Mission Critical

The SEI is seeking participants for a project to investigate SBOM generation tools and processes as well as potential sources of divergent outcomes. Join us for the virtual kickoff of the SBOM Harmonization Plugfest 2024, sponsored by Cybersecurity and Infrastructure Security Agency, on November 19: https://lnkd.in/erFTSR7D ? The SEI has selected eight software targets, covering a range of software languages, for SBOM generation. Participants will have until December 10 to submit SBOMs based on these targets. To learn more about SBOM Harmonization Plugfest 2024, visit https://lnkd.in/eHtnGni9. #SBOM #software

Today, Mission Critical proudly stands with our Veterans, recognizing the extraordinary service, resilience, and sacrifices made by those who have worn the uniform. We are forever grateful for the dedication and courage of our servicemen and women, who have not only protected our freedoms, but also contributed their skills and leadership to our communities. To All Veterans: Thank You for your commitment to our nation and for the values you carry forward. Your dedication inspires us as we strive to create safer, stronger infrastructures for the future. Happy Veterans Day! #VeteransDay #MissionCritical #ThankYouVeterans #USA #Veterans #CriticalInfrastructure #Critical #NationalSecurity #Security

It's that time of year when the Software Engineering Institute hosts its annual Research Review! Please come join us on Wednesday, November 13th, at the SEI building at 4500 Fifth Avenue, Pittsburgh, PA 15213 as our researchers detail how they are executing our technical strategy to develop amazing new capabilities in software engineering, cybersecurity, and AI engineering.?They will highlight methods, prototypes, and tools aimed at solving the most important problems facing the DoD, industry, and academia and advancing the state of the practice.?Each session will explore how we were able to rapidly move research into practice, working together to develop practical solutions.??We're going to start with a hot breakfast at 0800 EST with the program starting at 0900 and ending at approximately 1600/4pm EST with a networking reception to follow. The link to register is below but if you need help registering or have any questions, please shoot a note to [email protected]. Please act quickly as we're getting a great registration response thus far! #CMU #research #SoftwareEngineeringInstitute #SEI #CERT #CIO #CISO #cybersecurity #softwareengineering #AI #AIengineering #cyber #risk #riskmanagement #appliedresearch #researchreview #DoD https://lnkd.in/efbnx5Hv

Curious about the latest trends impacting supply chains? Watch BSI Connect Screen’s Q3 Risk Intelligence Outlook on-demand webinar for expert insights on security risks, business continuity, CSR, and food safety from Business Intelligence Analysts Anna Lee Robbins and Heather Mullen. Access the recording: https://bit.ly/3Agmic4 #riskintelligence #supplychaintrends #businesscontinuity #ConnectScreen #BSI

The U.S. Congressional Research Service highlighted?recent #SaltTyphoon hacks?of People’s Republic of China (PRC) state-sponsored hackers infiltrated U.S. #telecommunications companies including internet service providers, and federal response implications. The government has since?confirmed?the PRC’s actions and the existence of an ongoing investigation into the hacks. Verizon Communications,?Inc., AT&T, and Lumen Technologies are?among?the telecom companies whose networks were breached by the recently discovered intrusion. Identifying that this is not the first time that the PRC has attacked the U.S. communications sector, these attacks reflect a pattern of targeting the sector for its role in enabling other sectors, and also the value of the systems and data contained within the sector itself. “The methods used by the PRC hackers in the attack have not been publicly disclosed, nor have the specific systems or data that were targeted,” Chris J., a specialist in #cybersecurity policy,?wrote?in the CRS report. "But, public reporting suggests that the hackers may have targeted the systems used to provide court-approved access to #communication systems used for investigations by law enforcement and intelligence agencies. PRC actors may have sought access to these systems and companies to gain access to presidential candidate communications. With that access, they could potentially retrieve unencrypted communication (e.g., voice calls and text messages)." #CriticalInfrastructure #Threatlandscape #Cyberthreats #Cyberattacks https://lnkd.in/g8-PXF5C

Joint Statement from CISA and U.S. Election Assistance Commission in Support of State and Local Election Officials. Read the entire statement here: https://go.dhs.gov/UPg

U.S. Department of Agriculture (USDA) has teamed with the White House Office of the National Cyber Director, The White House (ONCD) and the National Rural Water Association (NRWA) to strengthen #cybersecurity for #ruralwater systems. The agencies will launch a one-year program study to enhance #cybersecurity for rural water systems. Additionally, USDA Rural Development Under Secretary Basil I. Gooden, Ph.D. mentioned that the Oregon Association of Clean Water Agencies (ACWA) Utilities and Vermont Rural Water Association will help #NRWA administer the one-year study. #Criticalinfrastructure #WaterInfrastructure #Threatlandscape https://lnkd.in/giTWu3FB

The Food and Ag-ISAC has released its newest Food and Ag Sector #CyberThreat Report, offering a comprehensive analysis of the diverse threat actors targeting the industry. Unlike earlier reports that concentrated primarily on #ransomware activities, the latest report examines a broader range of threat actors. The report draws on data from the Food and Ag-ISAC, analyzing over 200 hackers. This data was gathered in partnership with its members and partners, including the IT-ISAC and other ISACs within the National Council of ISACs. Members of the Food and Ag-ISAC gain access to collaborative adversary playbooks, where companies join the ISAC analysts in updating playbooks with recent TTPs (tactics, techniques, and procedures), IOCs (indicators of compromise), and the latest tools and exploits. Commenting on the Food and Ag-ISAC report, Kristin Demoranville, CEO and founder at?AnzenSage?said while this report is an essential step in recognizing the evolving cybersecurity threats to food and agriculture, it’s crucial we take it further. “The food and ag sector is not only foundational to our daily lives but is increasingly targeted by sophisticated threats, including nation-state actors,” Demoranville told Industrial Cyber. “We’ve seen how #geopolitical tensions, like the war in Ukraine, have exposed #vulnerabilities in #agriculture, and recent attacks on Canada’s #dairy industry have underscored how critical this infrastructure truly is. Protecting this sector requires not just vigilance but also a commitment to long-term resilience and education.” #CriticalInfrastructure #Threatlandscape #Cybersecurity #Cyberrisk https://lnkd.in/g9PfVWsC

Thank you to the Women Business Collaborative for the opportunity to share my insights on the essential role of diversity in cybersecurity. Drawing from experience and observation, I firmly believe that inclusive voices and perspectives are key to driving innovation and resilience across all sectors, especially in cybersecurity. Diverse teams bring a depth of understanding and problem-solving that is critical for tackling today’s complex challenges. I’m grateful for platforms like WBC that amplify these conversations and support a more equitable and secure future. #DiversityInCyber #WomenInCyber #InnovationThroughInclusion

https://lnkd.in/egtP3-ug