GSA’s Post

In its latest Annual Review, published today, the National Cyber Security Centre (NCSC) – which is a part of GCHQ – warned that the UK needs to accelerate work to keep pace with the changing threat, particularly in relation to enhancing cyber resilience in the nation’s most critical sectors. These sectors include those that provide the country with safe drinking water, electricity, communications, its transport and financial networks, and internet connectivity. Over the past 12 months, the NCSC has observed the emergence of a new class of cyber adversary in the form of state-aligned actors, who are often sympathetic to Russia’s further invasion of Ukraine and are ideologically, rather than financially, motivated.  https://lnkd.in/dqFSDfmz

Catherine Piana highlights the rising danger posed by cyber-physical attacks on vital infrastructure. The problem is becoming bigger, as critical infrastructure is interconnected and interdependent and therefore, if one is attacked and put out, the cascading effects on other infrastructure may have serious consequences. The collaborations necessary to meet mounting threats are between government agencies and private businesses, public and private security, and among different departments at operators of critical infrastructure. An effective collective defence approach requires recognition that security is truly a shared responsibility between many stakeholders; Piana reviews the Cyber-Physical Security and Critical Infrastructure report.  Read CRJ 19:1 here: https://rb.gy/ncrhi4  New subscribers can sign up here: https://rb.gy/tymt32 #CRJ #crj19:1 #Report #CyberPhysicalSecurity #CriticalInfrastructure #Threats #Stakeholders #Defence #Security #SharedResponsibility #CatherinePiana

ICYMI. Joint guidance has been published by the NSA/FBI and co-authored by CISA. I encourage any defender to review the guidance on identifying Living Off the Land Techniques. Identifying and Mitigating Living Off the Land Techniques: https://lnkd.in/gh6_BVpn These types of techniques are employed by Volt Typhoon where they have maintained persistent access to some critical infrastructure environments for as long as four years. PRC State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure: https://lnkd.in/gQNcbzKB

With global tensions running high given multiple extraneous military conflicts ongoing overseas, the United States Department of Homeland Security claims that all the warning signs for a potential “cyber 9/11” attack are here... https://lnkd.in/eZiASGEe #DHS #EPA #governance #risk #compliance #cybersecurity #hackers #homelandsecurity #cyberattacks

Suppose you didn't believe the threat against US and Global critical infrastructure was severe. In that case, this warning from the Cybersecurity and Infrastructure Security Agency and the Federal Bureau of Investigation (FBI) with Jen Easterly, Chris Wray, and National Security Agency Director General Paul Nakasone speaking at a House Select Committee hearing on Volt Typhoon should get your attention. "The group and other China state-linked actors are operating a broad campaign to sow panic and disruption in preparation for a possible military attack in the Asia-Pacific region." "The agencies issued a detailed warning with key international partners, warning the threat group has already embedded itself inside the systems of numerous transportation, energy, communications and water and wastewater providers, using so-called living off the land techniques that are designed to hide malicious activity. " "The threat activity is aimed at critical infrastructure organizations in the U.S. and territories including Guam, with potential spillover effects into Canada. Cyber officials in Australia and New Zealand are preparing for similar threat activity against their critical sectors." #criticalinfrastructureprotection #cyberthreats #threatintelligence #threatactors #usinfrastructure #cyberawareness #nationalsecurity #economicsecurity #thecyberwarishere

The threats facing the defense sector globally have changed dramatically in the past decade, but my biggest concern has always been how attackers could exploit interconnected assets within our network. I shared my thoughts on why #ZeroTrust is now non-negotiable and what the UK can learn from President Biden’s Zero Trust Memorandum here: https://lnkd.in/eaDMxDEE

As we celebrate the 4th of July, Independence Day, with our family, friends, and colleagues across the United States, we reflect on the values of freedom, security, and the relentless pursuit of a better future—principles that deeply resonate with our mission at Armatec Global. Independence Day marks a historic moment when a nation declared its autonomy and commitment to liberty. In a similar vein, at Armatec Global, we are dedicated to protecting these freedoms by providing innovative threat intelligence solutions that ensure the safety and security of our communities. Our work in merging cyber and physical threat intelligence is crucial in safeguarding the freedoms we hold dear. By leveraging advanced technology, we empower both private and public sectors, including defense and critical infrastructure, to defend against threats and create a secure environment where freedom can thrive. Today, as we honor this day of independence, let’s also celebrate our collective efforts to build a safer, more secure world. We take pride in our achievements and remain committed to innovation and excellence. Wishing everyone a happy and reflective Independence Day. #IndependenceDay #4thOfJuly #Freedom #Security #Innovation #ArmatecGlobal

In April, the Conflict, Stability and Security Fund (CSSF) transitioned into the UK Integrated Security Fund (UKISF). This shift aims to combine the CSSF’s priorities with new areas like cyber and maritime security. However, there is a concern that this narrower focus on national security framing might sideline efforts to address global conflicts. In an article for Labour Foreign Policy Group, Calum Craig and Lewis Brooks call for the UK to review and enhance its peace and conflict approaches. https://lnkd.in/e5exHnnc

Have you ever read the National Security Strategy (NSS) and felt confused about its goals? Phrases like "defend the homeland" or "prosperity" seem vague and disconnected from reality. This week, Strategy Central explores the importance of national security interests and the necessity of supporting objectives in the NSS. https://lnkd.in/e2HjYCek

From the Director-General of Security's Annual Threat Assessment 2024: 'While the terrorism threat level is POSSIBLE, if we had a threat level for espionage and foreign interference it would be at CERTAIN – the highest level on the scale. 'Several years ago, the A-team successfully cultivated and recruited a former Australian politician. This politician sold out their country, party and former colleagues to advance the interests of the foreign regime... Fortunately that plot did not go ahead but other schemes did. 'While some were unwitting, others knew they were working for a foreign intelligence service... Several individuals should be grateful the espionage and foreign interference laws are not retrospective. 'The most immediate, low cost and potentially high-impact vector for sabotage is cyber. Our critical infrastructure networks are interconnected and interdependent, which increases the vulnerabilities and potential access points. 'ASIO is aware of one nation state conducting multiple attempts to scan critical infrastructure in Australia and other countries, targeting water, transport and energy networks. [Gotta be Volt Typhoon-->China] 'We assess this government is not actively planning sabotage, but is trying to gain persistent undetected access that could allow it to conduct sabotage in the future. [Little wonder we signed the joint advisory on Volt Typhoon.] 'That’s one phone network [Optus] not working for one day. Imagine the implications if a nation state took down all the networks? Or turned off the power during a heatwave? I assure you, these are not hypotheticals – foreign governments have crack cyber teams investigating these possibilities right now, although they are only likely to materialise during a conflict or near conflict. 'Ideally, good security starts before production does, which is why I quickly embedded ASIO officers in the nuclear submarine taskforce. 'Your security culture is "how you do security" – the security-related values, mindsets and behaviours that are normalised within a workplace. 'Your defences will only be fully effective if they are three dimensional – people need to know about them, people need to use them and people need to update them'. https://lnkd.in/ggZ2N-KN