Gate 15's Avatar

Gate 15

@gate15

Risk Management: Threat Intel & Analysis, Operations, Preparedness & Critical Infrastructure Security/Cybersecurity & Resilience

356
Followers 950
Following 402
Posts 25.11.2024
Joined
Posts Following

Latest posts by Gate 15 @gate15

The Gate 15 Special Edition: Iran, ISACs, & insomnia: What’s happening, and not happening, in information sharing | Gate 15

A Special episode of the Gate 15 Interview is out now! In this episode, Andy Jabbour speaks with experts from the Information Sharing and Analysis Center (ISAC) community! Our podcast is available right now, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/the-gate-15-...

06.03.2026 18:54 πŸ‘ 5 πŸ” 3 πŸ’¬ 1 πŸ“Œ 1
Preview
Top 10 artificial intelligence security actions: A primer - ITSAP.10.049 - Canadian Centre for Cyber Security Our top AI security actions are designed to help organizations of all sizes and sectors strengthen their cyber resilience.

The Canadian Centre for Cybersecurity released some artificial intelligence security actions. In an era of rapid advancements in AI, organizations face new security risks.

Read more below:
www.cyber.gc.ca/en/guidance/...

#cybersecurity
@andyjabbour.bsky.social
@campuscodi.risky.biz

06.03.2026 16:28 πŸ‘ 2 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Preview
Pro-Iranian Ransomware Operators Tactical Shift from Sicarii to BQTLock

Today in the SUN we feature an article from Halcyon on Pro-Iranian ransomware operators tactical shift from Sicarii to BQTLock.

Read more below:
www.halcyon.ai/ransomware-a...

#cybersecurity
@andyjabbour.bsky.social

06.03.2026 16:25 πŸ‘ 1 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0
Preview
FBI investigates breach of surveillance and wiretap systems The U.S. Federal Bureau of Investigation (FBI) confirmed on Thursday that it's investigating a breach that affected systems used to manage surveillance and wiretap warrants.

The U.S. Federal Bureau of Investigation (FBI) confirmed on Thursday that it's investigating a breach that affected systems used to manage surveillance and wiretap warrants.

06.03.2026 03:45 πŸ‘ 11 πŸ” 6 πŸ’¬ 2 πŸ“Œ 0

Pro-Iranian Ransomware Operators Tactical Shift from Sicarii to BQTLock

The Halcyon Ransomware Research Center observed a call to action for pro-Palestinian and

Read more: https://www.halcyon.ai/ransomware-alerts/pro-iranian-ransomware-operators-tactical-shift-from-sicarii-to-bqtlock

06.03.2026 08:18 πŸ‘ 1 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Post image

New from the Gov. of Australia πŸ‡¦πŸ‡Ί INC Ransom Affiliate Model Enabling Targeting of Critical Networks www.cyber.gov.au/about-us/vie... #ransomware #cybersecurity cc @gate15.bsky.social @ecrime.ch @campuscodi.risky.biz @ransomwaresommelier.com

06.03.2026 13:12 πŸ‘ 3 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Preview
FBI investigating 'suspicious' cyber activity on system holding sensitive surveillance information The FBI is investigating β€œsuspicious activities” on an internal system that the bureau says contains sensitive information related to surveillance operations and investigations.

AP reports that the apparent hack of the FBI's unclassified phone-surveillance database involved "sophisticated" techniques like piggybacking on a commercial ISP's infrastructure to access to the FBI network: apnews.com/article/fbi-...

06.03.2026 15:33 πŸ‘ 25 πŸ” 15 πŸ’¬ 3 πŸ“Œ 1
Preview
Seedworm: Iranian APT on Networks of U.S. Bank, Airport, Software Company This activity began in early February and has continued in recent days. What organizations should expect next from Iran-aligned groups and the steps they should take to guard against cyberattacks.

Security.com released an article on the Iranian APT group Seedworm, which has been active on the networks of multiple U.S. companies since the beginning of February 2026, with activity continuing recently.

Read more below:
www.security.com/threat-intel...

#cybersecurity
@andyjabbour.bsky.social

05.03.2026 16:19 πŸ‘ 3 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

The Australian Signals Directorate released guidance on unique supply chain risks to adopting AI and ML systems, which can threaten organizations if not securely managed.

Read more below:
www.cyber.gov.au/business-gov...

#cybersecurity
@andyjabbour.bsky.social
@campuscodi.risky.biz

05.03.2026 16:16 πŸ‘ 1 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0
NCC Group Annual Cyber Threat Intelligence 2025 A year on from the wave of retail sector cyber attacks, new data reveals 2025 was a record year for global ransomware

Today in the SUN we feature the NCC Group annual cyber threat intelligence 2025. New data from NCC Group shows that 2025 was a record-breaking year for ransomware activity globally.

Read more below:
www.nccgroup.com/newsroom/ncc...

#cybersecurity
@andyjabbour.bsky.social

05.03.2026 16:14 πŸ‘ 1 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0

Russian Ransomware Administrator Pleads Guilty to Wire Fraud Conspiracy

Greenbelt, Maryland – A Russian national pled guilty in federal court today to a charge conn

Read more: https://www.justice.gov/usao-md/pr/russian-ransomware-administrator-pleads-guilty-wire-fraud-conspiracy

05.03.2026 08:18 πŸ‘ 1 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
| InsideCyberSecurity.com

Today in the SUN we feature an article from Inside Cybersecurity on U.S. threat intelligence units identifying hacktivists as a prime cyber vector in the Iran conflict.

Read more below:
insidecybersecurity.com/share/17808

#cybersecurity
@andyjabbour.bsky.social

04.03.2026 16:59 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Weekly Security Sprint EP 148. Iran, and new Cyber Reports | Gate 15

Our latest edition of the Security Sprint is out now! In this episode, Dave and Andy discuss Iran, new Cyber Reports, and more! Our podcast is available right now, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/weekly-secur...

04.03.2026 16:56 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 1
Insider Threat: AI-equipped Employees | Gate 15

Check out our latest blog post, "Insider Threat: AI-equipped Employees!"

Read more below:
gate15.global/insider-thre...

#cybersecurity
@andyjabbour.bsky.social

04.03.2026 16:54 πŸ‘ 4 πŸ” 1 πŸ’¬ 1 πŸ“Œ 1
Preview
Telegram Increasingly Used to Sell Access, Malware and Stolen Logs Follow us on all social media platforms @Hackread

Despite increased data sharing with police, #Telegram is increasingly used by hackers to sell corporate access, malware, stealer logs, and initial access to VPN accounts, shifting activity away from the dark web.

Read: hackread.com/telegram-use...

#CyberSecurity #CyberCrime #Malware #DataWeb #VPN

04.03.2026 10:37 πŸ‘ 3 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0

LexisNexis confirms data breach as hackers leak stolen files

American data analytics company LexisNexis Legal & Professional has confirmed to Bleep

Read more: https://www.bleepingcomputer.com/news/security/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files/

04.03.2026 06:27 πŸ‘ 3 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Preview
OAuth redirection abuse enables phishing and malware delivery | Microsoft Security Blog OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

Today in the SUN we feature an article from @microsoft.com on how OAuth redirection abuse enables phishing and malware delivery.

Read more below:
www.microsoft.com/en-us/securi...

#cybersecurity
@andyjabbour.bsky.social

03.03.2026 17:04 πŸ‘ 1 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0

Brit games studio Cloud Imperium admits to data breach β€’ The Register

On 21 January 2026, CIG was targeted by a systematic and sophisticated attack, resulting in unauthorised acc

Read more: https://www.theregister.com/2026/03/03/brit_games_studio_cloud_imperium/

03.03.2026 06:45 πŸ‘ 1 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Preview
AccuWeather's 2026 Severe Weather Forecast: What Business Leaders Need to Know About Severe Weather Risk AccuWeather's 2026 severe weather forecasts predicts an active tornado season, especially in May. Learn how AccuWeather For Business better protects your people, property, and operations with proven S...

Today in the SUN we feature an article from @accuweather.com on their 2026 Severe Weather Forecast.

Read more below:
www.accuweather.com/en/weather-n...

#cybersecurity
@andyjabbour.bsky.social

02.03.2026 15:56 πŸ‘ 1 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0
Preview
Every modern conflict nowadays has a cyber angle, and you can expect the recent conflict between Iran, the US, Israel, and the rest of the Gulf has one too. I have already been tracking some notable…... Every modern conflict nowadays has a cyber angle, and you can expect the recent conflict between Iran, the US, Israel, and the rest of the Gulf has one too. I have already been tracking some notable ...

'Every modern conflict nowadays has a cyber angle, and you can expect the recent conflict between Iran, the US, Israel, and the rest of the Gulf has one too.' - @bushidotoken.net via LinkedIn www.linkedin.com/posts/willia... #iran #cybersecurity @gate15.bsky.social

28.02.2026 12:52 πŸ‘ 2 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Post image

-LLMs can deanonymize internet users based on their past comments
-CISA has a new acting director
-DHS hackers leak ICE contract data
-Breach at the French Health Ministry
-Google takes down Genisys ad fraud botnet

Newsletter: news.risky.biz/risky-bullet...
Podcast: risky.biz/RBNEWS532/

02.03.2026 09:08 πŸ‘ 31 πŸ” 9 πŸ’¬ 1 πŸ“Œ 0
Preview
Gottumukkala out, Andersen in as acting CISA director Madhu Gottumukkala steps down as acting director of CISA, replaced by Nick Andersen. The move follows criticism of agency performance and leadership shifts at DHS.

Today in the SUN we feature an article from @cyberscoop.bsky.social on Nick Andersen replacing Madhu Gottumukkala as acting CISA director.

Read more below:
cyberscoop.com/cisa-leaders...

#cybersecurity
@andyjabbour.bsky.social

27.02.2026 16:14 πŸ‘ 2 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Ransomware Reinvented: AI-Powered and Autonomous Attacks | Gate 15

Check out our latest blog post, "Ransomware Reinvented: AI-Powered and Autonomous Attacks!"

Check it out below:
gate15.global/ransomware-r...

#cybersecurity
@andyjabbour.bsky.social
@ecrime.ch
@ransomwaresommelier.com
@campuscodi.risky.biz
@cocaman.ch

27.02.2026 16:07 πŸ‘ 1 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0

[Op Report] Velvet Tempest linked to ClickFix campaigns for Termite Ransomware, HoK Activity Observed

During a 12-day Deception.Pro operation, researchers observed a high-severity, multi-stage intrusion chain tha

Read more: https://blog.deception.pro/blog/clickfix-hok-velvet-tempest-termite

27.02.2026 08:18 πŸ‘ 1 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Preview
Quarterly Threat Report: Fourth Quarter, 2025 A majority of ransomware activity resulted from three leading groups. Beazley Security Labs also identified interesting trends with infostealers, including sophisticated techniques to deliver and obfu...

Beazley Security released their Quarterly Threat Report, highlighting that the window between exposure and impact is closing faster than most organizations can react.

Read more below:
beazley.security/insights/qua...

#cybersecurity
@andyjabbour.bsky.social

26.02.2026 16:35 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Preview
Crypto Ransomware: 2026 Crypto Crime Report In 2025, total on-chain ransomware payments fell by approximately 8% to $820 million in 2025, even as claimed attacks rose 50%.

Today in the SUN we feature a report from @chainalysis.bsky.social on how total ransomware payments stagnated for a second consecutive year, while the amount of attacks escalated.

Read more below:
www.chainalysis.com/blog/crypto-...

#cybersecurity
@andyjabbour.bsky.social

26.02.2026 16:34 πŸ‘ 1 πŸ” 1 πŸ’¬ 2 πŸ“Œ 0
Preview
Across party lines and industry, the verdict is the same: CISA is in trouble One year into the second Trump administration, CISA faces a 33% loss in personnel and shuttered divisions. Experts warn of "decimated" capabilities and a leadership vacuum as the agency struggles to m...

'precisely where you do need a strong...federal security function. We already have a national shortage of #cybersecurity experts...you can’t just replicate that expertise 50 times over'-Errol Weiss, Health-ISAC. Amen. From @timstarks.bsky.social cyberscoop.com/cisa-personn... @gate15.bsky.social

25.02.2026 20:44 πŸ‘ 4 πŸ” 3 πŸ’¬ 1 πŸ“Œ 0
Preview
Scattered Lapsus$ Hunters Recruiting Women for Operations SLH is recruiting females for targeted vishing attacks. Offering up to $1,000 per call, this tactical shift aims to bypass known tactics.

Scattered Lapsus$ Hunters (SLH) is recruiting women to conduct vishing attacks, likely to increase the success rate of help desk impersonation

www.dataminr.com/resources/in...

26.02.2026 02:43 πŸ‘ 11 πŸ” 6 πŸ’¬ 1 πŸ“Œ 1
Nerd Out EP 67. Mexico, Iran, Extremists and Knights | Gate 15

A new episode of Nerd Out is out now! In this episode, Dave and Alec discuss Mexico, Iran, Extremists, Knights and more! Our podcast is available right now, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/nerd-out-ep-...

25.02.2026 16:44 πŸ‘ 1 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Weekly Security Sprint EP 147. Managing Crisis, Physical Security Incidents, and Resilience | Gate 15

Our latest edition of the Security Sprint is out now! In this episode, Dave and Andy discuss Managing Crisis, Physical Security Incidents, Resilience, and more! Our podcast is available right now, go check it out!

#cybersecurity
@andyjabbour.bsky.social
gate15.global/weekly-secur...

25.02.2026 16:40 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 1