Reposted from CISA

Cybersecurity Awareness Month

The Cybersecurity and Infrastructure Security Agency (CISA) in partnership with the IT SCC (Sector Coordinating Council) invite you to participate in a webinar discussion series focused on SMBs (Small and Medium sized Businesses) for cybersecurity awareness month! For 2024 we are centering the conversation around Artificial Intelligence and its influence throughout the sectors. The discussions throughout this series will discuss different aspects of AI, understanding how it could affect your environment, what the research community is developing and seeing, and what to expect moving forward when discussing AI safety.

Registration

To learn more and register for each event, please follow the links below.

Week 1: State of Critical Infrastructure SMB Cyber Registration

Week 2: AI Foundations: Building a Strong Baseline for Critical Infrastructure SMBs Registration

Week 3: AI Unlocked: Must Know Principles and Game-Changing Guidelines Registration

Week 4: Resource Vault: Strengthen Your SMB’s Critical Infrastructure Registration

Who Should Attend?

Small and medium sized businesses working in and adjacent to critical infrastructure environments. While the focus of the content will be centered around small and medium businesses there are prominent discussions happening that will provide value to businesses of any size. Discussions around safety effect all sized businesses and citizens due to the interconnectivity of IT environments. This effort stems from the IT sector and will maintain that origin within the discussions but due to the vastness of the sector, we encourage all 16 critical infrastructure sectors to attend and receive the value from attending.

See Original Post

Reposted from ArtSentry

The Sentry Digest: September 2024

Is Your Collection a Target?  The Growing Threat of Vandalism by Activists   As activist-led vandalism rises, museums must strengthen security to protect their collections. Read on for tips from museum security experts on how to safeguard your artwork.   Continue Reading

How Technology is Transforming Museum Operations   Museums are harnessing technology to enhance security and enrich visitor experiences. Discover how these innovations are transforming museum spaces and operations.   Continue Reading

See Original Post 

Reposted from CISA

Save the date! Join us Friday, September 27, as we close out National Preparedness Month with an important CISA Live! on Preparing for and Mitigating Physical Threats. Hosted on LinkedIn, this event offers participants an opportunity to hear from CISA’s Office for Bombing Prevention Training Branch Chief and Portfolio Manager for Active Assailant Security on how to identify, prepare for, prevent, mitigate and recover from potentially life-threatening situations like bomb threats and active shooter incidents. We’ll also cover free tools and resources available from CISA and steps you can take today. Bring your questions, since event participants can also participate in a live question & answer session.

Join us on September 27 at 11:30AM EDT and feel free to share this invite and the event page with others who may be interested, too. Visit the CISA Live! webpage to see previous episodes and what’s coming up in the near future.

Reposted from Safehaven Security

Upcoming Trainings

Enhance Security Through Performance Documentation

Webinar | October 10 | 2:00pm CST

In today's dynamic business landscape, ensuring the security of an organization goes beyond just safeguarding physical assets and digital infrastructure. One often overlooked, yet critical, aspect of organizational security is the proper documentation of employee performance. In this webinar, we delve into three areas that have a direct correlation to enhancing the overall security and safety of an organization.

Violence Prevention Conference of Mid-America

In Person Conference | Oct 15th  | Rogers, AR

A full day of training from security experts and mental health professionals. Conference is pre-approved for 6.25 credits through SHRM, HRCI and CLEST.

Active Shooter Training

Managing High Risk Terminations

Understanding Workplace Violence

Mental Health Contributors to Violence

De-Escalation Strategies & Skills

See Original Post

Reposted from The Northern Echo

A number of important and valuable exhibitions have been stolen in a museum heist in South Shields.  Sometime between 10am on Monday, August 26, and 12pm on Tuesday, August 27, unknown offenders had forced entry into a Perspex display cabinet at South Shields Museum and Art Gallery and taken four gold items. Police were called to the scene shortly after Tuesday, August 27, police received a report of theft at the premises. 

The items taken include:

• A 9-carat gold single watch chain with a 1902 Edward VII two pound double sovereign attached. Each chain link has .375 marked individually.
• A gold-coloured medal associated with the late former Manchester United goalkeeper Ray Wood, displaying an image of a player kicking a ball. The back of the medal has Greek lettering engraved on it, as well as the words ‘Made in Italy’ and the date ’15.07.70’.
• A gilt metal ‘Coronation Hospital Fund’ medal, believed to be associated with the Ingham Infirmary, South Shields. The front of the medal has a profile bust of Edward VIII, facing right, with the text ‘EDWARD VIII CROWNED MAY XII MCMXXXVII’. The suspension bar has the wording ‘CORONATION HOSPITAL FUND’ and a piece of red, white, and blue ribbon is attached at the back.

• A cap badge from the British Electric Traction Company, Jarrow Tramways. It is a gilded colour with the appearance of a horseshoe and a wheel combined in the centre of the badge.

An investigation has been launched in a bid to recover the items and identify those involved – with police appealing to the public for anyone with information to come forward. Officers are especially keen to anyone who visited the museum on Monday, August 26, or Tuesday, August 27, and might have noticed any suspicious activity. Geoff Woodward, Museum Manager, said: “These artefacts have great significance for the local history of South Tyneside. They are irreplaceable because of their provenance and local significance. “The theft of these items will deny the public visiting the museum a chance to enjoy them both now and, in the future. We would urge anyone with information to get in touch with police.” Anyone with information, including if they have knowledge of the items appearing in pawn shops and online, should contact Northumbria Police by sending a direct message on social media, or using live chat and report forms on the Force’s website.

See Original Post

Reposted from CISA/DHS

Join CISA and the National Cybersecurity Alliance (NCA) on October 2nd at 2pm ET as we kick-off the 21st Cybersecurity Awareness Month. Featuring:

·         Nitin Natarajan, Deputy Director, Cybersecurity and Infrastructure Security Agency

·         Joanna Huisman, Senior Vice President Strategic Insights & Research, KnowBe4

·         Harshul Joshi, Principal, Consulting Solutions, PwC

·         Mike Petronaci, Chief Technology Officer of Proactive Security, CrowdStrike

·         Charley Snyder, Head of Security Policy, Google

·         Lisa Plaggemier, Executive Director, National Cybersecurity Alliance

·         And more!

To register for this virtual kick-off event, click here. Registration is free and open to anyone.

See Original Post

Reposted from EMR-ISAC

On Sept. 17, CISA and FBI released a Secure by Design Alert, Eliminating Cross-Site Scripting Vulnerabilities, as a part of their ongoing effort to reduce the prevalence of vulnerability classes at scale. Vulnerabilities like cross-site scripting (XSS) continue to appear in software, enabling threat actors to exploit them. However, cross-site scripting vulnerabilities are preventable and should not be present in software products.

CISA and FBI urge CEOs and other business leaders at technology manufacturers to direct their technical leaders/teams to review past instances of these defects and create a strategic plan to prevent them in the future.

See Original Post

Reposted from EMR-ISAC

On Sept. 12, as part of their public service announcement (PSA) series to put potential election day cyber related disruptions during the 2024 election cycle into context for the American people, the Federal Bureau of Investigation (FBI) and CISA jointly issued the Just So You Know: False Claims of Hacked Voter Information Likely Intended to Sow Distrust of U.S. Elections PSA to raise awareness of attempts to undermine public confidence in the security of U.S. election infrastructure through the spread of disinformation falsely claiming that cyberattacks compromised U.S. voter registration databases.

See Original Post

Reposted from EMR-ISAC

CISA has released an analysis and infographic detailing the findings from the 143 Risk and Vulnerability Assessments (RVAs) conducted across multiple critical infrastructure sectors in fiscal year 2023 (FY23).

The analysis details a sample attack path including tactics and steps a cyber threat actor could follow to compromise an organization with weaknesses representative of those CISA observed in FY23 RVAs. The infographic highlights the most successful techniques for each tactic that RVAs documented. Both the analysis and infographic map threat actor behavior to the MITRE ATT&CK® framework.

See Original Post

Reposted from EMR-ISAC

The National Operational Center of Excellence (NOCoE), supported by the Federal Highway Administration (FHWA), is hosting a webinar on Wednesday, September 25 at 1:30 p.m. EDT as part of its Talking TIM webinar series. This webinar will feature information on an innovative tool and system for safer, quicker incident clearance on roadways from practitioners within the fire and transportation disciplines:

• Effective Tool for Removing Crash and Disabled Vehicles from the Roadway — Assistant Chief Thayer Smith, Austin Fire Department.
• Missouri’s Rural Automated Queue Warning System — Mark Sommerhauser, Intelligent Transportation Systems Project Manager, Missouri Department of Transportation.

All webinars in the Talking TIM series pertain to traffic incident management (TIM), with a focus on successful programs, best practices, and technology that advances the profession of TIM. Topics covered in this webinar series are often relevant to anyone with a role in emergency dispatch, emergency medical response to traffic incidents, emergency traffic management, or anyone with an interest in ensuring first responder safety on roadways. Webinars are typically held on the fourth Wednesday of each month. Those interested in attending the September 25 webinar can register by going to NOCoE’s Zoom registration page for the Talking TIM series and selecting the September 25 date in the registration form. You can also view recordings of past webinars in the series and sign up for updates, so you can be alerted via email when upcoming webinars are announced.

See Original Post