Gate 15
LightNews LightNews
banner
gate15.bsky.social
Gate 15
@gate15.bsky.social
310 followers 950 following 290 posts
Risk Management: Threat Intel & Analysis, Operations, Preparedness & Critical Infrastructure Security/Cybersecurity & Resilience
Posts Replies Media Videos
gate15.bsky.social
Today in the SUN we feature an article from Wiz on Shai-Hulud 2.0, an ongoing supply chain attack.

Read more below:
www.wiz.io/blog/shai-hu...

#cybersecurity
@andyjabbour.bsky.social
Shai-Hulud 2.0: Ongoing Supply Chain Attack | Wiz Blog
Detect and mitigate malicious npm packages linked to the recent Shai-Hulud-style campaign. Over 25,000 affected repositories across ~350 unique users.
www.wiz.io
November 24, 2025 at 4:11 PM
Reposted by Gate 15
campuscodi.risky.biz
Maxwell Schultz, a former IT contractor for an American waste disposal company, pleaded guilty to hacking his former employer after he was fired to reset passwords and delete logs

www.justice.gov/usao-sdtx/pr...
Former contractor admits to hacking employer in retaliation for termination
A 35-year-old Ohio man has pleaded guilty to computer fraud for hacking his former employer’s network after he was fired
www.justice.gov
November 23, 2025 at 11:59 AM
Reposted by Gate 15
noupside.bsky.social
Grok summing it up lol

“UltraMagaBasedPepe1776 may not really be American, be warned”
X Reveals Account Locations, Exposes Foreign-Based Profiles Last updated 1 hour ago X launched a feature on Saturday displaying approximate countries or regions for accounts, using data like IP addresses and signup locations to promote transparency. It uncovered many pro-Trump profiles and others pushing political or crypto narratives from abroad, alongside some left-leaning ones from Canada and the UK. X paused it briefly due to privacy concerns and inaccuracies, then reinstated it while exempting government accounts. The tool adds a layer of scrutiny amid worries about online impersonation, though VPNs can still mask locations. This story is a summary of posts on X and may evolve over time. Grok can make mistakes, verify its outputs.
November 23, 2025 at 5:34 AM
Reposted by Gate 15
andyjabbour.bsky.social
You're right to be worried. CISA plays an important role in our fights in cybersecurity, critical infrastructure, extremism, misinformation and elections. 'Big changes to the agency charged with securing elections lead to midterm worries' @apnews.com apnews.com/article/elec... @gate15.bsky.social
Big changes to the agency charged with securing elections lead to midterm worries
The federal agency that oversees the security of election systems was largely absent from planning before elections this month in several states.
apnews.com
November 24, 2025 at 1:15 PM
gate15.bsky.social
Today in the SUN we cover an article from the @sansinstitute.bsky.social on the SANS 2025 state of ICS security report.

Read more below:
www.sans.org/blog/sans-20...

#cybersecurity
@andyjabbour.bsky.social
The SANS 2025 State of ICS Security Report: Progress, Pressure, and the Path to Resilience
An inside look at the operational realities shaping industrial cybersecurity in 2025.
www.sans.org
November 21, 2025 at 4:37 PM
Reposted by Gate 15
andyjabbour.bsky.social
This is an important and awesome event: GridEx VIII – Surge in Participation Reflects Importance of Exercising Emergency Preparedness www.nerc.com/newsroom/gri... cc @gate15.bsky.social
GridEx VIII – Surge in Participation Reflects Importance of Exercising Emergency Preparedness
www.nerc.com
November 21, 2025 at 2:01 PM
Reposted by Gate 15
andyjabbour.bsky.social
This is pretty awesome. New from @violetblue.bsky.social in @wired.com, 'This Hacker Conference Installed a Literal Anti-Virus Monitoring System.' Clever Kiwis. www.wired.com/story/this-h... cc @gate15.bsky.social #cybersecurity #health #tech
This Hacker Conference Installed a Literal Anti-Virus Monitoring System
At New Zealand's Kawaiican cybersecurity convention, organizers hacked together a way for attendees to track CO2 levels throughout the venue—even before they arrived.
www.wired.com
November 21, 2025 at 2:04 PM
gate15.bsky.social
Today in the SUN we cover an article from Coveware on a case study in ransomware data loss.

Read more below:
www.coveware.com/blog/2025/11...

#cybersecurity
@andyjabbour.bsky.social
Obscura Ransomware: Why Some Data Can’t Be Recovered
Discover how Obscura ransomware corrupts encrypted files beyond recovery, and why technical validation is key to smart ransom response decisions
www.coveware.com
November 20, 2025 at 4:06 PM
Reposted by Gate 15
andyjabbour.bsky.social
Coveware: The case to not pay Obscura... 'which means the key needed for decryption is lost. These files are permanently unrecoverable.' www.coveware.com/blog/2025/11... #cybersecurity #ransomware @ecrime.ch @campuscodi.risky.biz @gate15.bsky.social @ransomwaresommelier.com @silascutler.bsky.social
Obscura Ransomware: Why Some Data Can’t Be Recovered
Discover how Obscura ransomware corrupts encrypted files beyond recovery, and why technical validation is key to smart ransom response decisions
www.coveware.com
November 20, 2025 at 12:49 PM
gate15.bsky.social
Our latest edition of the Security Sprint is out now! In this episode, Dave and Andy discuss cyber risks and reports and wish CISA a happy birthday! Our podcast is available right now, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/weekly-secur...
Weekly Security Sprint EP 135. Happy Bday CISA! Cyber risks and reports and self reflection from an attack victim | Gate 15
gate15.global
November 19, 2025 at 5:05 PM
gate15.bsky.social
Today in the SUN we feature an article from @cloudflare.social on their recent outage. They state that the issue was not caused, directly or indirectly, by a cyber attack or malicious activity of any kind.

Read more below:
blog.cloudflare.com/18-november-...

#cybersecurity
@andyjabbour.bsky.social
Cloudflare outage on November 18, 2025
Cloudflare suffered a service outage on November 18, 2025. The outage was triggered by a bug in generation logic for a Bot Management feature file causing many Cloudflare services to be affected.
blog.cloudflare.com
November 19, 2025 at 5:03 PM
Reposted by Gate 15
andyjabbour.bsky.social
Cloudflare: 'The issue was not caused, directly or indirectly, by a cyber attack or malicious activity of any kind. Instead, it was triggered by a change to one of our database systems' permissions...' cc @gate15.bsky.social @campuscodi.risky.biz @ajvicens.bsky.social @cyberscoop.bsky.social
November 19, 2025 at 11:47 AM
Reposted by Gate 15
ecrime.ch
Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses | Trend Micro (US)

Ransomware has long been a persistent threat, traditionally targeting on-premises environments through tactics

Read more: https://www.trendmicro.com/en_us/research/25/k/s3-ransomware.html
November 19, 2025 at 6:54 AM
Reposted by Gate 15
andyjabbour.bsky.social
WaterISAC’s Quarterly Water Sector Incident Summary, April to June 2025 – Executive Summary www.waterisac.org/tlpclear-wat... #water #cybersecurity #security @gate15.bsky.social @craignewmark.bsky.social @ransomwaresommelier.com @campuscodi.risky.biz @timstarks.bsky.social @maggiemiller.bsky.social
November 19, 2025 at 2:24 PM
Reposted by Gate 15
andyjabbour.bsky.social
New from @graphika.com: Cheap Tricks; How AI Slop Is Powering Influence Campaigns www.graphika.com/reports/chea... PDF: public-assets.graphika.com/reports/Grap... cc @gate15.bsky.social @americansunlight.org @noupside.bsky.social
Cheap Tricks
AI tools have accelerated the speed and scale of influence operations, but their content remains low-quality and has limited organic impact.
www.graphika.com
November 19, 2025 at 2:39 PM
Reposted by Gate 15
campuscodi.risky.biz
Cybersecurity agencies from the Five Eyes have released joint guidance on how to deal with bulletproof hosting providers

www.cisa.gov/resources-to...
November 19, 2025 at 3:27 PM
Reposted by Gate 15
andyjabbour.bsky.social
Faith, terrorism, and bullshit. Welcome to the Golden Age. New story by @jsweetli.bsky.social in @rollingstone.com, 'appears to be the fabrication of a serial forger, fabulist, and federal fugitive allegedly holed up in a Mexico hotel' www.rollingstone.com/politics/pol... cc @gate15.bsky.social
The Right Spread a Wild Story About a Foiled Plot to Bomb a Synagogue. Was It Fake News?
Project Veritas published a flimsy scoop about how they helped the FBI foil a plot to bomb a synagogue by gang-connected sex traffickers from Brazil.
www.rollingstone.com
November 19, 2025 at 3:51 PM
gate15.bsky.social
Today in the SUN we feature an article from @theregister.com on overconfidence being the new zero-day as teams stumble through cyber simulations.

Read more below:
www.theregister.com/2025/11/17/i...

#cybersecurity
@andyjabbour.bsky.social
Overconfidence blamed as teams stumble through cyber sims.
: Readiness metrics have flatlined since 2023, with most sectors slipping backward as teams fumble crisis drills
www.theregister.com
November 18, 2025 at 4:43 PM
Reposted by Gate 15
theregister.com
Selling your identity to North Korean IT scammers isn't a sustainable side hustle
Selling your identity to North Korean IT scammers isn't a sustainable side hustle
Four US citizens tried it, and the DoJ just secured guilty pleas from all of 'em It sounds like easy money. North Koreans pay you to use your identity so they can get jobs working for American companies in IT. However, if you go this route, the US Department of Justice promises to catch up with you eventually.…
dlvr.it
November 17, 2025 at 5:27 PM
Reposted by Gate 15
pausetake9.bsky.social
Want to learn how to avoid scams while holiday shopping? 🎁

Girls Who Hack (@girlswhohack.bsky.social) founder Bianca Lewis (@biascilab.bsky.social) and DoSomething are hosting How to Catch a Scammer, a free online event on Friday, 11/21 at 7:00 PM ET.

👉 Register HERE: https://bit.ly/49TsBBE
November 17, 2025 at 5:15 PM
Reposted by Gate 15
zackwhittaker.com
New, by me: Protei, a Russian-founded telecoms provider and a supplier of surveillance and web monitoring technologies, was breached, its website defaced, and its servers raided.

"Another DPI/SORM provider bites the dust," read the company's defaced website.
Surveillance tech provider Protei was hacked, its data stolen and its website defaced | TechCrunch
The defacement of Protei's website said "another DPI/SORM provider bites the dust," apparently referring to the company selling its web intercept and surveillance products to phone and internet provid...
techcrunch.com
November 17, 2025 at 1:57 PM
Reposted by Gate 15
ecrime.ch
Incident de cybersécurité chez Eurofiber France

Eurofiber France annonce qu’un incident de cybersécurité a été détecté le 13 novembre 2025. Il conc

Read more: https://www.eurofiber.com/fr-fr/actualites/incident-de-cybersecurite-chez-eurofiber-france
November 17, 2025 at 1:36 PM
Reposted by Gate 15
ecrime.ch
Last week we have observed 214 events across 50 countries and attributed them to 35 ransomwares.
The top targeted country was #UnitedStates and the most targeted sector was #GovernmentAdministration.
The ransomware #Kazu has been busy with 35 new events (16%)!

Learn more: https://ecrime.ch/
November 17, 2025 at 12:52 PM
Reposted by Gate 15
andyjabbour.bsky.social
ICYMI last week, @derekbjohnson.bsky.social discusses Anthropic's 'China AI' attack in @cyberscoop.bsky.social: 'China’s ‘autonomous’ AI-powered hacking campaign still required _a ton_ of human work' cyberscoop.com/anthropic-ai... @gate15.bsky.social
China’s ‘autonomous’ AI-powered hacking campaign still required a ton of human work
Anthropic and AI security experts told CyberScoop that behind the hype, effective AI-driven cyberattacks still require skilled humans, with the attack possibly done to send a message as what’s possibl...
cyberscoop.com
November 17, 2025 at 8:07 PM
Reposted by Gate 15
rhisac.org
Holiday threats are accelerating. 🛡️

RH-ISAC’s new report shows ATOs rising with automation, fraud tactics expanding, third-party risks increasing, and bots hitting inventory fast.

Read the Holiday Threat Trends Report:
rhisac.org/wp-content/u...
November 18, 2025 at 10:05 AM