#infragard — Public Fediverse posts

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

I attended the AITP Chicago Security SIG tonight at RSM and left with one clear takeaway: a $200 device called Flipper Zero can clone your building access badge and bypass the physical security your organization worked so hard to set up. FBI Chicago Intelligence Analysts and an InfraGard board member explained how these devices work and where organizations are vulnerable. The room was full of security professionals, many of whom had that familiar look, realizing a threat they thought was unlikely is actually much closer to home.
Here are a few key points from tonight:
・ You can buy Flipper Zero on Amazon, and teenagers are posting demo videos on YouTube. If your physical security plan assumes attackers need special equipment, that assumption is no longer true.
・ Most enterprise security programs barely address RF-based attacks on access control systems. We invest heavily in endpoint protection and network monitoring, but the badge reader by the server room often gets overlooked.
・ Mitigation is practical. Encrypted credentials and multi-factor physical access are real solutions. Most organizations just haven’t made them a priority because the threat seemed remote.

If you’re a CISO or CIO and haven’t reviewed your physical access controls for RF-based attacks, now is a good time to add it to your to-do list.
Thank you to AITP Chicago, the FBI, InfraGard, and RSM for a great discussion.

https://aitpchicago.com/event-6680905
#Cybersecurity #PhysicalSecurity #InfraGard #security #privacy #cloud #infosec #flipper0

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach – Source: krebsonsecurity.com https://ciso2ciso.com/brazil-arrests-usdod-hacker-in-fbi-infragard-breach-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #NationalPublicData #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #NeerDoWellNews #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach – Source: krebsonsecurity.com https://ciso2ciso.com/brazil-arrests-usdod-hacker-in-fbi-infragard-breach-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #NationalPublicData #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #NeerDoWellNews #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach – Source: krebsonsecurity.com https://ciso2ciso.com/brazil-arrests-usdod-hacker-in-fbi-infragard-breach-source-krebsonsecurity-com/ #rssfeedpostgeneratorecho #NationalPublicData #CyberSecurityNews #ALittleSunshine #KrebsonSecurity #KrebsOnSecurity #NeerDoWellNews #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

https://krebsonsecurity.com/2024/10/brazil-arrests-usdod-hacker-in-fbi-infragard-breach/

#NationalPublicData #Ne'er-Do-WellNews #ALittleSunshine #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

https://krebsonsecurity.com/2024/10/brazil-arrests-usdod-hacker-in-fbi-infragard-breach/

#NationalPublicData #Ne'er-Do-WellNews #ALittleSunshine #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

https://krebsonsecurity.com/2024/10/brazil-arrests-usdod-hacker-in-fbi-infragard-breach/

#NationalPublicData #Ne'er-Do-WellNews #ALittleSunshine #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

https://krebsonsecurity.com/2024/10/brazil-arrests-usdod-hacker-in-fbi-infragard-breach/

#NationalPublicData #Ne'er-Do-WellNews #ALittleSunshine #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

https://krebsonsecurity.com/2024/10/brazil-arrests-usdod-hacker-in-fbi-infragard-breach/

#NationalPublicData #Ne'er-Do-WellNews #ALittleSunshine #DataBreaches #EquationCorp #CrowdStrike #RaidForums #InfraGard #Hackread #Intel471 #Tecmundo #TVGlobo #NetSec #USDoD #fbi

Brazil arrests USDoD hacker tied to FBI, National Public Data breaches https://hackread.com/brazil-arrest-usdod-hacker-fbi-national-public-data-breach/ #Cybersecurity #EquationCorp #SouthAmerica #CyberCrime #InfraGard #Brazil #USDoD #News

Brazil arrests USDoD hacker tied to FBI, National Public Data breaches https://hackread.com/brazil-arrest-usdod-hacker-fbi-national-public-data-breach/ #Cybersecurity #EquationCorp #SouthAmerica #CyberCrime #InfraGard #Brazil #USDoD #News

Brazil arrests USDoD hacker tied to FBI, National Public Data breaches https://hackread.com/brazil-arrest-usdod-hacker-fbi-national-public-data-breach/ #Cybersecurity #EquationCorp #SouthAmerica #CyberCrime #InfraGard #Brazil #USDoD #News

Breaking News: The threat actor known as "USDoD" (aka "EquationCorp" and other monikers") has been arrested by Brazilian Federal Police. USDoD is probably best known for his attacks on #InfraGard, Airbus, and his role in the recent National Public Data breach.

Media coverage indicates he was arrested this morning: https://g1.globo.com/politica/noticia/2024/10/16/pf-prende-hacker-de-33-anos-suspeito-de-invadir-sistemas-e-vazar-dados-de-policiais.ghtml

#databreach #hacker #USDoD #EquationCorp

@brett @campuscodi

Update: a bit more info here: Developing: Brazilian hacker known as “USDoD” arrested by federal police: https://databreaches.net/?p=117212

Breaking News: The threat actor known as "USDoD" (aka "EquationCorp" and other monikers") has been arrested by Brazilian Federal Police. USDoD is probably best known for his attacks on #InfraGard, Airbus, and his role in the recent National Public Data breach.

Media coverage indicates he was arrested this morning: https://g1.globo.com/politica/noticia/2024/10/16/pf-prende-hacker-de-33-anos-suspeito-de-invadir-sistemas-e-vazar-dados-de-policiais.ghtml

#databreach #hacker #USDoD #EquationCorp

@brett @campuscodi

Update: a bit more info here: Developing: Brazilian hacker known as “USDoD” arrested by federal police: https://databreaches.net/?p=117212

Breaking News: The threat actor known as "USDoD" (aka "EquationCorp" and other monikers") has been arrested by Brazilian Federal Police. USDoD is probably best known for his attacks on #InfraGard, Airbus, and his role in the recent National Public Data breach.

Media coverage indicates he was arrested this morning: https://g1.globo.com/politica/noticia/2024/10/16/pf-prende-hacker-de-33-anos-suspeito-de-invadir-sistemas-e-vazar-dados-de-policiais.ghtml

#databreach #hacker #USDoD #EquationCorp

@brett @campuscodi

Update: a bit more info here: Developing: Brazilian hacker known as “USDoD” arrested by federal police: https://databreaches.net/?p=117212

Breaking News: The threat actor known as "USDoD" (aka "EquationCorp" and other monikers") has been arrested by Brazilian Federal Police. USDoD is probably best known for his attacks on #InfraGard, Airbus, and his role in the recent National Public Data breach.

Media coverage indicates he was arrested this morning: https://g1.globo.com/politica/noticia/2024/10/16/pf-prende-hacker-de-33-anos-suspeito-de-invadir-sistemas-e-vazar-dados-de-policiais.ghtml

#databreach #hacker #USDoD #EquationCorp

@brett @campuscodi

Update: a bit more info here: Developing: Brazilian hacker known as “USDoD” arrested by federal police: https://databreaches.net/?p=117212

Breaking News: The threat actor known as "USDoD" (aka "EquationCorp" and other monikers") has been arrested by Brazilian Federal Police. USDoD is probably best known for his attacks on #InfraGard, Airbus, and his role in the recent National Public Data breach.

Media coverage indicates he was arrested this morning: https://g1.globo.com/politica/noticia/2024/10/16/pf-prende-hacker-de-33-anos-suspeito-de-invadir-sistemas-e-vazar-dados-de-policiais.ghtml

#databreach #hacker #USDoD #EquationCorp

@brett @campuscodi

Update: a bit more info here: Developing: Brazilian hacker known as “USDoD” arrested by federal police: https://databreaches.net/?p=117212

NationalPublicData.com Hack Exposes a Nation’s Data https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/ #NationalPublicDatabreach #NationalCriminalDataLLC #AtlasDataPrivacyCorp #TrinityEntertainment #HaveIBeenPwnedcom #TwistedHistoryLLC #InstantCheckmate #ALittleSunshine #recordschecknet #SalvatoreVerini #TheComingStorm #JericoPictures #ShadowgladeLLC #PeopleConnect #VXUnderground #DataBreaches #TruthFinder #InfraGard #SalVerini #TroyHunt #USDoD #SXUL #fbi

NationalPublicData.com Hack Exposes a Nation’s Data https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/ #NationalPublicDatabreach #NationalCriminalDataLLC #AtlasDataPrivacyCorp #TrinityEntertainment #HaveIBeenPwnedcom #TwistedHistoryLLC #InstantCheckmate #ALittleSunshine #recordschecknet #SalvatoreVerini #TheComingStorm #JericoPictures #ShadowgladeLLC #PeopleConnect #VXUnderground #DataBreaches #TruthFinder #InfraGard #SalVerini #TroyHunt #USDoD #SXUL #fbi

NationalPublicData.com Hack Exposes a Nation’s Data https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/ #NationalPublicDatabreach #NationalCriminalDataLLC #AtlasDataPrivacyCorp #TrinityEntertainment #HaveIBeenPwnedcom #TwistedHistoryLLC #InstantCheckmate #ALittleSunshine #recordschecknet #SalvatoreVerini #TheComingStorm #JericoPictures #ShadowgladeLLC #PeopleConnect #VXUnderground #DataBreaches #TruthFinder #InfraGard #SalVerini #TroyHunt #USDoD #SXUL #fbi

NationalPublicData.com Hack Exposes a Nation’s Data https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/ #NationalPublicDatabreach #NationalCriminalDataLLC #AtlasDataPrivacyCorp #TrinityEntertainment #HaveIBeenPwnedcom #TwistedHistoryLLC #InstantCheckmate #ALittleSunshine #recordschecknet #SalvatoreVerini #TheComingStorm #JericoPictures #ShadowgladeLLC #PeopleConnect #VXUnderground #DataBreaches #TruthFinder #InfraGard #SalVerini #TroyHunt #USDoD #SXUL #fbi

NationalPublicData.com Hack Exposes a Nation’s Data

https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/

#NationalPublicDatabreach #NationalCriminalDataLLC #AtlasDataPrivacyCorp. #TrinityEntertainment #HaveIBeenPwned.com #TwistedHistoryLLC #InstantCheckmate #recordscheck.net #ALittleSunshine #SalvatoreVerini #TheComingStorm #JericoPictures #ShadowgladeLLC #VX-Underground #PeopleConnect #DataBreaches #TruthFinder #InfraGard #SalVerini #TroyHunt #USDoD #SXUL

FBI Hacker Dropped Stolen Airbus Data on 9/11 https://krebsonsecurity.com/2023/09/fbi-hacker-dropped-stolen-airbus-data-on-9-11/ #ALittleSunshine #TheComingStorm #GenesisMarket #DataBreaches #BreachForums #HudsonRock #InfraGard #microsoft #RedLine #Airbus #USDoD #fbi

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

https://krebsonsecurity.com/2022/12/fbis-vetted-info-sharing-network-infragard-hacked/

#ALittleSunshine #DataBreaches #pompompurin #WebFraud20 #RaidForums #InfraGard #Breached #USDoD #fbi