July 30, 2024

Weekly Security Sprint EP 75. North Korea mischief, and physical security matters

27 minutes

In this week's Security Sprint, Dave and Andy covered the following topics.

North Korea Cyber Threats to U.S. Businesses:

FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity.

North Korea State-Sponsored Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs.

DOJ: North Korean Government Hacker Charged for Involvement in Ransomware Attacks Targeting U.S. Hospitals and Health Care Providers

Microsoft: Onyx Sleet uses array of malware to gather intelligence for North Korea

Google: APT45: North Korea’s Digital Military Machine.

North Korean hacking group targeted weapons blueprints, nuclear facilities in cyber campaigns

KnowBe4: How a North Korean Fake IT Worker Tried to Infiltrate Us

CISA: Resources for Onboarding and Employment Screening Fact Sheet. Resource Materials: Resources for Onboarding and Employment Screening Fact Sheet

Physical Incidents:

Understand the Hostile Events Attack Cycle!

Two children killed and nine injured in knife attack at dance class in northern England

DOJ: Man Pleads Guilty to Making Threats to Arizona Election Office

Michigan man kills himself after running over 80-year-old Trump supporter

Defendants with Ties to White Supremacy Sentenced in Connection with Plot to Destroy Energy Facilities

Army review finds ‘series of failures' in lead-up to mass shooting in Lewiston, Maine

Quick Hits

7 people killed in stampede at a music concert in Congo's capital, authorities report

NCTC: First Responders Toolbox - Emerging Technologies and Possible Malign Uses by Terrorists

Olympics:

Man arrested over suspected French railway vandalism

French rail lines disrupted by ‘coordinated sabotage’ ahead of Paris Olympics opening ceremony

Russian chef arrested in Paris over alleged ‘large scale’ Olympic Games plot

ISIS? Russian sabotage? The biggest security threats at these Olympics.

ISIS-K’s online recruitment poses security threat to West ahead of Olympic Games

Terrorism, Drone Use Among the Security Risks at 2024 Paris Olympics

France launches large-scale operation to fight cyber spying ahead of Olympics

CrowdStrike: Remediation And Guidance Hub: Falcon Content Update For Windows Hosts,

House Homeland Security aims for CrowdStrike hearing in September

Preliminary Post Incident Review (PIR): Content Configuration Update Impacting the Falcon Sensor and the Windows Operating System (BSOD)

CrowdStrike: Remediation and Guidance Hub: Falcon Content Update for Windows Hosts

CrowdStrike says bug in quality control process led to botched update

Inside the 78 minutes that took down millions of Windows machines

How IT Departments Scrambled to Address the CrowdStrike Chaos

Microsoft says EU rules made CrowdStrike outage possible

Threat Actor Distributes Python-Based Information Stealer Using a Fake Falcon Sensor Update Lure

Cyberattacks may follow CrowdStrike outage, warns MS-ISAC

Donald Trump Assassination Attempt: Takeaways from FBI testimony: Trump shooter searched details of JFK assassination and flew drone near rally site

FBI: Would-be assassin was fixated on Trump, studied earlier high-profile killing

Trump Shooter Used Drone Like a ‘Rearview Mirror’ Before Assassination Attempt

Other items that may be of interest:

TikTok Collected U.S. Users’ Views on Gun Control, Abortion and Religion, U.S. Says

Dragos: Intelligence Brief: Impact of FrostyGoop ICS Malware on Connected OT Systems

Hackers shut down heating in Ukrainian city with malware, researchers say

Novel ICS Malware Sabotaged Water-Heating Services in Ukraine

Senators to FTC: Car companies’ data privacy practices must be investigated

Russian ransomware gangs account for 69% of all ransom proceeds

Phishing Landscape 2024: An Annual Study of the Scope and Distribution of Phishing

...more

View all episodes

By Gate 15

44 ratings