaquest: New Black Basta Social Engineering Scheme
  • Microsoft: Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
  • Stairwell threat report: Black Basta overview and detection rules
• Iran’s president, foreign minister and others found dead at helicopter crash site
• Iran president Ebrahim Raisi and foreign minister dead in helicopter crash, says state media
• Iran Declares Mourning Period As President, Foreign Minister Killed In Helicopter Crash
• Israel insists ‘it wasn’t us’ after ‘Butcher of Tehran’ Iranian president is killed in mysterious helicopter crash a month after ordering missile attack on the Jewish state while Islamic regime supports Hamas in Gaza war
• ICC prosecutor seeks arrest warrants against Netanyahu, Hamas leaders
• Senators unveil plan to regulate AI, as companies race ahead
• Men accused of plot to attack Jews with machine guns in north-west England
• DHS Announces Creation of the Homeland Intelligence Advisory Board.
• U.S. Attorney’s Office and Law Enforcement Partners Take Action Against Money Mules in Order to Disrupt Transnational Fraud Schemes and Educate Public
• Two Foreign Nationals Arrested for Laundering At Least $73M Through Shell Companies Tied to Cryptocurrency Investment Scams
• Feds nab alleged money launderers for pig butchering scheme
• Senator Vance issues warning on China-backed Volt Typhoon threat to US critical infrastructure
• BreachForums seized by FBI for 2nd time
• 6K-plus AI models may be affected by critical RCE vulnerability
• Tinyproxy (CVE-2023-49606) – Vulnerability Analysis and Exploitation
• British engineering giant Arup revealed as $25 million deepfake scam victim

Read more about Gate 15’s full podcast menu at our Podcast page. You can subscribe and enjoy all the Gate 15 Podcasts on Spotify for Podcasters, Apple, Spotify, as well as other locations accessible from the Spotify for Podcasters link. Week-to-week, you can hear and learn more about our all-hazards threats, risks, mitigation and other issues impacting homeland security risk management from our team as well as our regular and special guests. The full podcast menu includes:

• The Security Sprint is our weekly rundown of the week’s notable all-hazards security news, risks and threats and some of the key focus areas for organizations to consider behind the headlines. Gate 15 team members discuss physical security, cybersecurity, natural hazards, health threats and other issues across our environment.
• Nerd Out! Security Panel Discussion, moderated by Dave Pounder, focuses on physical security topics including terrorism, extremism, hostile events, and other pertinent topics.
• The Gate 15 Interview, is a monthly interview between Gate 15’s founder and Managing Director, Andy Jabbour and guests from throughout the homeland security risk management community addressing a wide range of all-hazards topics and issues.
• Venue Security, The IAVM Podcast Series is our newest podcast as Gate 15’s founder and Managing Director, Andy Jabbour hosts short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.
• The Cybersecurity Evangelist, with Jennifer Lyn Walker, is a cybersecurity-focused discussion with Jen and invited guests. This is presently a Gate 15 special podcast and occasionally is updated on our Gate 15 podcast channel.
• The Risk Roundtable, was a monthly discussion among our team and occasional guests exploring the all-hazards threats and risks impacting the United States and internationally. This was suspended in September 2023.

We hope you’ll subscribe, listen and share your ideas and other feedback! Reach out to us on Threads,  LinkedIn, via email at [email protected].