Weekly Security Sprint EP 74. Information sharing and resiliency; Crowdstrike, MDM, and Health

In this weeks Security Sprint, Dave and Andy covered the following topics: Warm Start:   ·       FB-ISAO Releases an All-Faiths Analysis of Attacks on U.S. Houses of Worship in 2023. ·       New Cyware Survey Reveals Critical Gaps in Cybersecurity Threat Intelligence Sharing and Collaboration. ·       Private-public partnership releases new bank resources for cloud computing adoption. o   Financial Sector Cloud Outsourcing Issues and Considerations.   Main Topics:   CrowdStrike Outage: ·       CISA: Widespread IT Outage Due to CrowdStrike Update (being updated; update 9:45 a.m., EDT, July 21, 2024) ·       Canadian Centre for Cyber Security - Alert - Issue impacting CrowdStrike Falcon EDR ·       UK NCSC: Statement on major IT outage ·       NZ-NCSC: NCSC statement on global IT outage ·       CrowdStrike says significant number of devices back online after global outage. o   Technical Details: Falcon Content Update for Windows Hosts, 20 Jul ·       Microsoft: New Recovery Tool to help with CrowdStrike issue impacting Windows endpoints ·       CrowdStrike CEO George Kurtz speaks out after failed tech update causes worldwide chaos at airports and banks ·       Microsoft says 8.5M Windows devices were affected by CrowdStrike outage ·       Brian Krebs: Global Microsoft Meltdown Tied to Bad Crowdstrike Update ·       Blue Screens Everywhere Are Latest Tech Woe for Microsoft ·       Don’t Fall for CrowdStrike Outage Scams   Donald Trump Assassination Attempt & Associated Physical Security: ·       FBI, DHS warn of possible retaliation for attack on Trump. ·       Trump’s would-be assassin researched previous mass shooter Ethan Crumbley and his family before attack. ·       Gunman Might Have Scoped Out Site Six Days Before Trump Rally. ·       Secret Service Arrests Florida Man Threatening to Kill Joe Biden. ·       Roswell Man Indicted for Threatening FBI Director Christopher Wray. ·       Secretary Mayorkas Delivers Remarks at White House Press Briefing. ·       TIME: What We Know—and Don’t Know—So Far About the Trump Rally Gunman ·       Militias Are Recruiting Off of the Trump Shooting Misinfo: o   Conspiracy theories spread wildly after the first assassination attempt on a US president in the social media age o   One in Three Biden Supporters Think Trump Shooting Might Have Been Staged o   4chan post claiming Secret Service told not to fire on Trump shooter explodes into full-on TikTok conspiracy o   Top Conspiracy Theories Around Trump Assassination Attempt Debunked   Health: ·       CDC Confirms Human Cases of H5 Bird Flu Among Colorado Poultry Workers. ·       In 2 years since the launch of 988, 10 million contacts have been answered ·       Global childhood vaccination hits plateau, with 35 million not fully protected from measles ·       UK Covid-19 Inquiry: Resilience and preparedness (Module 1)   Ransomware:  ·       CDK hack shows SEC disclosure standards are unsettled ·       ReliaQuest: Ransomware and Cyber Extortion in Q2 2024 ·       California officials say largest trial court in US victim of ransomware attack. ·       Two Foreign Nationals Plead Guilty to Participating in LockBit Ransomware Group   Quick Hits: ·       China seeks space supremacy and to exploit it ‘to our detriment’: US intelligence head ·       US to issue proposed rules limiting Chinese vehicle software in August ·       Fragmented and multiplied cybercriminal landscape, warns new Europol report ·       Europol: Internet Organised Crime Threat Assessment (IOCTA) 2024. ·       Patagonia invaded privacy by using AI to analyze customer service interactions, lawsuit alleges ·       CISA Releases Playbook for Infrastructure Resilience Planning. ·       Software Bill of Materials (SBOM) FAQ Resource. ·       Why the Pentagon Is Warning That ISIS Attacks Could Double This Year ·       US says ISIL trying ‘to reconstitute’ amid uptick in Syria, Iraq attacks ·       Neo-Nazi group demonstrates on Tennessee overpass