It’s a little crazy and worrisome how quickly companies are pushing out updates that hook in chatgtp. Like it’s amazing but feels like one of those thing where “security” is an afterthought.
Justaq
- 34 Followers
- 122 Following
- 68 Posts
InfoSec, OT, ICS and IT. Shared Defence.
Mid 2022, I had the opportunity to brief participate on a briefing to The President’s National Security Telecommunications Advisory Committee (NSTAC) on the convergence of Information and Operational Technology, specifically in the context of Industrial Control System and Electric Utility environments.
The report was recently delivered to the President,
and has been posted for public review.
Recommendations are already having an impact on
federal IT/OT cyber policy. Following the completion of the NSTAC report, CISA released a Binding Operational Directive (BOD 23-01), requiring agencies to inventory all network-connected IT and OT assets, which follows on the NSTAC report's first recommendation.
There are many opportunities and challenges ahead as
we continue to further secure these environments with escalating threats, and I appreciate the opportunity to have provided perspectives to the committee for consideration.
My 2023 Cyber Predictions:
Shit will still be broken
Stuff will still get hacked
Some new tools will get marketed as being able to fix everything
People will do awesome things
The community will support each other
2022 days remaining: ░░░░░░░░░░░░░░░ 0.1%
Anyone else having the sinking feeling that defenders are losing pace against bad guy tooling innovations, evolution and lowered barriers of entry?
Overheard in a bar during a blizzard, “This 8 inches is looking more like 3”
My brain:
2022 days remaining: ░░░░░░░░░░░░░░░▓ 4%
VMware ESXi and vCenter Server updates address multiple security vulnerabilities - https://www.vmware.com/security/advisories/VMSA-2022-0030.html
@nathanmcnulty Is there a way in KQL to find macro enabled documents that have the MOTW flag set?