Weekly Security Sprint EP 63. The return of the Cybersecurity Evangelist, protests, weather, vulnerabilities and more.

Spela upp

Jennifer Lyn Walker returns to the Security Sprint and partners with Dave on the following topics. Protests. CNN: https://www.cnn.com/business/live-news/university-protests-palestine-04-29-24/h_5c66b0505df54a3db5b57e3949161257 AP: https://apnews.com/article/israel-palestinian-campus-student-protests-war-8b0d3a0cedb17f5e892c6ca43bbdf628?taid=6630becafd4f33000168594c&utm_campaign=TrueAnthem&utm_medium=AP&utm_source=Twitter National Small Business Week, Take Steps to Secure Your Business During National Small Business Week, Take Steps to Secure Your Business https://www.cisa.gov/news-events/news/during-national-small-business-week-take-steps-secure-your-business Secure Your Business https://www.cisa.gov/secure-our-world/secure-your-business Severe Weather. Tornados. NBC: ⁠https://www.nbcnews.com/news/weather/overnight-tornadoes-storms-leave-heavy-destruction-nebraska-iowa-rcna149658⁠ https://apnews.com/video/oklahoma-tornadoes-natural-disasters-ef4b5e6696bf47d69a869102f5b7a441 Hurricanes. https://engr.source.colostate.edu/researchers-predicting-well-above-average-2024-atlantic-hurricane-season/ Lots of Water… DHS asked to consider potentially 'devastating’ impact of hacks on rural water systems https://therecord.media/water-utility-cyberattacks-lawmakers-letter-to-dhs Director Wray's Remarks at the Vanderbilt Summit on Modern Conflict and Emerging Threats https://www.fbi.gov/news/speeches/director-wrays-remarks-at-the-vanderbilt-summit-on-modern-conflict-and-emerging-threats Quick Hits. https://www.thebaltimorebanner.com/education/k-12-schools/eric-eiswert-ai-audio-baltimore-county-YBJNJAS6OZEE5OQVF5LFOFYN6M/ Vulnerabilities – PAN OS & Siemens RUGGEDCOM; Cisco Siemens Industrial Product Impacted by Exploited Palo Alto Firewall Vulnerability https://www.securityweek.com/siemens-industrial-product-impacted-by-exploited-palo-alto-firewall-vulnerability/ Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack https://thehackernews.com/2024/04/palo-alto-networks-outlines-remediation.html ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/   Scams Japanese police create fake support scam payment cards to warn victims https://www.bleepingcomputer.com/news/security/japanese-police-create-fake-support-scam-payment-cards-to-warn-victims/ FBI warns of massive wave of road E-Z Pass - toll SMS phishing attacks https://www.bleepingcomputer.com/news/security/fbi-warns-of-massive-wave-of-road-toll-sms-phishing-attacks/ Researchers find dozens of fake E-ZPass toll websites after FBI warning https://therecord.media/researchers-find-dozens-of-ezpass-spoofs   AI 6 security items that should be in every AI acceptable use policy https://www.csoonline.com/article/2093806/6-security-items-that-should-be-in-every-ai-acceptable-use-policy.html   Misc (didn’t get to, but providing for bonus) Top 10 physical security considerations for CISOs https://www.csoonline.com/article/566635/what-is-physical-security-how-to-keep-your-facilities-and-devices-safe-from-on-site-attackers.html