The Gate 15 Podcast Channel

• Weekly Security Sprint EP 110. Disrupted attacks, hurricane preparedness, and cyber reviews

  In the latest Security Sprint, Dave and Andy covered the following topics:Warm Open:• (TLP:CLEAR) WaterISAC – EPA: National Security Information Sharing Bulletin - Q2 2025• REGISTER NOW! WaterISAC’s 2025 H2OSecCon! Happening virtually Tuesday May 20th from 11am-5pm ET. Learn more and register here! • Crypto ISAC Expands Leadership Team to Support Next Phase of Industry Collaboration and Operational Scale & Crypto Hacks and Scams Hit $364M in April, Says CertiK• Continuity Planning: Conducting Tabletop Exercises; Facilities teams need to participate in Tabletop exercises to prepare for emergency events and situations. Main Topics:Physical Security• Brazil police thwart bomb attack on Lady Gaga concerto Two Arrested in Plot to Bomb Lady Gaga’s Rio Concert• Florida Man Arrested in Foiled Mass Shooting Plot – Church Listed Among Targetso Arrest in Florida reveals love link, conspiracy between man and Wisconsin school shootero Loxahatchee man linked to WI school shooter accused of 7 mass shooting threats• Eight arrests in connection with two separate terrorism investigations o UK Met: Five arrested as part of Counter Terrorism Policing operationo UK Met: Three people arrested as part of Counter Terrorism Policing operationo ‘Iranian terror attack’ foiled with hours to spare; Authorities feared attack on ‘specific premises’ was imminent as seven arrested• Teen Arrested In German Synagogue Attack PlotSevere Weather• NOAA: Hurricane Prep: social media (English). The Hurricane Preparedness Week Social Media Plan.• Monster quake could sink swath of California.o Tsunami Warning Issued After Huge Earthquake Off Argentinao Earthquake of magnitude 5.83 strikes La Rioja Province, Argentina, GFZ saysCybersecurity• Q1 Ransomware Report: The organizational structure of ransomware threat actor groups is evolving before our eyes.• Surefire Cyber: Ransomware Threat Evolution Q1 2025• Retail Ransomware Attacks Claimed by DragonForce:o Incidents impacting retailers – recommendations from the NCSCo Co-op cyber attack affects customer data, firm admits, after hackers contact BBCo Co-op confirms data theft after DragonForce ransomware claims attacko DragonForce Ransomware Gang | From Hacktivists to High Street Extortionistso DragonForce Ransomware Cartel attacks on UK high street retailers: walking in the front dooro Marks & Spencer breach linked to Scattered Spider ransomware attacko NCSC statement: Incident impacting retailerso Luxury store Harrods is latest retail victim of cyber attackers o Harrods is latest British retailer to be hit by cyber attacko UK Retailers Co-op, Harrods and M&S Struggle With Cyberattackso Harrods the next UK retailer targeted in a cyberattackQuick Hits:• Hello 0-Days, My Old Friend: A 2024 Zero-Day Exploitation Analysis • FBI PSA: Threat Actors Use "Swatting" to Target Victims Nationwide, April 29, 2025• TLP CLEAR FBI FLASH Phishing Domains Associated with LabHost PhaaS Platform Users (PDF)• With Love, From North Korea… 🇰🇵o North Korea Stole Your Jobo Malicious North Korean actors attempt to infiltrate technology companieso North Korean operatives invent identities to infiltrate industrieso How we identified a North Korean hacker who tried to get a job at Krakeno Recruitment Red Flags: Spotting DPRK IT Remote Workers• Noem calls for reauthorization of cyberthreat information sharing law during RSA keynote• Some DHS employees told to send selfies to prove they are in-office as department suddenly ends remote work• CISA restructuring plan release date unknown and likely to be slowed by Plankey nomination• Spain, Portugal switch back on, seek answers after biggest ever blackouto The Agonizing Task of Turning Europe’s Power Back Ono NERC: Statement on European Outageso What Caused the European Power Outage?

  --------  

  23:17
• Weekly Security Sprint EP 109. Cybersecurity reports, Casino blended threat, and vehicle ramming

  In this week's Security Sprint, Dave and Andy covered the following topics:Warm Open:• CISA gets a deputy director as it braces for major layoffs• FB-ISAO’s Collaboration With Those Who are Lone Defenders• Crypto/Blockchain: o A Record-Breaking Year for Cybercrime: Key Findings from the FBI’s 2024 IC3 Reporto Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware: BeaverTail, InvisibleFerret, and OtterCookieo XRP supply chain attack: Official NPM package infected with crypto stealing backdooro Risky Biz News - R0AR crypto-heisto Crypto ISAC: Ensuring The Security, Efficiency, and Resiliency Of Cryptoo The Gate 15 Interview EP 57 – Adriana Villasenor on info sharing, resilience, and racingMain Topics:Big 3! Risky Bulletin: FBI IC3, Verizon DBIR, Google M-Trends reports are out—here's the conclusions!• Verizon 2025 Data Breach Investigations Report• M-Trends 2025: Data, Insights, and Recommendations From the Frontlines• FBI Releases Annual Internet Crime ReportCasino hackers say they've got maps to slot machine vault and server room. A ransomware gang claims that it’s holding hostage the blueprints to a $700 million casino. If true, they may know more about the vaults, server rooms, and security cameras than the people building it. Hackers target Catawba Two Kings Casino, threaten to release blueprintsVancouver Vehicle Ramming; 11 killed - Suspect charged with murder over Vancouver Filipino festival car ramming, police say victims were aged five to 65• A man is charged with murder after SUV rams a crowd in Vancouver's 'darkest day'• Vancouver ramming attack: Police determine attack was 'deliberate' but not 'terrorism' - 'Shocking'• A look at some recent deadly attacks involving vehicle rammings• 4 Killed When a Car Crashes Through an Illinois After-School Center; The victims’ ages ranged from 7 to 18, the police said. Several others were injured.Quick Hits:• May Day Protests: o Workers in 600+ US Cities to Protest 'Billionaire Takeover' on May Dayo 50501 events• ‘No longer welcome to be alive’: Man threatened Trump, Elon Musk and Tesla owners in ‘Declaration Of War’ emails that claimed ‘newsworthy killings’ were coming, DOJ says• Spanish distributor says restoring power after huge outage could take 6-10 hours. Portugal also hit• New U.S. Secret Service Research Highlights Connection Between Domestic Violence and Mass Attacks • FBI PSA - FBI Seeking Tips about PRC-Targeting of US Telecommunications & The Persistent Threat of Salt Typhoon: Tracking Exposures of Potentially Targeted Devices• Countries shore up their digital defenses as global tensions raise the threat of cyberwarfare• Scams & Fraud: o FBI PSA - Cyber Criminals Impersonating Employee Self-Service Websites to Steal Victim Information and Funds o Foreign intel job scams target current, former DoD employeeso Think that text message is from USPS? It could be a scamo FBI Surges Resources to Nigeria to Combat Financially Motivated Sextortion• Russian Propaganda Campaign Targets France with Al-Fabricated Scandals, Drawing 55 Million Views on Social Media • Alleged former members of neo-Nazi group claim its leader is Russian spy• NSA Publishes Recommendations for Smart Controller Security Controls and Technical Requirements for OT Environments• Scientists Find Measles Likely to Become Endemic in the US Over Next 20 Years

  --------  

  22:00
• Nerd Out EP 57. Drone deep-dive, plus talk on Daredevil and Andor

  On the latest episode of Nerd Out, Dave and Alec reference the following articles related to drones. They talked about drone usages, the way threat actors exploit them from a cyber and physical security perspective as well as mitigation strategies.Drone ThreatDroning On: The Response to Use of Drones by Domestic Violent ExtremistsProtecting Critical Infrastructure From Weaponized DronesDrones are Transforming the Battlefield in Ukraine But in an Evolutionary FashionDrone attack warning: Illinois terrorism experts issue risk assessment for potential drone attacksAre Domestic Drone Shoot-Downs Lawful?Quick HitsHow India’s Threat to Block Rivers Could Devastate PakistanThe Contentious U.S.-China Trade RelationshipWhat to know about the tensions between Iran and the US before their third round of talks

  --------  

  40:04
• Weekly Security Sprint EP 108. Scams, 3rd party diligence, cyber reports, hurricanes and more.

  In the latest Security Sprint Dave and Andy covered the following topics:Warm Open:• Health-ISAC: European Hobby Exercise 2024 After Action Report• Peters and Rounds Introduce Bipartisan Bill to Extend Information Sharing Provisions That Help Address Cybersecurity Threatso Bill extends cyber threat info-sharing between public, private sectoro Exclusive: Peters, Rounds tee up bill to renew expiring cyber threat information sharing lawo CRS: The Cybersecurity Information Sharing Act of 2015: Expiring Provisions, 08 Apr 2025Main Topics:Scams:• FBI PSA: FBI Warns of Scammers Impersonating the IC3• Foreign intel job scams target current, former DoD employees• Take9JCAT First Responders Toolbox. Third-Party Security Critical to Safeguarding Public Gatherings From Terrorist Threats UK: Law firm fined £60,000 following cyber attack. “enabled cyber hackers to gain access to DPP’s network, via an infrequently used administrator account which lacked multi-factor authentication (MFA)”BakerHostetler: Ready and Resilient in the Data-Driven Age. Half Measures ≠ Effective Prep. Your organization finally prepared an IRP and a BCP. That's great! But have you actually implemented and then tested these plans? (At Gate 15, we’re a bit partial to this finding. Need to exercise and test those plans? Contact our team today to schedule your next workshop, tabletop, drill or other exercise!)The Weather Channel - 2025 Hurricane Season Outlook: Not Quite 2024, But Above-Average US Landfall Threat. The 2025 Atlantic hurricane season may not be as active as last year, but the threat of U.S. landfalls remains higher than average, according to a just-released outlook issued by The Weather Company and Atmospheric G2. • Colorado State University's tropical forecast team.• Tornado-producing storm deals deadly weather to Oklahoma and Texas• FEMA Isn’t Ready for Disaster Season, Workers SayQuick Hits:• Abusing Data in the Middle: Surveillance Risks in China’s State-Owned Mobile Ecosystem & 35 countries use Chinese networks for transporting mobile user traffic, posing cyber risks• Florida State shooting: 2 dead, sheriff’s deputy’s son in custody & How a security gap at FSU heightened students’ fears even with the speedy police response• Bot Traffic Surpasses Humans Online—Driven by AI and Criminal Innovation• CISA Releases Guidance on Credential Risks Associated with Potential Legacy Oracle Cloud Compromise • Canadian Centre for Cyber Security Resources:o Security guidance for dark web leaks (ITSAP.00.115)o Search engine optimization poisoning (ITSAP.00.013)

  --------  

  20:45
• Weekly Security Sprint EP 107. Hacktivism, Nation-states, and political violence

  In this week's Security Sprint Andy and Hunter talk about the following topics:Warm Open:• How Healthcare Facilities Can Be Truly Disaster-Resilient. Healthcare Facilities Today spoke with Jon Crosson, director of health sector resilience at Health-ISAC, on what makes a solid resiliency program for healthcare facilities, the importance of real-time information sharing and how healthcare facility managers can use partnerships to improve response and recovery efforts. • Healthcare cybersecurity needs a total overhaul, by Errol Weiss, Chief Security Officer, Health-ISAC• Addressing Risks from Chris Krebs and Government Censorshipo Fact Sheet: President Donald J. Trump Addresses Risks from Chris Krebs and Government Censorshipo Trump Revenge Tour Targets Cyber Leaders, Electionso Gate 15: Cybersecurity & Infrastructure Security: Time to Make This Happen, December 15, 2017 Following the House of Representatives, the US Senate needs to approve the re-designation of DHS’s National Protection and Programs Directorate (NPPD) to become the Cybersecurity and Infrastructure Security Agency (CISA); The President should nominate, and the Senate should confirm, Christopher Krebs as Under Secretary for NPPD and then as the first Director of National Cybersecurity and Infrastructure Security.Main Topics: Hacktivism & Nation-State Influence• CyberAv3ngers: The Iranian Saboteurs Hacking Water and Gas Systems Worldwide• IRGC-Affiliated Cyber Actors Exploit PLCs in Multiple Sectors, Including US Water and Wastewater Systems Facilities• Top 10 Advanced Persistent Threat (APT) Groups That Dominated 2024• The rising tide: A 2024 retrospective of hacktivismPolitical Violence, Executive Protection• ‘Save the white race’: Teen who gunned down his parents was plotting a ‘political revolution’ that included ‘getting rid of’ President Trump, police say• Pennsylvania Man Charged with Making Threats to Assault and Murder President Donald J. Trump, Other U.S. Officials, and Immigration and Customs Enforcement Agents & ‘Going to assassinate him myself’: Man ‘buying 1 gun a month since the election’ threatened to kill Trump in multiple YouTube comments under name ‘Mr Satan,’ FBI says• Suspect in custody after overnight arson at Pennsylvania Gov. Josh Shapiro's residenceo Was Cody Balmer 'Upset' With Gov Josh Shapiro Over Property Seizure? o Harrisburg man to be charged with attempted murder of Gov. Josh Shapiro for setting fire to official residenceo Suspect in arson at Pennsylvania Gov. Josh Shapiro's residence planned to beat him, documents sayo Suspected arsonist Cody Balmer accused of firebombing Gov. Shapiro’s home shared disturbing photos onlineo Cody Balmer's Social Media Reveals Anti-Joe Biden Posts• Protect Democracy: How does Gen Z really feel about democracy? 11% believe that it political violence is sometimes necessary to achieve progress.• Arrest made at UnitedHealthcare headquarters after reports of an intruder Quick Hits:• Threat Actor Allegedly Selling Fortinet Firewall Zero-Day Exploit• 8 April 2025 NCSC, FBI, DCSA bulletin – Online Targeting of Current & Former U.S. Government Employees. • FAA Drone Detection Testing. The FAA will conduct drone-detection testing in Cape May, New Jersey, between April 14-25. • Top homeland security lawmaker calls for cautious cuts to CISA• CISA cuts: ‘Open season’ for US? • Senator puts hold on Trump’s nominee for CISA director, citing telco security ‘cover up’ • OCC Notifies Congress of Incident Involving Email Systemo Treasury bureau notifies Congress that email hack was a ‘major’ cybersecurity incidento Hackers lurked in Treasury OCC’s systems since June 2023 breach• US Cyber Command: Posture Statement of Lieutenant General William J. Hartman

  --------  

  29:04

More Government podcasts

Trending Government podcasts

About The Gate 15 Podcast Channel