Share The Gate 15 Podcast Channel
Share to email
Share to Facebook
Share to X
By Gate 15
The podcast currently has 270 episodes available.
In this episode of The Gate 15 Interview, Andy Jabbour speaks with Angela Haun. Angela is the Executive Director with the Oil and Natural Energy Information Sharing and Analysis Center (ONE-ISAC). Appointed as ONE-ISAC Executive Director in September 2018, Angela is a retired FBI Special Agent with extensive experience in cybersecurity and protecting critical assets. Since joining the ONE-ISAC, she has expanded the ONE-ISAC’s membership with a Strategic Partnership Pilot Program, bringing new organizations, expertise, resources and funding to support the ISAC’s efforts. In addition, Angela has been a subject matter expert speaker, organizer and participant in numerous energy-related conferences, briefings, exercises, meetings, webinars and other events. Ms. Haun is actively pursuing upgraded technologies and additional benefits for ONE-ISAC member analysts and executives. Prior to her work in support of ONE-ISAC, Angela served over twenty years at the FBI. Learn more about Angela on LinkedIn.
“Potential gets me so excited!”
In the discussion Angela and Andy discuss:
Selected links:
In this week's Security Sprint, Dave and Andy covered the following topics.
Warm Start:
• Auto-ISAC: Thomas Farmer Assumes Position as Director of Operations
• News from the Auto-ISAC Cybersecurity 2024 Summit
• Follow Up from last Sprint: FBI Statement Regarding Offensive Text Messages
o Bigoted text messages after Trump victory also targeted Latinos, LGBTQ+ communities, FBI says
o FBI investigates new wave of offensive messages targeting Hispanic, LGBTQ people
• Groundbreaking Framework for the Safe and Secure Deployment of AI in Critical Infrastructure Unveiled by Department of Homeland Security
• Media Advisory: Chairman Green Announces Worldwide Threats Hearing Featuring DHS Secretary Mayorkas, FBI Director Wray, NCTC Acting Director Holmgren: November 20, 2024, at 10:00 AM ET
• Senate Judiciary Committee: Big Hacks & Big Tech: China’s Cybersecurity Threat: November 20, 2024, at 2:00 PM ET
Main Topics:
Homeland Security Transitions. Rand Paul has plans to kneecap the nation’s cyber agency. The incoming chair of the Senate Homeland Security Committee has pledged to severely cut the powers of the Cybersecurity and Infrastructure Security Agency or eliminate it entirely.
• CISA Director Jen Easterly to depart on Inauguration Day
• House Homeland Releases “Cyber Threat Snapshot” Highlighting Rising Threats to US Networks, Critical Infrastructure
• Joint Statement from FBI and CISA on the People's Republic of China (PRC) Targeting of Commercial Telecommunications Infrastructure
• Salt Typhoon: T-Mobile Hacked in Massive Chinese Breach of Telecom Networks
• Salt Typhoon: Intelligence community briefed Congress on Chinese telecom intrusions
• Volt Typhoon rebuilds malware botnet following FBI disruption
• China's Hacker Army Outshines America
Liability: Legal Report: A Michigan Agency Agrees to $13 Million Settlement Concerning Surprise Active Shooter Drill.
Cyber Resilience:
• NordPass: Top 200 Most Common Passwords.
• 2023 Top Routinely Exploited Vulnerabilities. PDF: AA24-317A 2023 Top Routinely Exploited Vulnerabilities
Quick Hits:
• Palo Alto! Risky Biz News: Unpatched zero-day in Palo Alto Networks is in the wild.
• CISA Adds Two Known Exploited Vulnerabilities to Catalog
o CVE-2024-9463 Palo Alto Networks Expedition OS Command Injection Vulnerability
o CVE-2024-9465 Palo Alto Networks Expedition SQL Injection Vulnerability
• EPA: Management Implication Report: Cybersecurity Concerns Related to Drinking Water Systems.
o US EPA report cites cybersecurity flaws in drinking water systems, flags disruption risks and lack of incident reporting
o Drinking water systems for 26M Americans face high cybersecurity risks
• Moody’s Cyber Heat Map flags extreme cyber risks for critical infrastructure, impacting telecommunications and airlines
• 35 dead as driver hits crowd at sports center in southern Chinese city
• ODNI - Potential Global Economic Consequences of a Use by Russia of Nuclear Weapons in Ukraine
• Australia-Japan-United States Trilateral Defense Ministers' Meeting November 2024 Joint Statement
• Justice Department Announces Murder-For-Hire and Related Charges Against IRGC Asset and Two Local Operatives
• Iranian “Dream Job” Campaign 11.24
• Fans scuffle despite heavy security presence at France-Israel soccer match
• Hate, Extremism & Terrorism:
o Houston man charged with attempting to provide material support to ISIS
o The FBI says it stopped a possible terrorist attack in Houston
o California Teenager Pleads Guilty in Florida to Making Hundreds of ‘Swatting’ Calls Across the United States
o Nazi Group Marches Through Ohio Town
o Germany: 17-year-old arrested over alleged terror plot
o Teens accused of plotting to bomb pro-Israel rally on Parliament Hill
o Man dead after explosions outside Brazil supreme court ahead of G20
In the latest episode of Nerd Out, Dave is joined by Bridget Johnson and Joe Levy to do their annual talk about holiday threats and ways to be ever vigilant. Then they talked about their favorite foods and things to watch.
Joe Levy is the Assistant General Manager at the Barclays Center.
Bridget Johnson is a terrorism and extremism expert who has decades worth of experience analyze threat activities.
In this week's Security Sprint, Dave and Andy covered the following topics.
Warm Start:
• US cybersecurity chief says disinformation surge hasn't impacted election
• FBI Statement About Fabricated Videos and Statements Falsely Attributed to the FBI.
• Food and Agriculture Sector Eyes Cybersecurity Threats
• Food and Ag Sector 2024 Cyber Threat Report (PDF)
Main Topics:
Black people are receiving racist text messages about picking cotton 'at the nearest plantation.' The FBI and the FCC have weighed in on the messages that multiple Black people across the country received on Wednesday.
• FBI Statement on Offensive and Racist Text Messages
• FB-ISAO reports Antisemitic text messages
• Louisiana attorney general reveals new findings on racist texts
• Text service says it shut down accounts allegedly behind racist messages
Be security curious amid enduring extremism & terrorism threats, mass gatherings:
• Man Arrested and Charged with Attempting to Use a Weapon of Mass Destruction and to Destroy an Energy Facility in Nashville
• Cholo Abdi Abdullah Convicted for Conspiring to Commit 9/11-Style Attack at the Direction of Al Shabaab
• Florida Man Indicted for Posting Threats on the Internet
FBI Cyber Threat Updates:
• Easy Access to Information for Conducting Fraudulent Emergency Data Requests Impacts US-Based Companies and Law Enforcement Agencies. As of August 2024, FBI noted an uptick in criminal forum posts regarding conducting fraudulent emergency data requests and is releasing this notification for industry awareness. Cybercriminals are likely gaining access to compromised US and foreign government email addresses and using them to conduct fraudulent emergency data requests to US based companies, exposing the personal information of customers to further use for criminal purposes.
• HSI and Partners Announce Return of $1.8 Million Stolen During Business Email Compromise Scam
Quick Hits:
• Israel to collect soccer fans from Amsterdam after apparent antisemitic attacks
• Israeli soccer fans attacked in Amsterdam, in what Dutch authorities call antisemitic incidents
• Dave’s Severe Weather threat and preparedness reminders
• China Hack Enabled Vast Spying on U.S. Officials, Likely Ensnaring Thousands of Contacts
• U.S. Agency Warns Employees About Phone Use Amid Ongoing China Hack
• Russia Suspected of Plotting to Send Incendiary Devices on U.S.-Bound Planes
• Mystery fires were Russian 'test runs' to target cargo flights to US
• Halliburton misses profit estimate, buyback target as cyber attack hurts. Halliburton missed Wall Street estimate on a previously disclosed cyber hack that forced the oilfield services provider to pause a share repurchase program, executives said on Thursday.
• Unwrapping the emerging Interlock ransomware attack
• NEWPARK RESOURCES INC. Newpark Resources, Inc. is a worldwide provider of value-added drilling fluids systems and composite matting systems used in oilfield and other commercial markets. NEWPARK’s 8K.
• Major Oilfield Supplier Hit by Ransomware Attack
• 764 Terror Network Member Richard Densmore Sentenced to 30 Years in Prison
In the latest Security Sprint, Dave and Andy covered the following topics.
Warm Start.
• CISA: Critical Infrastructure Security and Resilience Month 2024. “Resilience means doing the work up front to prepare for a disruption, anticipating that it will in fact happen, and exercising not just for response but with a deliberate focus on continuity and recovery, improving the ability to operate in a degraded state, and significantly reducing downtime when an incident occurs.”
o A Proclamation on Critical Infrastructure Security and Resilience Month, 2024
o Biden declares November as critical infrastructure security and resilience month, calls safeguarding these systems
• FS-ISAC: Ransomware Essentials. A Guide for Financial Services Firm Defense (PDF)
Main Topics:
Election Week!
• Joint ODNI, FBI, and CISA Statement.
• US cybersecurity chief says disinformation surge hasn't impacted election
• CISA: Election Security Rumor vs. Reality
• Georgia Poll Worker Arrested for Making Bomb Threat to Election Workers
• FBI PSA: Scammers Exploit 2024 US General Election to Perpetrate Multiple Fraud Schemes
• Colorado accidentally put voting system passwords online, but officials say election is secure
• Joint ODNI, FBI, and CISA Statement on Russian Election Influence Efforts (01 Nov).
Liability:
• Attorney General James Secures $2.25 Million from Capital Region Health Care Provider to Protect Patient Data
• HHS Office for Civil Rights Settles Ransomware Cybersecurity Investigation for $500,000
• HHS Office for Civil Rights Settles HIPAA Ransomware Cybersecurity Investigation for $90,000
Insider Threats! Fired Employee Allegedly Hacked Disney World's Menu System to Alter Peanut Allergy Information
Quick Hits:
• Wiz CEO says company was targeted with deepfake attack that used his voice
• Ripple effect: the devastating impact of data breaches
• Canadian Centre for Cyber Security - Cyber Security Readiness
• Defendants with Ties to White Supremacy Sentenced in Connection with Plot to Destroy Energy Facilities
• United States Welcomes the United Kingdom’s Actions Against Known Purveyors of Kremlin Disinformation
• Hybrid Russian Espionage and Influence Campaign Aims to Compromise Ukrainian Military Recruits and Deliver Anti-Mobilization Narratives
• Army of bots promotes petrostate hosting global climate talks
• Reset Tech Investigation - Clickbait Cures: How Meta and Google Tolerate a Dubious Meds Market in the EU
• Fitness app Strava gives away location of Biden, Trump and other leaders, French newspaper says
• Meet Interlock — The new ransomware targeting FreeBSD servers
• Chinese threat actor Storm-0940 uses credentials from password spray attacks from a covert network
• Spain floods disaster: death toll rises to 205 as extra troops mobilised
• Biden Administration Announces Additional Security Assistance for Ukraine
• Iran Tells Region ‘Strong and Complex’ Attack Coming on Israel
• Cybersecurity Advisory – Threats Posed by Remote Technology Workers with Ties to Democratic People’s Republic of Korea
• Foreign Threat Actor Conducting Large-Scale Spear-Phishing Campaign with RDP Attachments
• New Tradecraft of Iranian Cyber Group Aria Sepehr Ayandehsazan aka Emennet Pasargad
• Cybercriminals Are Stealing Cookies to Bypass Multifactor Authentication
• Canadian Centre for Cyber Security - National Cyber Threat Assessment 2025-2026
• Pacific Rim: Inside the Counter-Offensive—The TTPs Used to Neutralize China-Based Threats
• Massive PSAUX ransomware attack targets 22,000 CyberPanel instances
• Midnight Blizzard conducts large-scale spear-phishing campaign using RDP files
In this week's Security Sprint, Dave and Andy covered the following topics.
Warm Start:
Organizational Cyber Security Culture
• The Gate 15 Interview – Rob Sherman on CISOs: “Focus on risk, focus on resilience.” Plus: A Salt and Pepper America, burnout, beta, and more!
• TribalHub x Gate 15: Organizational Cyber Culture Meets Concert Moments & The Gate 15 Interview – TribalNet! Building a Cybersecurity Culture, Tribal-ISAC, and how we rock!
Memorandum on Advancing the United States’ Leadership in Artificial Intelligence; Harnessing Artificial Intelligence to Fulfill National Security Objectives; and Fostering the Safety, Security, and Trustworthiness of Artificial Intelligence
• Statement from National Economic Advisor Lael Brainard on National Security Memorandum (NSM) on Artificial Intelligence (AI)
• FACT SHEET: Biden-Harris Administration Outlines Coordinated Approach to Harness Power of AI for U.S. National Security
• Biden administration urges US agencies to ‘harness’ AI systems for national security
• White House will order Pentagon and intel agencies to increase use of AI
• US to unveil AI national security memo to avoid China’s ‘strategic surprise’
Main Topics:
Info Ops
• Russian propaganda exploits US hurricane response to undermine FEMA and Ukraine support.
2024 Elections
• Joint ODNI, FBI, and CISA Statement.
• Pennsylvania officials rebut false voter fraud claims from home and abroad
• U.S. officials say Russia smeared Tim Walz, might stoke post-vote violence
• American creating deepfakes targeting Harris works with Russian intel, documents show
• CISA Launches #PROTECT2024 Election Threat Updates Webpage
• Joint Statement by FBI and CISA on PRC Activity Targeting Telecommunications
• Chinese Hackers Are Said to Have Targeted Phones Used by Trump and Vance
• Foreign threats to the US election are on the rise, and officials are moving faster to expose them
• Election Security Update as of Late October 2024
• Foreign Threats to US Elections After Voting Ends in 2024
• Foreign influence operations will expand before election and linger afterward, US agencies say
• Recorded Future: Operation Overload Impersonates Media to Influence 2024 US Election
• Microsoft: As the U.S. election nears, Russia, Iran and China step up influence efforts
• Justice Department Announces Four Cases Brought by Election Threats Task Force
• Secretary of State’s Office says they stopped cyberattack aimed at crashing voter website
• Wisconsin sued over voting system’s allegedly weak cyber protections
• Philadelphia Resident Charged for Election-Related Threat to State Party Representative
• Maine man made homemade bombs and dropped some from drones, officials say
• Dr. Paul Requests Information On DHS & CISA’s Participation At Election Day Cybersecurity Conference
Quick Hits:
Terrorism
• Arizona grand jury indicts juvenile for planning attack at Phoenix Pride Festival
• Maryland Man Charged With Attempting To Provide Material Support To ISIS
• Suburban Chicago Man Sentenced to 18 Years in Prison for Trafficking Fentanyl and Attempting To Support ISIS
Ransomware:
• Black Basta ransomware poses as IT support on Microsoft Teams to breach networks
• New Iranian-based Ransomware Group Charges $2000 for File Retrieval
• Japanese Man Convicted of Making Virus Using AI; Likely 1st Person in Japan to be Convicted in Criminal Case for Abusing Generative AI
• New Qilin.B Ransomware Variant Boasts Enhanced Encryption and Defense Evasion
• Crystal Rans0m: Rust-Based Hybrid Ransomware
• Avast Releases Free Decryptor for Mallox Ransomware
• Decrypted: Mallox ransomware
• Microsoft Threat Intelligence healthcare ransomware report highlights need for collective industry action
• Embargo ransomware: Rock’n’Rust
• macOS NotLockBit | Evolving Ransomware Samples Suggest a Threat Actor Sharpening Its Tools
• Akira Ransomware Evolution: A move towards cross-platform adaptability
In this episode of The Gate 15 Interview, Andy Jabbour speaks with Rob Sherman. Rob is the Chief Information Security Officer (CISO) for American Tower Corporation, a global digital infrastructure provider. Among his role and responsibilities, he established the global information security program responsible for governance, risk, compliance and security operations for the company’s corporate and line-of-business operations. Among his many hats, Rob is a CISO, attorney, cyber program builder, involved in incident response, with over 25+ years of it and infrastructure experience. Learn more about Rob: LinkedIn
In the discussion Rob and Andy discuss:
In this week's Security Sprint, Dave and Andy covered the following topics:
Election 2024:
CISA:
DOJ:
USGS: (Some) Assembly Required. How to sign
Quick Hits
In this week's Security Sprint, Dave covered the following topics.
Warm Start - the importance of taking time off.
Topics.
1. Election Security.
2. Ransomware.
3. Conspiracy Theories.
In the latest episode of Nerd Out, Dave welcomed back a friend of the pod, Bridget Johnson! Bridget caught everyone up on her latest work and new ventures before the two talked about the upcoming election and potential for violence. They transitioned to global terrorism and the potential risks associated with the continued conflict in the Middle East.
Bridget is a part of the McCrary Institute. You can sign up for their products at:
The podcast currently has 270 episodes available.