Patrick Coyle @Pjcoyle@qoto.org
Joined Oct 2022
Short Takes – 4-18-25 – ISS safety issues – New space based radar – Trump’s war on data – Travel guidance – Measles doctor has measles – HALO arrives in AZ – Another solar cycle – https://tinyurl.com/ybzkd82x
Transportation Chemical Incidents – Week of 3-15-25 – 413 incidents (394 highway, 17 air, 2 rail) – 2 serious incidents (1 Bulk release, 1 evacuation, 1 injury, 2 fire/explosion, 28 no release) – https://tinyurl.com/2c48f8t4 #ChemicalIncident #PHMSA
CSB Updates Recommendation Response Spreadsheet – 4-15-25 – Most recent version of the CSB incident investigation recommendation tracking spreadsheet – https://tinyurl.com/4um3smfx #CSB
Patrick Coyle
boosted
In honor of a particular know-nothing claiming that autistic people will never write a poem, I share this humble offering:
That brainworm in Kennedy's head?
By the time it was found, it was dead.
And with its last breath
Said, "I'm starving to death,
Should've found a ripe autist instead."
OMB Approves OPM Civil Service Accountability NPRM – proposed rule to implement requirements of §4 of EO 14171 – https://tinyurl.com/pxb7kthm #Regulation #OPM
CFSN Detailed Analysis - Substack Daily Update – 4-17-25 – Free Content – https://tinyurl.com/47yzxzn4
Short Takes – 4-17-25 – Tax increase for the rich – CDC support for measles outbreak – Red meat allergy – Presidential power – https://tinyurl.com/bdzne9xf
Review – 4 Advisories and 2 Updates Published – 4-17-25 – NCCIC-ICS control system security advisories for products from Yokogawa and Schneider (3) – Updates for advisories for products from Schneider – Short version – https://tinyurl.com/2m6skhp8 #icsSecurity
4 Advisories and 2 Updates Published – 4-17-25 – NCCIC-ICS control system security advisories for products from Yokogawa and Schneider (3) – Updates for advisories for products from Schneider – https://tinyurl.com/mr4awktc Subscription required - #icsSecurity
Review – S 754 Introduced – Food & Ag Cybersecurity – Would require USDA to periodically assess cybersecurity threats to, and vulnerabilities in, the ag and food sector – Authorizes $1 million in new spending – Short version – https://tinyurl.com/4fk23j5h #Legislation #Cybersecurity
So explain how you get to $1.3 trillion dollars in savings without reducing spending on medicade, school lunches, and other social welfare programs. If you start by taxing the billionairs, I am prepared to listen.
CFSN Detailed Analysis - Substack Daily Update – 4-16-25 – Free Content – https://tinyurl.com/4ne8922z
CISA Adds SonicWall Vulnerability to KEV Catalog – 4-16-25 – Vulnerability initially reported on 2021 (and fixed) now being exploited in the wild – https://tinyurl.com/5n6p3fw7 #KEV #SonicWind
Siemens Publishes 4 Out-of-Zone Advisories – 4-16-25 – 2 new advisories and 2 updates – Includes DTRH look at Mitre funding issues as reflected in the two new advisories – https://tinyurl.com/44vnmhej Subscription required #icsSecurity #Siemens
Patrick Coyle
boosted
Hello everyone! I’m proud and honored to introduce my very first academic white paper through SANS, which discusses the nuances and needs for planning for #ransomware in OT / industrial networks. https://www.sans.org/mlp/ics-ot-malware-and-ransomware/?utm_medium=Email&utm_source=HL-Global&utm_content=1468901_Simple_Framework_Whp_image&utm_campaign=ICS_OT_Malware_Ransomware_2025&utm_rdetail=Global&utm_goal=Leads&utm_type=Global_Campaign&is=be394332d8ab70db9bb29b280bd08c2899042252f80b48f1e01cd5b75d22b1c1
Patrick Coyle
boosted
Finally put together a proper story on this funding debacle for MITRE's CVE program.
"A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking down. The federally funded, non-profit research and development organization MITRE warned today that its contract to maintain the Common Vulnerabilities and Exposures (CVE) program -- which is traditionally funded each year by the Department of Homeland Security -- expires on April 16."
https://krebsonsecurity.com/2025/04/funding-expires-for-key-cyber-vulnerability-database/
PHMSA Sends LNG Safety ANPRM to OMB – https://tinyurl.com/242ujxbk #Regulation #PHMSA #LNG
CFSN Detailed Analysis - Substack Daily Update – 4-15-25 – Free Content – https://tinyurl.com/365cr2cy
Short Takes – 4-15-25 – Tomato tariffs – Pharma tariffs – Shower head definition – CyberAv3ngers – CVE contract lapse – Snake bite medicine – EO 14259 through EO 4270 – https://tinyurl.com/3brpdmw8
Review – 9 Advisories Published – 4-15-25 – NCCIC-ICS control system security advisories for products from Mitsubishi, ABB, Delta, National Instruments, Lantronix, Growatt, and Siemens (3) – Short version –https://tinyurl.com/2mdum727 #icsSecurity
Joined Oct 2022
