Fivecast’s Post

Crowds can become targets of terrorist attacks, especially during events at popular venues, with the entry (ingress) and exit (egress) points particularly vulnerable. The National Protective Security Authority (NPSA) has produced new guidance on the mitigation of terrorist threats at venues during ingress and egress which highlights the main security concerns and provides various strategies to reduce the risks. The guidance is about planning and preparation to make sure people visiting venues and attending events remain safe, especially during ingress and egress, which are particularly vulnerable to attacks. For more information, go to the NPSA website: https://orlo.uk/8Linw National Protective Security Authority (NPSA)

Honored to speak at the NYPD Cyber Intelligence & Counterterrorism Conference 2023 with former NY District Attorney Cyrus Vance, former BP CISO Simon Hodgkinson and brilliant intel/counterintelligence researcher Justin Albrecht on our panel called 'Agents of Stability in a World of Chaos and Change: Cybersecurity, a CISO Perspective'. A special thank you to Greg Sim 2020Partners for putting us together! The audience was made up of heads of national and interagency intelligence and government cyber crime fighters that frankly are my superhero's. One highlight is the new philosophy of 'embracing the breach' by sharing more openly lessons learned from incidents and not hiding them under the rug. After any breach in the news I always looking for the knowledge nugget of how I could change what I was doing. This is timely due to SEC's new reg on mandatory disclosure of material breaches. What are your thoughts? Also, did you know that in the next 15 years due to breakthroughs in #quantumcomputing there is a 50% chance that all our asymmetric cryptography protecting our data could be broken? Starting to plan for a 'Y2Q' event should start now with an inventory assessment (contact me for a guide). I will be writing more on this in my NextGen newsletter. Please follow me if you want to read more!

Last week, ARPC published its latest Thought Leadership paper ‘Cyber Terrorism in Australia: 2024 update’. This timely paper discusses the current cyber landscape and gives new insights into how some (re)insurance pools are attempting to address the evolving cyber-terrorism threat. To request a copy of the paper, click here: https://lnkd.in/g857y-dy #cyberterrorism #reinsurance #thoughtleadership

Cyber-terrorism is a complex area and defining what is in and out of scope from an insurance perspective has been an ongoing challenge. And whilst insurance is obviously an 'after the event' tool to manage this threat, having clear mechanisms that reduce uncertainty in the event of an incident is critical. This paper from ARPC explores some of these matters from a global perspective with key points including: - physical (material damage and disruption) cyber-attacks on the rise by state and non-state actors. - barriers to entry for bad actors are dropping. - potential for large scale disruptive cyber-attacks could be uninsurable in private markets, which is code for an implied government backstop whether government likes it or not. Globally and in Australia, reinsurance pools are well-established mechanisms to manage terrorism related risks in a recovery phase. With respect to cyber terrorism, Australia is an outlier with the Australian terrorism pool explicitly excluding coverage for cyber terrorism. Given one of the founding principles of the Australian Terrorism Reinsurance Pool was established to both provide certainty to the market in advance of any incidents and to also protect Australian taxpayers from a blank cheque in the recovery phase (a notorious Australian political habit in the trauma and emotion in the immediate aftermath of a catastrophe), it is jarring that cyber-terrorism continues to be excluded. To me, this creates significant exposure for our overall resilience and is a gap in our national security response. #nationalsecurity #cyberterrorism

It's been 25 years since the Al-Qaeda terrorist attack on the US embassy in Kenya, a brutal event that claimed more than 200 lives and left thousands injured. Yesterday, as I watched Citizen TV Kenya's, The Explainer segment on the 1998 bombing, it got me thinking about the vital role that cybersecurity analysts play in thwarting terrorism attacks. As we all know, terrorism is a multifaceted threat to global security. Modern terrorists do not just operate on the ground - they have also evolved into the digital sphere where they use cyberattacks to plan and execute their heinous acts. This is where cybersecurity analysts come in. Cybersecurity analysts are the unsung heroes of our time who utilize critical data analysis tools and techniques, machine learning, and artificial intelligence to detect and analyze threats that could lead to catastrophic events. They also collaborate with law enforcement, intelligence agencies, and other cybersecurity experts to mitigate the effects of these attacks before they happen. Yesterday's reminder of the 1998 embassy bombings serves as a poignant and solemn reminder of the unpredictable nature of terrorism. However, cybersecurity analysts continue to play a critical role in keeping us safe by providing a line of defense against the digital tactics employed by terrorist networks. If you are a cybersecurity specialist, you are part of an elite team tasked with combating one of the world's greatest threats to human life and security. It is a path worth pursuing and a cause worth fighting for. Let us remember the lives lost twenty-five years ago and honor their memories by continuing to work towards a safer and more secure future for all of us.

Scarred Manticore' Unleashes the Most Advanced Iranian Cyber Espionage Yet An Iranian state-sponsored threat actor has been spying on high-value organizations across the Middle East for at least a year, using a stealthy, customizable malware framework. In a report published on Oct. 31, researchers from Check Point and Sygnia characterized the campaign as "notably more sophisticated compared to previous activities" tied to Iran. Targets thus far have spanned the government, military, financial, IT, and telecommunications sectors in Israel, Iraq, Jordan, Kuwait, Oman, Saudi Arabia, and the United Arab Emirates. The exact nature of the data stolen thus far is not publicly known. #databreach #cybersecurity #cybercrime #privacy #cyberattack #datasecurity #malware #mohamedhakim #breach #sqlattack #police #law #legal #case #suit #lawyers #lawfirms #iranian #kuwait #uae

Hey connection! Here an article about "CyberTerrorism" #snsinstitutions #snsdesignthinkers #snsdesignthinking #snsct #designthinking Cyberterrorism is a premeditated, politically motivated attack against information systems, programs, and data that threatens violence or results in violence. The FBI defines cyberterrorism as any "premeditated, politically motivated attack against information, computer systems, computer programs and data, which results in violence against noncombatant targets by subnational groups or clandestine agents." However, there is no consensus among governments and the information security community on what qualifies as an act of cyberterrorism. #cyber #cybersecurity

UMBRA data security is unparalleled and critical to data security and transactions in the financial sector. As the financial industry increasingly adopts digital processes, it faces a growing array of cybersecurity threats. Cybercriminals target sensitive customer data held by retail banks and credit unions, exploiting vulnerabilities in digital systems to steal valuable information such as personally identifiable information (PII), account details, and payment card data. These attacks, which include phishing, malware, ransomware, and social engineering schemes, can result in significant financial losses, operational disruptions, regulatory fines, and reputational damage. To counter these threats, financial institutions must prioritize cybersecurity by implementing robust security measures, such as encryption protocols, multi-factor authentication, and continuous monitoring, while also investing in cybersecurity awareness training for employees and customers. UMBRA delivers #nationalsecurity. https://umbra.global/ #nationaldefense #threatintelligence #computersecurity #precrime #terrorism #infrastructure #OSINT #predictiveanalytics #SIGINT #electronicwarfare #suntzu #ai #datasecurity

The Counterterrorism Group (CTG) releases bi-weekly Open Source Intelligence (OSINT) Toolkit reports to help teach about various OSINT tools that can be used by Threat, Security, Intelligence, and Investigative Professionals (TSIIPs). This edition introduces Maltego, a tool that hosts APIs from third-party sources, visualizing relationships between entities, and making investigations efficient and proactive. Maltego plays a crucial role in early detection and mapping connections, enabling TSIIPs to act proactively, strategically, and efficiently in safeguarding people. #Maltego #OSINT #Investigation #Security #ThreatDetection #DigitalForensics https://lnkd.in/dnpaAE6P

The International Criminal Court said that the cybersecurity incident it detected in September was an act of espionage. UMBRA threat intelligence and data security protects all institutions against any type of malware or cyber attack. #nationalsecurity https://lnkd.in/e9r2Ju5H #nationaldefense #threatintelligence #computersecurity #precrime #terrorism #infrastructure #OSINT #predictiveanalytics #SIGINT #electronicwarfare #suntzu #ai #datasecurity