Weekly Security Sprint EP 96: Extremist trends, nation-states, and more

Please enjoy our newest podcast, the weekly Security Sprint, on Spotify, Apple, as well as other locations accessible via the Spotify for Podcasters link or almost anywhere you listen to your favorite podcasts.

Join the Gate 15 Resilience and Intelligence Portal – the GRIP! and get our daily report, the SUN, TARGET reports, our ransomware digest, partner reports, and more – including the Generative AI version of the SUN! Join the GRIP! Share the Gen AI SUN! Our new TLP:GREEN Gen AI version of the SUN highlights a few notable items from the complete SUN in a 3-4 minute video that can be easily shared and digested across your organization! An easy security win, you can share the Gen AI SUN as a daily security awareness update with your security teams and even across your entire team. Take the easy win!

In this week’s Security Sprint, Dave and Andy covered the following topics:

---

Main Topics

House Homeland Releases Updated “Terror Threat Snapshot” Assessment In Wake Of New Year’s Day ISIS-Inspired Terrorist Attack In New Orleans. PDF: “Terror Threat Snapshot.” Between April 2021-January 2025, there have been 50+ jihadist cases in 30 U.S. states including: 

• dozens of attempts to provide material support to ISIS 
  • providing material support to Hizballah and al-Qaeda
  • receiving military-type training from ISIS and Hizballah
  • vehicle ramming attacks

ISIS in the west-a growing threat to western Europe. There have been 187 arrests/plots/attacks in western Europe since the beginning of 2023.

• US lawmakers warn of ’emboldened’ terror threat

Nashville school shooter left behind 47-page manifesto detailing hate: report

• ‘God I am ugly’: Nashville school shooter’s social media shows he embraced white supremacy
• Nashville School Shooter’s Manifesto: Calls To Attack Mosques, Churches, Synagogues, Military Bases, Government Buildings, Power Grids, Schools
• Madison and Nashville School Shooters Appear to Have Crossed Paths in Online Extremist Communities
• Antioch, Tenn., Shooter Inspired by Broad Extremist Beliefs and Previous Mass Killers

FBI PSA: North Korean IT Workers Conducting Data Extortion. The Federal Bureau of Investigation (FBI) is providing an update to previously shared guidance regarding Democratic People’s Republic of Korea (North Korea) Information Technology (IT) workers to raise public awareness of their increasingly malicious activity, which has recently included data extortion. FBI is warning the public, private sector, and international community about North Korean IT workers’ continued victimization of US-based businesses. In recent months, in addition to data extortion, FBI has observed North Korean IT workers leveraging unlawful access to company networks to exfiltrate proprietary and sensitive data, facilitate cyber-criminal activities, and conduct revenue-generating activity on behalf of the regime. 

China’s Cyber Threat: Under Trump, US Cyberdefense Loses Its Head; Chinese hacks, rampant ransomware, and Donald Trump’s budget cuts all threaten US security. In an exit interview with WIRED, former CISA head Jen Easterly argues for her agency’s survival. 

• “Everybody should assume that our adversaries, in particular China, are attempting to go after our critical infrastructure. The private sector, they are on the front lines of this fight, because they own and operate the vast majority of our critical infrastructure. It’s why companies need to put collaboration over self-preservation.”
  • “A major conflict in Asia—the potential invasion or blockade of Taiwan by the People’s Republic of China—could have very real consequences here in the US. You could see pipelines and water being affected, telecommunications being severed, rail lines, power. That is all part of a very deliberate effort by the People’s Republic of China to incite what they call “societal panic” and to deter our ability to marshal military might and citizen will. We have to acknowledge that disruption may occur.”
• “Time For Us To Get A Step Ahead Of The Typhoons”: Chairman Green Opens Hearing On Global Cyber Threats
• “Preparation Of The Battlefield”: Cybersecurity Experts Testify On Global Threats To The Homeland
  • WaterISAC: House Committee Hearing – Unconstrained Actors: Assessing Global Cyber Threats to the Homeland. Witnesses also cited recent incidents at water utilities.

Quick Hits:

• Insider Threats:
  • Orlando Man Pleads Guilty To Conducting Series Of Cyber Intrusions Against Former Employer
  • British Museum forced to partly close after alleged IT attack by former employee
• CISA and FBI Release Updated Guidance on Product Security Bad Practices
• Virus season roars back with “quad-demic” of illness
• Scammers Are Creating Fake News Videos to Blackmail Victims
• TikTok Threat Arrest: “[Trump] needs to be assassinated”
• USCP Arrests Man with Gun. Article: Capitol Police: Officer suspended for allowing man with concealed gun into building
• CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
• Ransomware gang uses SSH tunnels for stealthy VMware ESXi access
• Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware
• Ransomware’s Evolution: Key Threat Groups Targeting the Energy and Utilities Sector in 2025
• Ongoing Campaign Targeting Amazon Web Services S3 Buckets

Read more about Gate 15’s full podcast menu at our Podcast page. You can subscribe and enjoy all the Gate 15 Podcasts on Spotify for Podcasters, Apple, Spotify, as well as other locations accessible from the Spotify for Podcasters link. Week-to-week, you can hear and learn more about our all-hazards threats, risks, mitigation and other issues impacting homeland security risk management from our team as well as our regular and special guests. The full podcast menu includes:

• The Security Sprint is our weekly rundown of the week’s notable all-hazards security news, risks and threats and some of the key focus areas for organizations to consider behind the headlines. Gate 15 team members discuss physical security, cybersecurity, natural hazards, health threats and other issues across our environment.
• Nerd Out! Security Panel Discussion, moderated by Dave Pounder, focuses on physical security topics including terrorism, extremism, hostile events, and other pertinent topics.
• The Gate 15 Interview, is a monthly interview between Gate 15’s founder and Managing Director, Andy Jabbour and guests from throughout the homeland security risk management community addressing a wide range of all-hazards topics and issues.
• The Cybersecurity Evangelist, with Jennifer Lyn Walker, is a cybersecurity-focused discussion with Jen and invited guests. This is presently a Gate 15 special podcast and occasionally is updated on our Gate 15 podcast channel.
• Venue Security, The IAVM Podcast Series was a 2024 limited series podcast as Gate 15’s founder and Managing Director, Andy Jabbour hosted a series of short interviews with venue safety and security experts from the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) and other special guests from the IAVM community.
• The Risk Roundtable, was a monthly discussion among our team and occasional guests exploring the all-hazards threats and risks impacting the United States and internationally. This was suspended in September 2023.

We hope you’ll subscribe, listen and share your ideas and other feedback! Reach out to us on Threads,  LinkedIn, via email at [email protected].