Weekly Security Sprint EP 90. CISA future, more liability, and password problems
In this week's Security Sprint, Dave and Andy covered the following topics. Warm Start: • Auto-ISAC: Thomas Farmer Assumes Position as Director of Operations • News from the Auto-ISAC Cybersecurity 2024 Summit • Follow Up from last Sprint: FBI Statement Regarding Offensive Text Messages o Bigoted text messages after Trump victory also targeted Latinos, LGBTQ+ communities, FBI says o FBI investigates new wave of offensive messages targeting Hispanic, LGBTQ people • Groundbreaking Framework for the Safe and Secure Deployment of AI in Critical Infrastructure Unveiled by Department of Homeland Security • Media Advisory: Chairman Green Announces Worldwide Threats Hearing Featuring DHS Secretary Mayorkas, FBI Director Wray, NCTC Acting Director Holmgren: November 20, 2024, at 10:00 AM ET • Senate Judiciary Committee: Big Hacks & Big Tech: China’s Cybersecurity Threat: November 20, 2024, at 2:00 PM ET Main Topics: Homeland Security Transitions. Rand Paul has plans to kneecap the nation’s cyber agency. The incoming chair of the Senate Homeland Security Committee has pledged to severely cut the powers of the Cybersecurity and Infrastructure Security Agency or eliminate it entirely. • CISA Director Jen Easterly to depart on Inauguration Day • House Homeland Releases “Cyber Threat Snapshot” Highlighting Rising Threats to US Networks, Critical Infrastructure • Joint Statement from FBI and CISA on the People's Republic of China (PRC) Targeting of Commercial Telecommunications Infrastructure • Salt Typhoon: T-Mobile Hacked in Massive Chinese Breach of Telecom Networks • Salt Typhoon: Intelligence community briefed Congress on Chinese telecom intrusions • Volt Typhoon rebuilds malware botnet following FBI disruption • China's Hacker Army Outshines America Liability: Legal Report: A Michigan Agency Agrees to $13 Million Settlement Concerning Surprise Active Shooter Drill. Cyber Resilience: • NordPass: Top 200 Most Common Passwords. • 2023 Top Routinely Exploited Vulnerabilities. PDF: AA24-317A 2023 Top Routinely Exploited Vulnerabilities Quick Hits: • Palo Alto! Risky Biz News: Unpatched zero-day in Palo Alto Networks is in the wild. • CISA Adds Two Known Exploited Vulnerabilities to Catalog o CVE-2024-9463 Palo Alto Networks Expedition OS Command Injection Vulnerability o CVE-2024-9465 Palo Alto Networks Expedition SQL Injection Vulnerability • EPA: Management Implication Report: Cybersecurity Concerns Related to Drinking Water Systems. o US EPA report cites cybersecurity flaws in drinking water systems, flags disruption risks and lack of incident reporting o Drinking water systems for 26M Americans face high cybersecurity risks • Moody’s Cyber Heat Map flags extreme cyber risks for critical infrastructure, impacting telecommunications and airlines • 35 dead as driver hits crowd at sports center in southern Chinese city • ODNI - Potential Global Economic Consequences of a Use by Russia of Nuclear Weapons in Ukraine • Australia-Japan-United States Trilateral Defense Ministers' Meeting November 2024 Joint Statement • Justice Department Announces Murder-For-Hire and Related Charges Against IRGC Asset and Two Local Operatives • Iranian “Dream Job” Campaign 11.24 • Fans scuffle despite heavy security presence at France-Israel soccer match • Hate, Extremism & Terrorism: o Houston man charged with attempting to provide material support to ISIS o The FBI says it stopped a possible terrorist attack in Houston o California Teenager Pleads Guilty in Florida to Making Hundreds of ‘Swatting’ Calls Across the United States o Nazi Group Marches Through Ohio Town o Germany: 17-year-old arrested over alleged terror plot o Teens accused of plotting to bomb pro-Israel rally on Parliament Hill o Man dead after explosions outside Brazil supreme court ahead of G20