Show newer

House Accepts Senate Amendment to HR 7077 – USFA Fire Investigations – tinyurl.com/4atrwxdk

Two CSB Nominations Confirmed in Senate – Sandoval to be a Board Member for five years – Owens to be Chair for five years – tinyurl.com/2saeuv8b

Senate Begins Consideration of House Amendment to HR 7776 – FY 2023 NDAA – No votes yet scheduled – Manchin energy review amendment may get vote – tinyurl.com/2une6w7x

House to Take-up Amendment to HR 1437 – 1 Week Continuing Resolution – Mostly clean CR – Does add an extension of a sunset provision for DHS/OMB cybersecurity IDS reporting requirement -

Review – HR 9107 Introduced – DMV Information Sharing – Would require State DMVs to share vehicle registration data with federal government – Short version - tinyurl.com/4sn9b7ab

HR 9107 Introduced – DMV Information Sharing – Would require State DMVs to share vehicle registration data with federal government – tinyurl.com/2s5b6ehy

Short Takes – 12-13-22 – Medical cybersecurity – Short term CR – Welding research – 118th Cybersecurity - tinyurl.com/4bcy96b9

HR 8806 Cosponsor Added – Healthcare Cybersecurity – Too late in the session but it would provide the influence to see the bill considered in Committee – tinyurl.com/mrxek3sp

Review - 3 Advisories Published – 12-13-22 – NCCIC-ICS control system security advisories for products from Contec, Schneider Electric, and ICONICS/Mitsubishi – Down-the-rabbit-hole look at secure control systems – Short version – tinyurl.com/3pb48vbw

I want to give a shoutout to #Microsoft who took our report seriously and busted ass to get the work done that will prevent these kernel-mode drivers from continuing to load in Windows computers, after they install today's Patch Tuesday (2022-12) update. This is their advisory.

msrc.microsoft.com/update-guid

At the time we were working on this, @SophosXOps didn't know that both #Mandiant and #SentinelOne were also working on the same things, from different angles. We found out this morning that they also published blog posts about this discovery. We're all on the same team here, fighting cybercriminals, so I'm grateful that we all stumbled upon the same thing in roughly the same timeframe and that we all engaged in an ethical notification process, helping Microsoft protect everyone, everywhere, from these threats. Good job, all. These companies have an amazing reputation.

Here are their blogs as well.

mandiant.com/resources/blog/hu

sentinelone.com/labs/driving-t

Show thread

3 Advisories Published – 12-13-22 – NCCIC-ICS control system security advisories for products from Contec, Schneider Electric, and ICONICS/Mitsubishi – Down-the-rabbit-hole look at secure control systems - tinyurl.com/5n82myxz Subscription required

If you are new here in #cybersecurity, (welcome new influx!) some great hashtags to follow or take a peek at might be: #ThreatIntel #GetFediHired #CyberMentoringMonday #MastodonTips - just a few places to start! There are also almost daily fun photo and post themes, so watch the hashtags on your server and federated!

CFSN Detailed Analysis - Substack Daily Update – 12-12-22 – Free Content - tinyurl.com/mrj4esy

Short Takes – 12-12-22 – More on House Speaker in 118th – Artemis mission successful – Attacks on ‘power plants’ – Covid, flu, and RSV into the future – FY 2023 spending CR, two views – tinyurl.com/shzc9k7z

Committee Hearings – Week of 12-12-22 – 2 oversight hearings – On the floor: HR 7077 in House, HR 7776 in Senate – Spending bill action required by end of week - tinyurl.com/3cen98ss

CFSN Detailed Analysis - Substack Daily Update – 12-11-22 – Free Content - tinyurl.com/22drtk7x

Show older
Qoto Mastodon

QOTO: Question Others to Teach Ourselves
An inclusive, Academic Freedom, instance
All cultures welcome.
Hate speech and harassment strictly forbidden.