Advertisement · 728 × 90

Posts by Gate 15

From Tabletop to Reality: 10 Gaps Executive Cyber Exercises Consistently Reveal Executive cyber crisis exercises are often treated as a means to validate organizational readiness. In practice, they expose an underlying problem: most organizations are structurally unprepared to ma...

Today in the SUN we feature an article from @sansinstitute.bsky.social on 10 Gaps Executive Cyber Exercises Consistently Reveal.

Read more below:
www.sans.org/blog/from-ta...

#cybersecurity
@andyjabbour.bsky.social

21 hours ago 2 2 1 0

The BlueHammer researchers drops another Windows EOP zero-day, named RedSun:

deadeclipse666.blogspot.com/2026/04/publ...

4 days ago 5 3 1 0
Post image

Good new resilience guidance from the 🇬🇧 UK NPSA: 'Fire as an Act of Sabotage Guidance' www.npsa.gov.uk/national-sec... @gate15.bsky.social @dpounder.bsky.social @bridgetjohnson.bsky.social www.npsa.gov.uk/sites/defaul...

1 day ago 2 2 0 0
Preview
Critical infrastructure resilience and escalated threat navigation initiative - Canadian Centre for Cyber Security The time to act is now: Strengthening critical infrastructure cyber readiness for a resilient Canada.

🇨🇦 New from our neighbors: Critical infrastructure resilience and escalated threat navigation initiative: 'As geopolitical instability accelerates cyber threats to critical infrastructure...' www.cyber.gc.ca/en/cyber-sec... #cybersecurity #resilience cc @gate15.bsky.social @campuscodi.risky.biz

1 day ago 2 2 0 0
Post image

🇬🇧 New: Preparing for severe #cyber threat: why leaders must act now; A call to action to collectively build UK.
- Resilience beats prevention
- Preparation must happen before the threat escalates
#resilience www.ncsc.gov.uk/blogs/prepar... @gate15.bsky.social @campuscodi.risky.biz #cybersecurity

1 day ago 0 1 0 0

Today in the SUN we feature an article from Fitch Ratings on the growth of U.S. cyber insurance direct written premiums.

Read more below:
www.fitchratings.com/research/ins...

#cybersecurity
@andyjabbour.bsky.social

4 days ago 2 1 0 0
Weekly Security Sprint EP 153. Traveling Man, FBI Report, Hurricane Predictions, and More | Gate 15

Our latest edition of the Security Sprint is out now! In this episode, Dave and Andy discuss AI, an FBI Report, Hurricane Predictions, and more! Our podcast is available right now, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/weekly-secur...

5 days ago 1 1 0 0
Advertisement
Offensive AI: What Red Teams and Attackers are Doing Now | Gate 15

Check out our latest blog post, "Offensive AI: What Red Teams and Attackers are Doing Now!"

Read more below:
gate15.global/offensive-ai/

#cybersecurity
@andyjabbour.bsky.social

5 days ago 4 2 0 0
Preview
The State of Ransomware in Q1 2026 Ransomware in Q1 2026 remained stable in volume but grew more dangerous in nature, as financially motivated attacks increasingly intersected with geopolitical conflict and disruptive intent.

Today in the SUN we feature an article from Emsisoft on the state of ransomware in Q1 2026.

Read more below:
www.emsisoft.com/en/blog/4756...

#cybersecurity
@andyjabbour.bsky.social

5 days ago 1 0 1 0
Preview
Mailbox rules in O365—a post-exploitation tactic in cloud ATO | Proofpoint US Key Takeaways  Mailbox rules are a high-risk post-exploitation tactic. Attackers abuse native mailbox rules for exfiltration, persistence, and communication manipulation.

Today in the SUN, we feature an article from @proofpoint.com on Mailbox rules in O365—a post-exploitation tactic in cloud ATO.

Read more below:
www.proofpoint.com/us/blog/thre...

#cybersecurity
@andyjabbour.bsky.social

6 days ago 1 1 0 0
Preview
Mailbox rules in O365—a post-exploitation tactic in cloud ATO | Proofpoint US Key Takeaways  Mailbox rules are a high-risk post-exploitation tactic. Attackers abuse native mailbox rules for exfiltration, persistence, and communication manipulation.

A good TTP to follow, check your @microsoft.com Outlook rules weekly. I learned that the hard way years ago. New from @proofpoint.com: www.proofpoint.com/us/blog/thre... #cybersecurity @gate15.bsky.social

6 days ago 0 1 0 0

Here's a link straight to the briefing: labs.cloudsecurityalliance.org/wp-content/u...

1 week ago 1 0 0 0
Preview
Lab Space The landing page for agile CSA community projects

The CSA CISO Community, SANS, [un]prompted, and the wider community released a briefing on how AI-driven vulnerability discovery is reshaping the defender timeline.

Read more below:
labs.cloudsecurityalliance.org/mythos-ciso/

#cybersecurity
@andyjabbour.bsky.social
@campuscodi.risky.biz

1 week ago 3 3 3 0
Preview
DHS Shutdown Day 58: Secretary Mullin Orders All Staff Back to Work Despite No Congressional Deal - HSToday On Friday, April 10, Department of Homeland Security (DHS) Secretary Markwayne Mullin ordered all furloughed DHS staff to report to their next scheduled shift, despite the ongoing partial government s...

Today in the SUN we feature an article from GTSC's Homeland Security Today on Secretary Mullin ordering all staff back to work despite no congressional deal.

Read more below:
www.hstoday.us/featured/dhs...

#cybersecurity
@andyjabbour.bsky.social

1 week ago 1 1 0 0
Advertisement
Post image Post image

Great to be out in California talking with tribes about #cybersecurity risk, threats, mitigation & resilience! Next stop on the West Coast tour: Washington! Glad to rep my @gate15.bsky.social team and to support TribalHub & Tribal-ISAC.

1 week ago 7 2 0 0

Last week we have observed 164 events across 39 countries and attributed them to 34 ransomwares.
The top targeted country was #UnitedStates and the most targeted sector was #Construction.
The ransomware #Gentlemen has been busy with 28 new events (17%)!

Learn more: https://ecrime.ch/

1 week ago 1 2 1 0

Today in the SUN we cover an article from @theregister.com on Zephyr Energy losing £700K in a cyber hit that rerouted contractor payment.

Read more below:
www.theregister.com/2026/04/09/z...

#cybersecurity
@andyjabbour.bsky.social

1 week ago 2 1 1 0

Check out their guidance on security tips for social media and messaging services and Frontier models and their impact on cyber security below.

www.cyber.gov.au/business-gov...

www.cyber.gov.au/about-us/vie...

1 week ago 0 0 0 0

The Australian Signals Directorate released a lot of new guidance to increase cyber resilience.

Check out their article on detecting socially engineered messages below:
www.cyber.gov.au/business-gov...

#cybersecurity
@andyjabbour.bsky.social
@campuscodi.risky.biz

1 week ago 0 0 1 0
Post image

JCAT released new guidance, "Tailored security for major events mitigates terrorist threat to hospitality and nightlife industry." The intent is to emphasize mitigation strategies that enhance ITAC collaboration during major events.

Check it out below:
www.dni.gov/index.php/nc...

1 week ago 0 0 0 0
Leveraging AI for Proactive Physical Threat Detection and Emergency Response | Gate 15 This blog is part of Gate 15’s blog series “Riding the Tiger: AI Threats and Opportunities”, highlighting the essential considerations for organizational leaders and security professionals.

Check out our latest blog post, "Leveraging AI for Proactive Physical Threat Detection and Emergency Response!"

Read more below:
gate15.global/leveraging-ai/

#cybersecurity
@andyjabbour.bsky.social

1 week ago 1 1 1 0
Hate crimes against Latinos and Sikhs hit record high in 2025 2025 was the 5th-highest year for hate crimes in 34 years.

Today in the SUN we feature an article from @axios.com on Hate crimes against Latinos and Sikhs hitting a record high in 2025.

Read more below:
www.axios.com/2026/04/09/h...

#cybersecurity
@andyjabbour.bsky.social

1 week ago 2 1 1 0
Post image

In the opening Summit keynote, Target's CISO, Jodie Kautt will explore how adopting a “never waste a good crisis” mindset—using both internal incidents and industry headlines—can help sharpen focus and strengthen cyber programs.

Read more: summit2026.rhisac.or...

1 week ago 2 2 1 0
POLITICO Pro: Iranian hackers are targeting US energy and water sectors, federal agencies warn Federal cyber and law enforcement agencies warned that Iranian-linked hackers are exploiting programmable logic controllers to target US energy, water and government services sectors.

With my colleague Dana Nickel: Iranian hackers are going after US energy and water facilities through exploiting a vulnerability in industrial control equipment, a coalition of federal agencies warned today: subscriber.politicopro.com/article/2026...

1 week ago 13 8 3 2
Advertisement
Post image

Anthropic's 'Project Glasswing' is an interesting tool for cyber security - but also another SUPERB marketing strategy from these AI firms... www.anthropic.com/glasswing

1 week ago 4 2 1 1
Gov. Walz issues emergency assistance to Winona County after cyber attack | news8000.com WINONA COUNTY, Minn. (WKBT) -- Governor Tim Walz issued an executive order on Tuesday providing emergency assistance to Winona County following a cyberattack that began on Monday, according to a release. Walz’s office said the attack has continued into Tuesday, disrupting critical systems and digital services, thus impairing the county’s ability to deliver vital emergency and municipal services. “Cyberattacks are an evolving threat that can strike anywhere, at any time,” stated Walz. “Swift coordination between state and local experts matters in these moments. That's why I am authorizing the National Guard to support Winona County as they work to protect critical systems and maintain essential services.” County officials are working in coordination with Minnesota Information Technology Services, the Minnesota Bureau of Criminal Apprehension, the League of Minnesota Cities, the Federal Bureau of Investigation, and external cybersecurity experts.

Gov. Walz issues emergency assistance to Winona County after cyber attack | news8000.com

1 week ago 1 2 1 0
Preview
Global Encryption Coalition Steering Committee Statement on Meta’s Removal of End-to-End Encryption from Instagram Direct Messages – Global Encryption Coalition April 8, 2026 The Center for Democracy & Technology, Global Partners Digital, the Internet Freedom Foundation, the Internet Society, and Mozilla, constituting the Steering Committee of the Global Encr...

My @gate15.bsky.social teammates & I are glad to be members of the @globalencryption.org and to support this message: 'Global Encryption Coalition Steering Committee Statement on Meta’s Removal of End-to-End #Encryption from Instagram Direct Messages' www.globalencryption.org/2026/04/glob...

1 week ago 2 1 0 0

This is resulting in real-world outages and financial impact, with demonstrated capability to manipulate SCADA/HMI data and cause operational disruption.

www.ic3.gov/CSA/2026/260...
#cybersecurity
@andyjabbour.bsky.social
@campuscodi.risky.biz

1 week ago 1 0 1 0
Post image

A joint FBI/CISA/NSA advisory warns that Iranian-affiliated APT actors are actively exploiting internet-facing PLCs across U.S. critical infrastructure, including energy, using remote access and common OT protocols to manipulate SCADA/HMI data and disrupt operations.

www.cisa.gov/news-events/...

1 week ago 8 5 1 1
Post image

Russian espionage group APT28 compromised MikroTik and TP-Link routers to redirect traffic for certain authentication operations to AitM phishing kits

This botnet was taken down today by the FBI, DOJ, Lumen, and Microsoft

www.lumen.com/blog-and-new...

1 week ago 77 33 4 1