Patrick Coyle @Pjcoyle@qoto.org
Joined Oct 2022
CFSN Detailed Analysis - Substack Daily Update – 2-9-24 – Free Content – http://tinyurl.com/ye2vffpy
CISA adds FortiGuard vulnerability to their Known Exploited Vulnerability (KEV) catalog: CVE-2024-21762 - http://tinyurl.com/mr2mfhse
Review - HR 7062 Introduced – Food & Ag Cybersecurity – Would require USDA to assess ag sector cybersecurity – Additionally requires annual food sector security exercises – Short version – http://tinyurl.com/59xjw5p2 #Legislation
HR 7062 Introduced – Food & Ag Cybersecurity – Would require USDA to assess ag sector cybersecurity – Additionally requires annual food sector security exercises - http://tinyurl.com/yyj7re9j Subscription required #Legislation
Bills Introduced – 2-8-24 – 35 bills – S 3773, HHS IG cybersecurity – S 3792, NIST cybersecurity – http://tinyurl.com/3fa9u2pj #Legislation #Cybersecurity
CFSN Detailed Analysis - Substack Daily Update – 2-8-24 – Free Content – http://tinyurl.com/msvj3zwj
Patrick Coyle
boosted
Free Palestine from Hamas. Free Israel from Netanyahu.
Short Takes – 2-8-24 – Drone swarm attack – SpaceX moon launch – FRA emergency order – New nuclear plant approved – Ocean in Saturn moon – 3 million toothbrushes – Voyager memory failure – Plant oil content – Rubin Observatory – Test moon landing - http://tinyurl.com/5n755dss
Patrick Coyle
boosted
Just notified a company specializing in email security that their internal email -- and that of their customers -- was sitting out on the web.
Each inbox -- whether for company customers or employees of those companies -- was viewable just by visiting a link with a web browser and clicking links. Everything was exposed in basically one big file index.
This level of ineptitude is remarkable, and somehow they have a lot of customers (think state/local govs). To their credit, they took everything offline within a few minutes of my notifying them. But their entire business schtick is about how all your email is encrypted and protected and scanned and blah blah. Meanwhile, no it's not. At all.
1 Advisory and 1 Update Published – 2-8-24 – NCCIC-ICS control system security advisory for products from Qolsys (Johnson Controls) – Update for an advisory for products from ProPump and Controls - http://tinyurl.com/3rtuehux Subscription required #icsSecurity
Bills Introduced – 2-7-24 – 70 bills – S 3758, UAS security vulnerabilities – http://tinyurl.com/3bcc8fx6 #Legislation
CFSN Detailed Analysis - Substack Daily Update – 2-7-24 – Free Content – http://tinyurl.com/4m6cp7xe
Review - OSHA Publishes Emergency Response Standard NPRM – Part 2 – Scope – Looks at the expanded coverage for a completely revised §1910.156 – Short version – http://tinyurl.com/2bdnnjx8 #Regulation #OSHA
Review - CSB Updates Status of 7 Recommendations – 2-2-25 – 6 recommendations closed – 1 interim update pending final action – Short version – http://tinyurl.com/bdh7v78v #CSB
CSB Updates Status of 7 Recommendations – 2-2-25 – 6 recommendations closed – 1 interim update pending final action - http://tinyurl.com/3bf8n2vk #CSB
OMB Approves DOD Threat Information Sharing Final Rule – Will expand threat information sharing to DIB organizations that handle DOD CUI – http://tinyurl.com/4sa7spf9 #Regulations #DOD #CUI
CFSN Detailed Analysis - Substack Daily Update – 2-6-24 – Free Content – http://tinyurl.com/3y8htk25
Short Takes – 2-6-24 – HIMARS in Ukraine – AHRQ software development meeting – Chatbot charges – FAR cyber reporting – Space cybersecurity – Green steel – Swarm commanders - http://tinyurl.com/y3ydaxbd
Reader Comment –AI Environmental Problems – Looking at the environmental justifications for S 3732 and HR 7197 – http://tinyurl.com/4vskde8m #ReaderComment #Legislation
Review - 2 Advisories Published – 2-6-24 – NCCIC-ICS control system security advisories for products from HID – Short version – http://tinyurl.com/4n2v343k #icsSecurity
Joined Oct 2022
