Much of our critical infrastructure and vital services are run by organizations with no cybersecurity staff. They're vulnerable and under attack. The #cyberresiliencecorps is here to help. Today we'll learn what they're doing and how we can help.
#cybercivildefense #Take9
#cyberpeaceinstitute #cyberpeacebuilders
@joshcorman #undisruptable27 @defconfranklin @craignewmark
https://podcast.firewallsdontstopdragons.com/2025/11/10/becoming-cyber-resilient/
@thegibson @thedarktangent @mttaggart @craignewmark
@IST and @joshcorman have project focused on critical infrastructure called #UnDisruptable27 that's promising. (I just did an interview with Josh on this topic.)
For everyone committed to #CyberCivilDefense and #take9, I'll see you at #CriticalEffectDC 6/12&13 !
Check out https://critical-effect.org for actionable risk reductions to Water, Power, Medical Care, Food & public safety in the crosshairs of VoltTyphoon before 2027
The Volt Typhoon attack on our critical infrastructure was a wake up call... that we've largely ignored. China wants to keep the US in check if they invade Taiwan. Experts like @joshcorman say we have as little as 2 years to prepare.
https://podcast.firewallsdontstopdragons.com/2025/05/12/shelter-from-the-storm/
We talk a lot about cyber attacks with financial or privacy impacts. On Monday, I'll be talking with @joshcorman about attacks that threaten public safety and even physical harm. Don't miss this one.
Subscribe here:
https://firewallsdontstopdragons.com/podcast/
I have a weekly podcast called Firewalls Don't Stop Dragons. The show is a mix of cybersecurity news and interviews of prominent people in the industry. But like the book, the shows are targeted squarely at everyday, non-technical people - covering the info that everyone needs to know in a way that's accessible and practical.
Timely for #Halloween - Joshua Corman and I discuss the scariest story I know of in IT - the mounting threats to the #cybersecurity of critical infrastructure.
"We live in glass houses. And people are about to start throwing rocks."#ITOps #podcast #SBOM #softwaresupplychainsecurity #volttyphoon #secops #undisruptable27
Joshua Corman is executive in residence for public safety & resilience at The Institute for Security and Technology (IST), a non-profit think tank based in the San Francisco Bay Area. He is also co-leader of a Cybersecurity and Infrastructure Security Agency (CISA) community working group for SBOM on-ramps & adoption. Previously, he was vice president of cybersecurity strategy for Claroty, an IoT security company; chief strategist on the CISA COVID task force; director of the Atlantic Council's Cyber Statecraft Initiative; and CTO at security software vendor Sonatype. In August, Corman delivered a presentation at CISA's SBOM-a-Rama event warning that time is running out to more effectively protect critical infrastructure systems such as the water and power supply that rely on potentially vulnerable software to operate. Corman emphasized the urgent need to more effectively identify vulnerabilities and defend against attacks such as China's Volt Typhoon nation-state threat group. An initiative Corman is leading at IST under the working title UnDisruptable27 now looks to address these threats. "We live in glass houses," he said in this episode's interview. "And people are about to start throwing rocks."
(This is about protecting our water supplies, hospitals, and more)
What’s up next for #UnDisruptable27? How can you get involved? @IST_org’s latest newsletter answers these questions and more in a Q&A with project lead @joshcorman:
We must prioritize the security, safety, and resilience of lifeline critical infrastructure, including water, food, emergency medical care, and power.
@IST_org & @joshcorman today announced #UnDisruptable27, which aims to do just that:
https://www.wired.com/story/undisruptable27-us-critical-infrastructure-cybersecurity/
Firewalls Don't Stop Dragons
Craig Newmark
Beth Pariseau