Weekly Security Sprint EP 75. North Korea mischief, and physical security matters

In this week's Security Sprint, Dave and Andy covered the following topics. North Korea Cyber Threats to U.S. Businesses: FBI, CISA, and Partners Release Advisory Highlighting North Korean Cyber Espionage Activity.   North Korea State-Sponsored Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs. DOJ: North Korean Government Hacker Charged for Involvement in Ransomware Attacks Targeting U.S. Hospitals and Health Care Providers Microsoft: Onyx Sleet uses array of malware to gather intelligence for North Korea Google: APT45: North Korea’s Digital Military Machine.  North Korean hacking group targeted weapons blueprints, nuclear facilities in cyber campaigns KnowBe4: How a North Korean Fake IT Worker Tried to Infiltrate Us   CISA: Resources for Onboarding and Employment Screening Fact Sheet. Resource Materials: Resources for Onboarding and Employment Screening Fact Sheet   Physical Incidents: Understand the Hostile Events Attack Cycle! Two children killed and nine injured in knife attack at dance class in northern England DOJ: Man Pleads Guilty to Making Threats to Arizona Election Office Michigan man kills himself after running over 80-year-old Trump supporter Defendants with Ties to White Supremacy Sentenced in Connection with Plot to Destroy Energy Facilities Army review finds ‘series of failures' in lead-up to mass shooting in Lewiston, Maine   Quick Hits 7 people killed in stampede at a music concert in Congo's capital, authorities report NCTC: First Responders Toolbox - Emerging Technologies and Possible Malign Uses by Terrorists   Olympics:  Man arrested over suspected French railway vandalism French rail lines disrupted by ‘coordinated sabotage’ ahead of Paris Olympics opening ceremony Russian chef arrested in Paris over alleged ‘large scale’ Olympic Games plot ISIS? Russian sabotage? The biggest security threats at these Olympics. ISIS-K’s online recruitment poses security threat to West ahead of Olympic Games Terrorism, Drone Use Among the Security Risks at 2024 Paris Olympics France launches large-scale operation to fight cyber spying ahead of Olympics   CrowdStrike: Remediation And Guidance Hub:
Falcon Content Update For Windows Hosts,   House Homeland Security aims for CrowdStrike hearing in September Preliminary Post Incident Review (PIR): Content Configuration Update Impacting the Falcon Sensor and the Windows Operating System (BSOD) CrowdStrike: Remediation and Guidance Hub: Falcon Content Update for Windows Hosts CrowdStrike says bug in quality control process led to botched update Inside the 78 minutes that took down millions of Windows machines How IT Departments Scrambled to Address the CrowdStrike Chaos Microsoft says EU rules made CrowdStrike outage possible Threat Actor Distributes Python-Based Information Stealer Using a Fake Falcon Sensor Update Lure Cyberattacks may follow CrowdStrike outage, warns MS-ISAC   Donald Trump Assassination Attempt: Takeaways from FBI testimony: Trump shooter searched details of JFK assassination and flew drone near rally site FBI: Would-be assassin was fixated on Trump, studied earlier high-profile killing Trump Shooter Used Drone Like a ‘Rearview Mirror’ Before Assassination Attempt   Other items that may be of interest: TikTok Collected U.S. Users’ Views on Gun Control, Abortion and Religion, U.S. Says Dragos: Intelligence Brief: Impact of FrostyGoop ICS Malware on Connected OT Systems Hackers shut down heating in Ukrainian city with malware, researchers say Novel ICS Malware Sabotaged Water-Heating Services in Ukraine Senators to FTC: Car companies’ data privacy practices must be investigated Russian ransomware gangs account for 69% of all ransom proceeds Phishing Landscape 2024: An Annual Study of the Scope and Distribution of Phishing