/
Agencies Issue Joint Cyber Advisory on How Threat Actor APT28 Gains Access to Cisco Routers
Published on
Agencies Issue Joint Cyber Advisory on How Threat Actor APT28 Gains Access to Cisco Routers

The National Security Agency, Cybersecurity and Infrastructure Security Agency, FBI and the U.K. National Cyber Security Centre have released a joint advisory to inform organizations of the tactics, techniques and procedures used by threat actor APT28 to exploit and gain access to Cisco routers.

APT28 deploys malware and performs reconnaissance of routers by exploiting the vulnerability CVE-2017-6742 and using default and weak Simple Network Management Protocol community strings, NSA said Tuesday.

According to the advisory, SNMP works to enable network administrators to configure and track network devices remotely. Threat actors can exploit this to gain access to sensitive network data.

The agencies called on organizations to perform mitigation measures, such as patching devices, avoiding the use of SNMP to prevent unauthorized access of routers, enforcing a strong password policy and using logging tools to record commands executed on network devices.

The advisory states that APT28 is also known as the Russian General Staff Main Intelligence Directorate (GRU) 85th Special Service Center military intelligence unit 26165, STRONTIUM, Fancy Bear, Pawn Storm, Sofacy and the Sednit Gang.

/
Christopher Scolese: NRO Eyes RFP Release for Commercial Electro-Optical Capabilities
Published on
Christopher Scolese: NRO Eyes RFP Release for Commercial Electro-Optical Capabilities

Christopher Scolese, director of the National Reconnaissance Office and a 2023 Wash100 awardee, said NRO expects to release a request for proposals for commercial electro-optical capabilities in the fall of 2023.

During his keynote address at the Space Symposium on Tuesday, he shared that the commercial EO capabilities will serve as the fourth focus area of the agency’s Strategic Commercial Enhancements Broad Agency Announcement program.

The commercial EO market continues to expand with new capabilities and new providers, and we want to be able to assess and use these capabilities to support our mission,” Scolese remarked.

We expect the RFP this fall, and this acquisition will be open to both U.S. companies and foreign-owned companies with subsidiaries in the U.S.,” he added.

During the event, Scolese discussed NRO’s efforts to keep ahead of competition, such as modernizing its space and ground infrastructure and advancing automation and machine learning capabilities and multi-intelligence processes.

He also mentioned NRO’s partnerships with other agencies, industry and academia, its commitment to innovation, recruitment efforts and the threats posed by Russia and China in the space domain.

/
Zscaler Report Reveals 50% Annual Surge in Global Phishing Attacks
Published on
Zscaler Report Reveals 50% Annual Surge in Global Phishing Attacks

Artificial intelligence tools significantly contributed to the 50 percent rise in global phishing attacks in 2022, according to an annual study released by Zscaler.

The 2023 ThreatLabz Phishing Report, which was published on Tuesday, named the United States, United Kingdom, Netherlands, Canada and Russia as the countries most targeted by the evolving cyberthreat.

Compared to global phishing data in 2021, attacks against the education sector surged 576 percent last year, Zscaler found. The retail and wholesale market, which was the most targeted industry in 2022, showed a 67 percent decline in phishing incidents.

The cloud security firm attributed the overall increase to the growing popularity of the interplanetary file system protocol for data sharing and storage. Hackers are also using ChatGPT and other technologies from the black market to launch more sophisticated attacks, such as the Adversary-in-the-Middle technique for forging or stealing credentials.

Adobe, Binance, Facebook, Microsoft and Netflix were identified as the top brand targets, while education, finance and government were the most vulnerable sectors, Zscaler noted.

The company urged organizations to install cloud-native and proxy-based zero trust architecture to shield themselves from phishing attacks.

POC - 2023 Cyber Summit

Cybersecurity is increasingly becoming a critical protective element in government, industry and society. The Potomac Officers Club is joining the conversation with its 2023 Cyber Summit, to be held on June 8. Register for the event by clicking on the banner above.

/
Argonne Engineers Build Nuclear Training Tool With VR, Gaming Tech; Derek Kultgen Quoted
Published on
Argonne Engineers Build Nuclear Training Tool With VR, Gaming Tech; Derek Kultgen Quoted

Engineers from the Department of Energy’s Argonne National Laboratory are exploring the use of extended reality and video game technology to attract and train the next-generation nuclear workforce.

The team used commercially available tools, including high-fidelity visualization software, tablets with LiDAR scanners, headsets and smart hard hats, to digitize operation and maintenance activities at the Mechanisms Test Loop Facility, Argonne said Tuesday.

In partnership with the Implexus Lab and Epic Games, the Argonne team developed a digital twin of the METL’s heating system to serve as a training tool for nuclear professionals.

Argonne aims to use the technology to collect operational data to inform future training efforts.

“As everything transitions to digital, there is an opportunity for the nuclear industry to use extended reality to break down the silos where useful data resides and bring data to the people who need it,” said Derek Kultgen, principal mechanical engineer and METL operations manager at Argonne.

“This breaking down of information barriers between occupations means meaningful work across the board, and that may result in a future workforce that is trained, competent and content enough to stay for a while,” he added.

NSWC in Florida Begins Training Navy Personnel on Grainger 4th Party Logistics Program
Published on
NSWC in Florida Begins Training Navy Personnel on Grainger 4th Party Logistics Program

The Naval Surface Warfare Center in Panama City, Florida, is leveraging the Grainger Fourth Party Logistics Program to facilitate materials and supplies procurement within the division, the U.S. Navy reported Tuesday.

The center’s purchasing branch launched a training program to educate its personnel about Grainger 4PL, and to show them how to use its Customer Acquisition Group online tool to place orders.

Grainger 4PL began two years ago as a pilot project specific to the Department of Defense and its components. It is compliant with the General Services Administration’s acquisition guidelines on mandatory source of supplies and services, as well as the Military Standard Requisitioning and Issue Procedures.

“With this program, there are no shipping charges or dollar thresholds,” NSWC Purchasing Branch Head DeAnna Pedersen explained. “There are agreed upon and negotiated prices between the government and GSA, free returns on items that are incorrect or damaged, warranty on all products, visibility of estimated ship dates on the website and the ability for NSWC PCD to request materials be added to the program.”

/
SkillStorm’s David Donelan Talks Career Highs, Leadership Strategy & Core Values
Published on
SkillStorm’s David Donelan Talks Career Highs, Leadership Strategy & Core Values

As senior vice president of SkillStorm Commercial ServicesDavid Donelan guides both the federal and commercial sides of the company in growing their business. His work is informed by over 30 years of experience in the field and a passion for driving team success.

Donelan recently participated in an interview with the Potomac Officers Club, during which he shared the most impactful achievements of his career, his leadership style and the core values he applies to team-building. 

In this excerpt from the interview, Donelan revealed what he sees as the most fulfilling aspect of being a leader:

“Throughout my career, I have had the opportunity to manage many people, so I would say my greatest accomplishment has been seeing my teams grow as individuals and accomplish their major goals. I have contributed to the growth of successful companies such as Digital, EMC, Pegasystems and most recently, SkillStorm, however, having someone who has worked for me tell me how much they learned and enjoyed working on my team is the most rewarding aspect for me.”

For more of Donelan’s insights, read the full Executive Spotlight interview on the Potomac Officers Club website.

Each Potomac Officers Club member has the opportunity to participate in their own Executive Spotlight interview! To determine which membership option is best for you, click here.

/
Rear Adm. Darin Via Nominated as Navy Surgeon General
Published on
Rear Adm. Darin Via Nominated as Navy Surgeon General

Navy Rear Adm. Darin Via, deputy surgeon general of the Navy since June 2022, has been nominated to serve as the service branch’s next surgeon general, Defense Secretary Lloyd Austin announced Tuesday.

Via is currently deputy chief of the Bureau of Medicine and Surgery and director of the Medical Resources, Plans and Policy Division within the Office of the Chief of Naval Operations.

If confirmed, Via will succeed Rear Adm. Bruce Gillingham, the Navy’s 39th surgeon general, who has retired after four decades of active-duty service.

Via previously held various leadership roles at Naval Medical Center Portsmouth, including chairman of the Department of Anesthesiology, director for surgical services and operative support service line leader.

His military career also includes time as command surgeon of the U.S. Pacific Fleet and medical adviser to the commander of U.S. Central Command.

/
Kathryn Coulter Mitchell to Succeed Kiersten Todt as CISA Chief of Staff; Jen Easterly Quoted
Published on
Kathryn Coulter Mitchell to Succeed Kiersten Todt as CISA Chief of Staff; Jen Easterly Quoted

Kathryn Coulter Mitchell, deputy undersecretary for the Department of Homeland Security Science and Technology Directorate, will join the Cybersecurity and Infrastructure Security Agency as its new chief of staff.

She is slated to replace Kiersten Todt, who has decided step back and serve as senior adviser in order to continue her career in the private sector, CISA announced Tuesday.

Coulter Mitchell worked in both the private and public sectors for 15 years before being part of DHS. She became director of policy for an association with over 350 government contractor members. She also authored a communications strategy for the Federal Emergency Management Administration.

In her new role, Coulter Mitchell will take over Todt’s responsibilities including strategic planning and implementation, and resource allocation.

CISA Director Jen Easterly commended both Todt and Coulter Mitchell for their accomplishments. “Kiersten’s contributions to this Administration cannot be overstated – helping to transform CISA into America’s cyber defense agency, while spearheading a number of CISA priorities including collaboration with industry, corporate cyber responsibility, the stand up of our Cybersecurity Advisory Committee, and the co-creation of our People First culture,” Easterly said.

The two-time Wash100 awardee also welcomed Todt to the organization, saying “she brings the perfect combination of experience and expertise to the job, and I look forward to working with her as CISA grows and matures as an agency.”

/
Ronald Rowe Promoted to Secret Service Deputy Director
Published on
Ronald Rowe Promoted to Secret Service Deputy Director

Ronald Rowe, current assistant director of the U.S. Secret Service’s intergovernmental and legislative affairs office, is set to become deputy director in the coming months.

He will succeed Faron Paramore, who has held the role since March 2021 and will retire from the agency after a more-than-three-decade career, USSS said Tuesday.

In his present post, Lowe works with USSS partners at the federal, state and local government levels to carry out the agency’s protection and investigation duties.

The 24-year Secret Service veteran previously served as chief of staff to the now-retired James Murray and as deputy assistant director protective operations office.

His other previous assignments included work as coordinator of the National Special Security Event for a 2016 agency operation, a senior policy adviser to the White House’s intellectual property enforcement coordinator and a portfolio manager in the Office of the Director of National Intelligence.

Earlier in his career, the University of Maryland in College Park alum served as a city police officer in West Palm Beach, Florida.

/
CISA Details Software Bill of Materials Sharing Lifecycle Phases in New Report
Published on
CISA Details Software Bill of Materials Sharing Lifecycle Phases in New Report

The Cybersecurity and Infrastructure Security Agency has released a report outlining and describing the various parties and phases of the Software Bill of Materials sharing lifecycle.

Seeks to assist users in executing a phase of the SBOM sharing lifecycle, the SBOM Sharing Lifecycle Report helps choose sharing platforms based on resources, effort, subject matter expertise and access to tooling, CISA said Monday.

The document details the Discovery, Access and Transport phases of an SBOM and how an SBOM transitions from the author to the consumer.

The CISA report outlines how potential enrichment activities may be carried out on an SBOM to develop a new product before or after it has been shared and recommends that the SBOM community facilitate SBOM sharing and adoption by considering efforts to make existing and future sharing platforms interoperable with each other.

The agency said the document is intended to help readers understand the current landscape by highlighting results of an SBOM sharing survey gathered through interviews with stakeholders.

It “captures industry efforts to create private sharing solutions and services that can store and transport enrichment data and may use higher sophistication features that are cloud-based or use distributed ledger technologies,” per the executive summary.

1 579 580 581 582 583 2,624