The Gate 15 Podcast Channel – Détails, épisodes et analyse

In this final episode of Venue Security, The IAVM Podcast Series, Andy Jabbour talks with Byron K. Johnson II, Director of Public Safety and Security, with the Raleigh Convention and Performing Arts Complex, which includes several venues in lovely Raleigh, North Carolina. Raleigh Convention & Performing Arts Complex: “The City is proud to own and manage several marquee venues in the area. Whether you want to see a concert, host a convention, or catch a ballet, we’ve got you covered:

• Red Hat Amphitheater
• Martin Marietta Center for the Performing Arts
• Coastal Credit Union Music Park
• Raleigh Convention Center
• Byron on LinkedIn

In the discussion Byron and Andy address the concept of a venue, its diverse range of facilities, common and specific risks, and the evolving nature of the industry. They also delved into the aspects of risk management, the importance of understanding unique risks associated with different types of events and facilities, and the role of technology in venue management. In closing, they emphasized the value of diverse perspectives in risk assessment and decision-making, the significance of leadership, and the importance of a strong reputation in the community. Plus:

• Byron’s background.
• The IAVM Academy for Venue Safety and Security (AVSS) with some name dropping!
• Leadership, being open minded, and open to sharing.
• The value of risk assessments and bringing in diverse perspectives.
• The importance of building relationships with the DHS Protective Security Advisors!
• With a kind Byron shoutout to our Gate 15 podcasts and more.

Venue Security, The IAVM Podcast Series has been a collaboration between Gate 15 and the International Association of Venue Managers’ (IAVM) Venue Safety and Security Committee (VSSC) as Andy Jabbour speaks with special guests from the IAVM community. This episode is our last in this limited run series.

In this week's Security Sprint, Dave and Andy covered the following topics:

Warm Start:

 

CISA: Shaping the legacy of partnership between government and private sector globally: JCDC

 

Main Topics:

 

International Security Incidents:

• Solingen: Main suspect behind deadly attack in custody
• Three dead after stabbing attack at festival in western Germany
• German police arrest boy accused of knowing about knife attack in advance
• French police arrest synagogue blast suspect
• Explosions Outside a France Synagogue Were a Terrorist Attack, Prosecutors Say
• Suspect Caught On CCTV In French Synagogue Attack Held Palestinian Flag: Source Close To Probe
• US ‘kinetic strike’ takes out senior leader of terrorist group aligned with al Qaeda in Syria
• Iran says 14 Daesh suspects arrested planning attacks
• Four Islamic State Terrorists ‘Liquidated’ By Russian Snipers After Taking Prison Guards Hostage: REPORT
• NATO airbase in Germany raises security level due to 'potential threat.'
• Hamas said to decide to target Israelis abroad in bid to avenge Haniyeh killing

 

Forgotten radios and missed warnings: New details emerge about communication failures before Trump rally shooting. The day before the attempted assassination of Donald Trump, a tactical team of local police officers set aside radios for their Secret Service partners so the two agencies could communicate during the former president’s July 13 campaign rally. But those radios were never picked up.

 

Invest in Resilience! Cyber Resilience Overestimation Leads to Business Continuity Issues, Ransom Payments

• Corvus: Q2 Cyber Threat Report: Ransomware Season Arrives Early
• Kroll: Q2 2024 Threat Landscape Report: Threat Actors Do Their Homework, Ransomware and Cloud Risks Accelerate
• Rapid7: Selling Ransomware Breaches: 4 Trends Spotted on the RAMP Forum
• Malwarebytes / ThreatDown: Why you need to know about ransomware
• NCC Group Monthly Threat Pulse – Review of July 2024
• WithSecure: Ransomware Landscape H1/2024

 

Quick Hits:

From cybercrime to terrorism, FBI director says America faces many elevated threats 'all at once'

ASD’s ACSC, CISA, FBI, and NSA, with the support of International Partners Release Best Practices for Event Logging and Threat Detection

Alabama Man Pleads Guilty to Detonating an Explosive Device Outside of the Alabama Attorney General’s Office

VFC: Bomb Threats at Jewish Institutions

Bomb threats reported at more than 100 Canadian Jewish institutions

Oregon Man Charged in Swatting and Bomb Threats Scheme That Targeted Jewish Hospitals in New York City and Long Island

Arizona man in custody amid investigation into alleged threats to kill former President Donald Trump

Iran Tries To 'Storm' U.S. Election With Russian-Style Disinformation Campaign

Meta: Taking Action Against Malicious Accounts in Iran

How Russian Trolls Are Trying to Go Viral on X

Trump attorney was targeted by hackers, sources say

‘Several opportunities’ to prevent Maine mass shooting were missed, commission finds

International report confirms record-high global temperatures, greenhouse gases in 2023

In this episode of The Gate 15 Interview, Andy Jabbour talks with Reason Magazine’s Elizabeth Nolan Brown and Jessica Dickinson Goodman in part two of our two-part series on encryption. Jessica and Gate 15 are members of the Global Encryption Coalition.

Elizabeth Nolan Brown. Senior Editor, Reason; President, Feminists for Liberty. Elizabeth Nolan Brown is a senior editor at Reason and the author of Reason’s biweekly Sex & Tech newsletter, which covers issues surrounding sex, technology, bodily autonomy, law, and online culture. She is also co-founder of the libertarian feminist group Feminists for Liberty, and a professional affiliate of the journalism program at the University of Cincinnati. Brown has covered a broad range of political and cultural topics since starting at Reason in 2014, with special emphasis on the politics, policy, and legal issues surrounding sex, speech, tech, justice, reproductive freedom, and women’s rights. She lives in Cincinnati, Ohio, with her husband, sons, and two cats. Andy is a big fan of her cat and family pictures. Read here complete bio at Reason.

• LinkedIn
• You can find her on most popular social media sites as ENBrown.

Jessica Dickinson Goodman. Jessica Dickinson Goodman is the current chair of the Chapter Seeding Committee of the San Francisco Bay Area ISOC Chapter and past-President, serving in that role for three years. As Board President, encryption protection and education played a major role in her agenda. She ran a monthly tactical tech support webinar series for community members in how to use encryption tools to protect personal privacy in a post-Dobbs world, wrote and published Encryption for Babies, is featured on the front page of the Global Encryption Coalition’s YouTube channel talking about encryption.

• LinkedIn
• Jessica & Global Encryption Coalition, on YouTube

In the discussion Liz, Jessica, and Andy discuss:

• Liz and Jessica’s backgrounds.
• Encryption 101 and why is it important.
• What led you to join the Global Encryption Coalition.
• Liz’s journalistic background covering sex, tech, privacy and related matters at Reason.
• Are we too paranoid?
• Law enforcement & legislation & breaking encryption.
• STOP CSAM, the EARN IT Act and Section 230.
• Protecting children vs. protecting privacy or protecting children and protecting privacy.
• Recommendations for law enforcement and legislators.
• Three Questions!
• And more.

Selected Links:

• Global Encryption Coalition. The Global Encryption Coalition (GEC) was founded in 2020 by the Center for Democracy & Technology, Global Partners Digital and the Internet Society and now has over 350 members. Its mission is to promote and defend encryption in key countries and multilateral fora where it is under threat. The GEC also supports efforts by companies to offer encrypted services to their users.
• GEC members
• Elizabeth Nolan Brown, selected writings:

• The Bipartisan Antitrust Crusade Against Big Tech
• Childproofing the Internet
• Judge Blocks Biden Administration's Strict Asylum Restrictions
• The New Campaign for a Sex-Free Internet
• The EARN IT Act Is Back. Here's What People Are Saying.

• Senator proposes new encryption provision in bill against online child exploitation
• Hawley, Durbin unite to push STOP CSAM Act forward
• Reps. Sylvia Garcia and Barry Moore, Sen. Durbin Introduce the Strengthening Transparency and Obligations to Protect Children Suffering from Abuse and Mistreatment Act
• CDT: The STOP CSAM Act Threatens Free Expression and Privacy Rights of Children and Adults
• EFF: The STOP CSAM Act: Improved But Still Problematic
• Wikipedia: EARN IT Act
• Tuta: How Germany was key to stop chat control - and how the name helped with that.
• Tuta: Another privacy win for NOYB: Your data is up for grasps? Not so in the EU – not even for Meta’s AI!
  

In this episode of The Gate 15 Interview, Andy Jabbour visits with Angie Gad. Angie is an experienced manager with a demonstrated ability to build and lead analyst teams having worked in intel and analysis in the private and public sectors. Skilled in teaching intelligence analysis, writing, and briefing with years of experience instructing and training analysts and students in analytical tradecraft. Subject matter expert on violent extremists, specifically far-right extremists, anti-government militias, and jihadists. Native Arabic speaker with experience living in the Middle East for nearly ten years. Angie Gad on LinkedIn.In the discussion we address: Angie’s background and her experiences working with the public and private sectors. Changes to the threat landscape over the last ten years. The proliferation of online platforms, social media and the complexities of emerging technologies like AI. The horseshoe of international terrorism and domestic extremism. The importance of thinking like the enemy. The beach, coffee, milk tea and Mediterranean Vibes. And more!

In this week's Security Sprint, Dave and Alec talked about the following topics: Weather: https://www.bbc.com/news/world-asia-65587321 https://www.noaa.gov/hurricane-prep Faith-Based Security: https://www.hstoday.us/subject-matter-areas/counterterrorism/nevada-man-charged-with-federal-hate-crimes-for-irvine-taiwanese-presbyterian-church-shooting/ https://www.justice.gov/opa/pr/ohio-man-charged-attempting-burn-down-church-planned-host-drag-show-events https://www.cbsnews.com/texas/news/san-marcos-man-pleads-guilty-fire-austin-synagogue/ https://www.nbcnews.com/news/us-news/man-2-teens-planned-isis-inspired-killings-chicago-mosque-spring-break-rcna21628 https://www.texarkanagazette.com/news/2023/apr/19/texarkana-arkansas-police-department-advises/ The workers leaving their dream jobs Cyber Advisories https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-131a https://www.bleepingcomputer.com/news/security/exploit-released-for-papercut-flaw-abused-to-hijack-servers-patch-now/ Quick Hits Philadelphia Inquirer attack: https://www.inquirer.com/news/philadelphia-inquirer-cyberattack-internet-security-20230515.html Biden calls white supremacy greatest terrorism threat - https://www.politico.com/news/2023/05/13/biden-howard-university-white-supremacy-terrorism-00096811 https://www.dni.gov/files/NCTC/documents/news_documents/2022_10_FBI-DHS_Strategic_Intelligence_Assessment_and_Data_on_Domestic_Terrorism.pdf Malicious AI Tool Ads Used to Deliver Redline Stealer - https://www.trendmicro.com/en_us/research/23/e/malicious-ai-tool-ads-used-to-deliver-redline-stealer.html El Niño is coming back — and could last the rest of the year, according to NOAA - https://www.usatoday.com/story/news/nation/2023/05/13/el-nino-is-likely-coming-what-is-that-will-it-lead-to-heatwaves/70211895007/

In the latest episode of the Weekly Security Sprint podcast, Dave and Andy talked about: Hostile Events Mass Killer Kills 8, Wounds 7 at Texas Mall & Gunman Kills 8, Injures 7 in Mass Shooting at Allen Outlets. 7 dead after driver intentionally runs over them in front of migrant shelter One dead, 4 taken to hospital after shooting in Midtown Atlanta, police say Suspected Atlanta hospital shooter Deion Patterson in custody after allegedly killing 1 and injuring 4 Deion Patterson ID’d as suspected Atlanta hospital shooter — what we know about him.  Ransomware CISA Jen Easterly: The Attack on Colonial Pipeline: What We’ve Learned & What We’ve Done Over the Past Two Years Victims’ reluctance to report ransomware stymies efforts to curb cyberattacks, say federal officials As ransomware data remain ‘fuzzy,’ US cyber leaders see reasons for optimism ZeroFox: CyberEdge 2023 Cyberthreat Defense Report. Colonial Pipeline ransomware attack's unexpected legacy Counter Ransomware Initiative focused on ‘expanding the tent,’ with Jordan, Costa Rica, Colombia joining Ransomware Attack On Dallas Disrupts 911, Court And Water Systems & Dallas cyberattack highlights ransomware’s risks to public safety, health Hacked university warns of campus text alerts sent by ransomware group U.S.: Cyber Chiefs Forge Partnerships With Physical Security Units As Combined Threats Grow.  Meet Akira — A new ransomware operation targeting the enterprise.  Hurricanes! ·       Dave links!   COVID. WHO says Covid-19 is no longer a global health emergency. CDC: COVID caused 6% of deaths in 2022, down from 12% in 2021 Critical Infrastructure Cybersecurity: Italian water supplier serving 500,000 people hit with ransomware attack USG Starting to Take Space Cybersecurity Seriously. Peters & Cornyn Reintroduce Bipartisan Bill To Protect Commercial Satellites From Cybersecurity Threats & article: U.S. Senators Reintroduce Legislation on Commercial Satellite Cybersecurity. Top US cyber official warns AI may be the ‘most powerful weapon of our time;’  ChatGPT and the new AI are wreaking havoc on cybersecurity in exciting and frightening ways DoD Co-funds Institute to Research the Neural, Biological, and Cognitive Foundations of Artificial Intelligenc Background Press Call on New Artificial Intelligence Announcements Readout of White House Meeting with CEOs on Advancing Responsible Artificial Intelligence Innovation   Statement from Vice President Harris After Meeting with CEOs on Advancing Responsible Artificial Intelligence Innovation Intelligence community working with private sector to understand impacts of generative AI; The United States’ intelligence community is looking to engage with the private sector to help them assess the technology, U.S. Director of National Intelligence Avril Haines told lawmakers Thursday. The NSA’s research chief on emerging tech — including ‘beyond belief’ leaps in AI TikTok – ‘We Respect Your Privacy, Except When We Don’t’ Risky Biz News: TikTok tracked FT journalist: TikTok has confirmed it tracked the movements of Financial Times reporter Cristina Criddle in order to discover if she was meeting with TikTok employees and identify her sources. TikTok Tracked Users Who Watched Gay Content, Prompting Employee Complaints MDM Threats as Newbots Proliferate Rise of the Newsbots: AI-Generated News Websites Proliferating Online Compromised DVR System TBK DVR Authentication Bypass Attack WaterISAC: Vulnerability Awareness – Spike in Attacks against CCTV Products with Critical Five-Year-Old Vulnerability Security Week: Exploitation of 5-Year-Old TBK DVR Vulnerability Spikes  

In the latest episode of the Risk Roundtable, Dave, Jen and Andy return to talk on very real and maybe somewhat less real threats across the all-hazards environment. Jen kicks things off sharing her thoughts on the recent FBI Advisory on jUIcE JaCKiNg!! Dave continues the focus on the FBI, sharing his heartfelt thoughts relating to the new Active Shooter report. Quick hits touch on Hurricane Preparedness, Patching (always patching!) and a new COVID report. The team then talks a little US-Russian history, and some musical history, as they dive into love it, hate it, or don’t care.

In the latest Weekly Security Sprint, Dave and Andy discussed the following topics.

DHS!

• Department of Homeland Security Issues QHSR Detailing Strategy to Stay Ahead of Evolving Threat Environment.
• 2023 State of Homeland Security Remarks: Tackling an Evolving Threat Landscape – Homeland Security in 2023
• Secretary Mayorkas Announces New Measures to Tackle A.I., PRC Challenges at First State of Homeland Security Address 
• State of Homeland Security: Mayorkas Launches Artificial Intelligence Task Force, ‘Sprint’ to Assess China’s ‘Especially Grave Threat’

See Something, Say Something – Possible Faith-Based Attack Averted & FB-ISAO Turns Five!

• Man Arrested at Church Service After Members Believe he was Testing Security of Church.
• Man fights officers in church; vehicle discovered stocked with weapons, ammo
• Man's behavior at Texarkana revival service leads to his arrest, seizure of guns, survival gear

FB-ISAO: Five Years Strong. “Happy Anniversary to the Faith-Based Information Sharing and Analysis Organization. 18 April 2023, marks five years of serving the community of faith with information, analysis, and capabilities to help reduce risk while enhancing preparedness, security, and resilience across all-faiths and all-hazards. Our members include Houses of Worship, Charities, Faith-Based Schools, and their affiliated organizations. We are five years strong!”

4-20! Cannabis ISAO Shares Cybersecurity Best Practices for the Cannabis Industry

• 4-20 2023! Cybersecurity Best Practices for the Cannabis Industry.

Quick Hits:

• Water-palooza! The Gate 15 Interview: April is Water-palooza! Chuck Egli and Jen Walker talk WaterISAC!
• Attorney General Brenna Bird Sues Biden Administration over New Cybersecurity Regulations for Public Water Systems 
• Save the Date for H2OSecCon 2023! 

Ransomware – March Was a Record Setting Month & Dragos Ransomware Report

• March 2023 broke ransomware attack records with 459 incidents.
• Ransomware is a major threat to smaller utilities, manufacturers and health care providers: report.
• Dragos Industrial Ransomware Attack Analysis: Q1 2023.

Blended Threats – Critical Infrastructure Space Asset Disruption Impacts Farming Operations 

• Farmers ‘crippled’ by satellite failure as GPS-guided tractors grind to a halt. T  

New FBI Elder Fraud Report

• Elder fraud costs Maine victims millions of dollars, report finds.

3CX – Attack x Within x Attack

• Mandiant: 3CX Software Supply Chain Compromise Initiated by a Prior Software Supply Chain Compromise; Suspected North Korean Actor Responsible.
• Software Maker 3CX Was Compromised in First-of-its-Kind Threaded Supply-Chain Hack.
• The 3CX cyberattack was the result of two supply-chain hacks, Mandiant says

SBOM, SBOM, You’re my SBOM!

• CISA Releases Two SBOM Documents. On Friday, CISA released two community-drafted documents around Software Bill of Materials (SBOM): Types of SBOM documents and Minimum Requirements for Vulnerability Exploitability eXchange (VEX). 
• Types of SBOM document 
• Minimum Requirements for VEX document 

Chinese Police Outposts

• US Brings Charges Over Secret Chinese Police Outpost.
• DOJ: Two Arrested for Operating Illegal Overseas Police Station of the Chinese Government.

 

In this episode of The Gate 15 Interview, Andy Jabbour visits with Chuck Egli, Senior Director at Gate 15 and Director of Preparedness and Response for WaterISAC, and Jennifer Lyn Walker, Director of Cyber Defense for Gate 15 and Director of Infrastructure Cyber Defense for WaterISAC. About WaterISAC: The U.S. water and wastewater sector’s leading national associations and research foundations established the Water Information Sharing and Analysis Center (WaterISAC) in 2002, in coordination with the U.S. Environmental Protection Agency. That same year, it was authorized by Congress in the Bioterrorism Act. WaterISAC is the designated information sharing and operations arm of the Water Sector Coordinating Council. WaterISAC is the only all-threats security information source for the water and wastewater sector. Members provide water and wastewater service to most of the United States, as well as in Canada, Australia, and New Zealand. Membership is also open to organizations in the U.K. and the Netherlands. WaterISAC is a non-profit organization, governed by a board of managers comprising water and wastewater utility managers and state drinking water administrators who are appointed by the partner organizations shown above. Built from the ground up to serve the water sector, WaterISAC is uniquely positioned to understand and support the sector’s needs. Read more. WaterISAC: On Twitter: @WaterISAC Chuck: On LinkedIn Jennifer: On LinkedIn and on Twitter: @Gate15_Jen Topics discussed: Chuck, Jen and WaterISAC’s backgrounds & the WaterISAC mission. The criticality of water – our most critical lifeline! WaterISAC’s evolution over the years, with great reports, resources, forums and events for the water and wastewater community. Physical and cyber threats to the Sector – from extremism and the Hard Reset to insider threats and a lot more! Adding to his comments in last month’s interview, Andy offers CISA more unsolicited guidance… Pirates, monuments, and favorite past times in Andy’s possibly nefarious social engineering game. WaterISAC About WaterISAC H2OSecCon 2022 Coming Soon! H2OSecCon 2023! Sign up for notifications and be there as a sponsor or participant! The Cybersecurity Evangelist, Episode 6 – The ISAC Edition/Series Part 2; A chat with WaterISAC CyberScoop: Did someone really hack into the Oldsmar, Florida, water treatment plant? New details suggest maybe not. 10 Apr 2023 Security Affairs: A cyber attack hit the water controllers for irrigating fields in the Jordan Valley, 11 Apr 2023 The Gate 15 Interview: Climate Change Threats with Dr. Jeff Masters. Sea Level Rise, Drought, the 2023 Hurricane Season, plus Devo, Watermelon and the beauty of the Havasupai Canyon!

In the latest episode of Nerd Out, Dave took a break from the regular security news discussions and welcomed Alec Davison and April Zupan to talk about their paths to becoming security professionals. The group discussed how they got interested in security and provided some insight into their different paths and inspirations. They also shared some helpful pointers about navigating inside the analytical community, talking to senior leaders or executives, and some activities that ensure they stay on top of the news and latest threat. In between April's eloquent use of vocabulary and Alec's inspirational quotes, Dave interjected and shared some helpful hints as well.