The Gate 15 Podcast Channel podcast

Weekly Security Sprint EP 161. Job site risks, patching, and much more

0:00
19:12
Rewind 15 seconds
Fast Forward 15 seconds

On this week's Security Sprint, Dave and Andy covered the following topics:


Opening:

• A Review of the Fiscal Year 2027 Budget Request for DHS — House Homeland Security Committee

• DHS Secretary Markwayne Mullin pinpoints optimal CISA staffing levels — CyberScoop

• DHS chief signals efforts to reshape CISA — The Record

• CISA and Partners Release Fact Sheet on Securing Automatic Tank Gauge Systems

• Industry Collaboration and Resilience is a Team Sport — Cyber Threat Alliance — 02 Jun 2026. This article is authored by the Executive Director of IT-ISAC and emphasizes the importance of collaboration across industry, government, and nonprofit organizations to improve cyber resilience.


Main Topics:


Safeguarding OUR SECRETS — IC3 — 03 Jun 2026. Five Eyes agencies warned that Chinese military intelligence services are using Western online job platforms and professional networking sites to recruit people with access to classified, privileged, or sensitive information.

• Applicant Beware - Who Is Recruiting You? — NPSA — 03 Jun 2026


“Patch Now!” Most organizations that miss 24-hour patch window report breaches. Gate 15 note: We’ve been discussing this a lot in recent exercises and meetings. The time to safely address Known Exploited Vulnerabilities is limited and decreasing. Attackers’ speed is accelerating; exploited vulnerabilities are a major point of attack.

CISA KEV & Other Threat Updates: AI! Promoting Advanced Artificial Intelligence Innovation and Security — The White House — 02 Jun 2026

• Opinion from Jen Easterly: The Government Is Finally Taking A.I. Risk Seriously

• Mapping AI-enabled cyber threats: Insights from the LLM ATT&CK Navigator — Anthropic

• What we learned mapping a year’s worth of AI-enabled cyber threats — Anthropic


Quick Hits:

• Ransomware Group Claims Cyberattack on Buffalo Convention Center — Skift Meetings — 01 Jun 2026. Skift Meetings reports that the Akira ransomware group claimed it stole 46 gigabytes of data from the Buffalo Convention Center, including employee records, contracts, financial information, and personal data tied to approximately 180,000 individuals.

• Knicks Watch Party at Garden Is Canceled, as Game 3 Security Ramps Up — The New York Times

• FIFA World Cup 2026 Scams Are Already Here: Fake Tickets, Phishing Sites, and Crypto Cons Exposed

• Hackers are hoping to score at the World Cup

• At least 12 wounded near Ohio festival as police hunt multiple gunmen

• Hurricane Season!

• Software supply chain attacks: check your dependencies — NCSC

More episodes from "The Gate 15 Podcast Channel"