UAW ripple effects, MGM hack, NOLA's AI spycraft, $1 trillion cost of physical incidents

Welcome to this week's Benchmarker newsletter!

Allied Universal's debut World Security Report made a big splash at GSX last week. It's featured twice in this edition of Benchmarker. The Report found that one in four publicly-listed companies reported a drop in their value following a physical security incident over the last year –?a helpful metric for those budget conversations.

Got a story on how security is saving money? Let us know at?[email protected].

____________________________

Above the fold

California governor says he will sign bill requiring carbon disclosure - The first-in-the-nation law will compel major companies to?disclose their carbon dioxide emissions and could have national repercussions. (Reuters, New York Times)

UAW strike is a high-stakes gamble for autoworkers and the labor movement - Experts on unions and the industry said the UAW?strike could accelerate a wave of worker actions, or stifle labor’s recent momentum. (New York Times)

Experts warn of dire supply chain effects from prolonged UAW strike - “A prolonged strike could be a nuclear event for tier 2 and lower-level tier supply chain providers," says one expert. (Freight Waves)

Clorox products may be in short supply following cyberattack, company warns - Clorox is slowly restoring its systems after a hack last month forced the consumer products maker to take them offline. (CBS News)

Analyst: MGM losing $4.2M-$8.4M a day because of cyberattack - With many computer systems still down a week after the attack began, the company has no update on a return to normal operations. (Las Vegas Review-Journal)

New Orleans DA fights ‘terrorism’ on streets with AI spycraft - Prosecutors work with former intelligence officers and AI tools to gather and analyze open-source evidence. (Wall Street Journal)

Texas National Guard disbands intelligence wing after using WhatsApp to spy - Four members of the unit working on Gov. Greg Abbott’s border mission have been punished after whistleblowers reported the surveillance operation violated long-standing rules against state-run spy operations. (El Paso Matters)

Chinese spies infected dozens of networks with thumb drive malware - Security researchers found USB-based Sogu espionage malware spreading within African operations of European and US firms. (Wired)

Canada’s startling claim punctuates tension with India over separatists - The allegation that India was involved in the killing of a Sikh leader in Canada came after New Delhi had accused Western countries of inaction on secessionist groups. (NY Times)

Thieves swarm luxury malls, driving retail crime to $100 billion - California Governor Gavin Newsom commits $267 million to fight “brazen smash-and-grabs” hitting stores. (Bloomberg)

American Eagle sues Westfield Mall, saying ownership let the place ‘deteriorate into disarray’ - A new wrinkle in the Westfield Centre drama, as large tenant American Eagle Outfitters just filed a lawsuit saying Westfield management abandoned any attempt at security and allowed the place to go to hell in a handbasket. (SFist)

Report finds physical security incidents cost companies $1 trillion in 2022 - The report also found that companies anticipate a surge in threats and hazards like social unrest, climate change, fraud, and theft. As a result, physical security budgets are predicted to increase significantly to keep people, property, and assets safe. (Security Informed)

Contextualizing deepfake threats to organizations - The increasing availability and efficiency of synthetic media techniques available to less capable malicious actors indicate these types of techniques will likely increase in frequency and sophistication.?(DoD, FBI)

CDC recommends updated COVID-19 vaccine for fall/winter virus season - CDC recommends everyone 6 months and older get an updated COVID-19 vaccine to protect against a potentially serious illness this fall and winter. Updated COVID-19 vaccines from Pfizer-BioNTech and Moderna will be available later this week. (CDC)

____________________________

Attend Factal's webinar tomorrow (Wednesday) to see our new integration with EVERYWHERE Communications

____________________________

Data point: CSOs on security budgets

- Allied Universal's first-ever World Security Report surveyed 1,775 chief security officers, covering threat actor groups, internal threats, budgets and more.

____________________________

Quote of the week:

- A report published earlier this month in the?journal Science Advances?found that the?planet has transgressed 6 out of 9 boundaries for processes deemed critical for maintaining the stability and resilience of the Earth system as a whole. Pictured is Katherine Richardson, one of the study's co-authors.

____________________________

Beneath the fold

The twisted eye in the sky over Buenos Aires - A scandal unfolding in Argentina shows the dangers of facial recognition—even with laws and limits in place. (Wired)

The bizarre secret behind China's spy balloon - Earlier this year America's military defenses were put on notice against a Chinese balloon believed to be on an espionage mission. Gen. Mark Milley talks about what we've learned from the wreckage. (CBS News)

Corporate data breach detection through an OSINT lens - Here are five ways OSINT can improve our understanding of the threat landscape. (SC Magazine)

Army to treat OSINT as ‘intelligence discipline of first resort’ under new strategy - The Army’s intelligence leaders are prioritizing the use of “open source intelligence” under a strategy released earlier this year, as the service is increasing open-source training and plans to make its OSINT courses more widely available across the intelligence community. (Federal News Network)

Brazil sees Amazon rainforest international security hub launch this year - Brazil is preparing to launch a center for international police cooperation to combat environmental crimes and drug trafficking in the Amazon rainforest by the end of 2023. (Reuters)

Our bold plan to build resilience amid the climate crisis - The Red Cross plans to spend at least $1 billion on?climate crisis work. (American Red Cross)

An avoidable breach — FBI hacker leaks sensitive Airbus data - A relatively unknown threat actor,?“USDoD” posted a thread in which they offered the database of the FBI’s sharing system. (Hudson Rock)

How a Ring camera can attract burglars — I learned?the hard way - "Alarms often actually attract burglars to houses. They are a wealth cue - it means there is going to be something worth stealing." (The Times of London)

What event hosts should know about safety and security - The Miami Beach Convention Center recently hosted a robust safety training program for hospitality pros around the city. Here, the team shares some insights that every event professional should keep in mind. (BizBash)

Scalable event management, Phoenix style - As Phoenix, Arizona, has grown in population, so too have the events it hosts. We spoke with the Phoenix Police Department’s emergency management commander about how the city plans for and prepares to manage security risks during mass events. (Security Management Magazine)

The role of unarmed security officers in active shooter response - The Northwell Health security leadership extends active shooter response training to armed and unarmed officers, ensuring an all-hands approach to violence. (Security Magazine)

How to beef up your security when you fly private, from armed drivers to flight companions - Executive protection agents, typically ex–law enforcement or military, can help you travel with ease, depending on how hard you want to roll up. (Robb Report)

Mastering operational resilience: Your ultimate guide to successful testing strategies - While business continuity exercises assess how well your organization can execute predefined recovery plans, operational resilience looks beyond these plans. (Disaster Empire)

Worst butt-dial of my life: Apple’s iPhone SOS technology, and an inadvertent wilderness ‘rescue’ - The author turned their phone off and put it in their pocket. Then came the helicopter.?(GeekWire)

How Wagner used beer to spread Russian influence in Africa - Most Wagner businesses in Africa center on natural resources like gold, diamonds and timber. But in 2022 the Russian paramilitary group started a brewery in the Central African Republic as a way to compete with the French for influence on the continent. (Wall Street Journal)

____________________________

Industry jobs

Global Risk and Resilience Director?–?Honeywell, Atlanta, Georgia

Director of Security Governance and Risk?–?Carnival, Miami, Florida

Director, Public Safety & Security?–?Washington Nationals, Washington, D.C.

Associated Director of Security and Risk Management?–?Counterpart International, Washington, D.C

Regional Security Lead, Europe & GEMS?–?General Mills, Uxbridge, England

Manager, Global Security Operations Center?–?Snap, Las Angeles, California

Security & Fire Operations Enterprise Business Continuity Program Manager?–?Boeing, multiple

Intelligence and Response Analyst?–?Zendesk, Madison, Wisconsin

Other jobs listed on Factal's Industry Jobs page?include opportunities with SiriusXM, F1, EA and more. Send us a job to post by emailing [email protected].

____________________________

Industry events

Selling to the C-Suite: How to get buy-in to upgrade your security systems -September 21, 12:30pm ET - When it comes to budgeting, physical and cyber security technology has been historically regarded as a sunk cost, an operational necessity focused on protecting people and assets. Technology advances and the digital transformation of organizations are beginning to change that perspective as executives become more aware of the value of data-driven insights.

Next Generation Security Leader GSOC Course - Starts September 26 - The Next Generation Security Leader (NGSL) Global Security Operations Center (GSOC) online course is taught by current security practitioners and Security Executive Council (SEC) subject matter experts. The course runs for 10 weeks. Each week has a 90-minute module.

International Security Expo - September 26-27 (London) - Security professionals from across the world the chance to come together face-to-face under one roof to network, learn and discover the latest security solutions from the world’s leading suppliers. Free to attend, there is no better way to stay ahead of the curve

The Big Shake: Tabletop Exercise Planning for Earthquakes - September 27 12pm ET - One of the most impactful methods to prepare an organization or community is through tabletop exercises that simulate earthquake scenarios. This webinar aims to provide emergency planners, first responders, and community leaders with comprehensive insights into designing and running tabletop exercises for earthquake preparedness.

Global Security Briefing - September 28, 3p ET - Factal journalists and Emergent Risk International analysts will discuss what keeps them up at night. The GSB is also available as a?podcast.

BCI World Hybrid 2023 - November 1-2 (London) - Building and maintaining resilience are top priorities for organizations worldwide, but resilience is an ongoing process that involves everyone within a business. Resilience capability is a collective approach to working and the more it is developed and maintained, the more it helps organizations to thrive in the face of adversity. Factal?will attend.

____________________________

Thank you for reading Benchmarker!

Please share?Benchmarker?with your co-workers and colleagues.?Subscribe here. Send links, job postings and events to?[email protected].?

Benchmarker?is produced by?Factal, the verified breaking news platform trusted by many of the world's largest companies.?Factal is free for NGOs. Visit?Factal.com?to learn more,?book a demo or start a?30-day free trial.