Andy Jenkinson’s Post

''CISA ransomware warning program to fully launch by end of 2024. The program would warn organizations running software or hardware with vulnerabilities being exploited by ransomware gangs... '' Isn't that a tad like Mike Tyson sending an email to his opponent and saying he intends to thump him, after the event... Thousands of migrants are risking their lives embarking upon dangerous crossings of the English Channel. Rishi Sunak forcing a bill through Parliament allowing the UK Governemnt to then ship the migrants off to Rowanda DOES NOT provide a solution, but a very expensive excercise and half hearted attempt and passing the issue to someone else. This will quite likely be proven illegal. What The Prime Minister and CISA are failing to address in both cases are the Root Causes of the issues. They both need a latter day Abraham Wald. In the case of Rishi Sunak he could look to address the sale and supply of hundreds, even thousands of boats to Human Trafficking gangs, if the aim is to purely to cease the life threatenning and dangerous crossings. Likewise, if CISA want to cease rogue, dangersous, Malware laced software and hardware, wouldn't it be better to do so at the source. The Hardware and Software providers. The whole episode has a whiff of Purdue Pharmacy and Opioid scandal about it. Executives in the Military Industrial Complex are all too delighted to sell and ship illegal Cluster Bombs to kill thousands of people to Ukraine becasue it's good for their business. Likewise, Tech Giants enforcing people into Insecurity Entrapment and forced into Ransomware positions is a problem they can pass onto paying customers. That includes the U.S. Government. The symptoms perversly justify CISA's and others existence and expertese...Don't forget Budget increases. CISA act as Registrars for many U.S. Federal Agencies and despite their own issuance of Emergency Directive M-19-01, they, like pretty much the rest of the world, are exposed to DNS Tampering and Abuse due to exposed and Insecure servers. Federal Agencies have suffered multiple DNS attacks. Like PDNS, this initiative, whilst I am sure is well meaning and full of good intentions, why do CISA choose NOT to address the Root Cause and educate the masses in the critical area of Internet Asset and DNS? Why do Academia still not teach these critical areas to tomorrow's Security experts? What possible vested interest could they have NOT TOO? ''Over 95% of all Cyberattacks, Malware, and Bots rely on DNS.'' Paul Mockapetris So why do less than 10% of people know what DNS is and its criticality to security? #WhitethornShield FBI Cyber Division Federal Bureau of Investigation (FBI) The White House GCHQ #InternetSecurity #DNS #PKI #CyberInsurance #GlobalEconomy #Cybercrime

A Global Crisis of Insecurity Entrapment. In the wake of the UK PostOffice scandal, where the lives of hundreds of innocent sub postmasters were shattered, the catalyst for their enforced personal destruction was the flawed computer system Horizon by Fujitsu. A chilling parallel emerges in the world of tech giants. Companies like Apple, Amazon, Facebook (Meta), Google, and Microsoft wield unprecedented and continuous power over billions of users, yet their track record on security is marred by systemic flaws and breaches that continually wreak havoc. The Post Office scandal is a stark and costly reminder of the human cost of technological incompetence. Over 25 years, some 1,000 innocent sub postmasters suffered wrongful convictions, imprisonment, and even committed suicide due to the malfunctioning Horizon system. It's an ongoing tragedy that exposes catastrophic consequences when technology fails and is exacerbated by abhorrent collusion, cover-ups, and institutional corruption. Are the colossal tech conglomerates that dominate our digital lives any better? Tech Giants' negligence in ensuring the security of the entire world's data and systems has substantially more severe implications. Billions and billions of users are held captive by their monopolistic grip, potentially forced into a state of perpetual insecurity at literally every touch point. Apple, Amazon, Facebook, Google, Microsoft, and others command and control vast swathes of the digital landscape, yet their operating systems and platforms are rife with vulnerabilities. Insecure servers, data breaches, non-compliance, and privacy violations have become all too common, leaving users exposed to exploitation and unprecedented levels of cyber crime to the point of placing lives at risk. The parallels between the Post Office Horizon scandal and the failings of tech giants are glaring. Both scenarios highlight the dangers of unchecked power and the dire consequences of technology and security negligence. But while the Post Office scandal affected thousands, the reach of tech giants extends to many billions, amplifying the scale of the damage and the urgency of the crisis. The true cost of this insecurity is immeasurable. It erodes trust, undermines democracy, perpetuates inequality, and threatens livelihoods and lives. It exposes individuals and entire nations to the whims of corporate interests, leaving citizens vulnerable to manipulation, exposure, vulnerability, and cyber crime. As we continue to grapple with the fallout of the Post Office scandal, we must also confront the systemic failures of tech giants. The time for complacency is over. We cannot afford to continue down this perilous path. It's time to demand accountability, transparency, and meaningful change from those who hold the keys to our digital future. The stakes could not be any higher. Satya Nadella Brad Smith Tony Richards MCIIS Natalie Gilbert Mark Westney Leanne Hurrell #WhitethornShield

GuptiMiner is "a highly sophisticated threat" that performs DNS requests and exploits victims exposed and insecure DNS servers. Two key terms here: Sophisticated and DNS... ''GuptiMiner may be linked to the North Korean APT group Kimsuki, based on similarities between the information stealing function and the Kimsuky keylogger.'' Let's be candid for a moment, many security professionals DO NOT have a great unerstanding of the critical area of DNS. That in itself is NOT a crime. It is however criminal if they continue to choose to remain ignorant. ''Over 95% of all Cyberattacks, Malware (GuptMiner), and Bots rely upon DNS.'' Paul Mockapetris the Father of DNS 1983-1986. Until security professionals include Internet Asset and DNS as part of their basic security management, organizations will continue to be blindsided to attacks that simply gain access and exploit their errors and oversight. What makes this story even more unpalatable is eScan remain exposed to DNS Tampering and Attacks. They, like the majority of cyber victims, DO NOT address the root cause, ie DNS servers but the symptoms... #WhitethornShield #InternetSecurity #DNS #PKI #eScan FBI Cyber Division Federal Bureau of Investigation (FBI) The White House

A CYE analysis of 101 breaches across various sectors revealed insurance gaps resulting in an average of $27.3 million in uncovered losses per incident. That's a staggering total across just these 101 victims of $2,757,300,000. On average, each insurance gap left more than three-quarters of a breach uncovered. In other words only 25% of the claim was met by Insurers. Insurance providers are rightly wising up and Insured parties can no longer rely on Insurance 'Get out of Jail' card simply by buying a policy... The report below is certainly noteworthy and hopefully will act as a catalyst for Basic Security to no longer be ignored in favour of false 'Bells, Whistles, and AI.' Let us be candid for a moment. The costs and losses to these 101 organizations of $2,757,300,000 will not be met by any Executive, the Security team tasked with security, or anyone else in these organizations, despite any clear and obvious negligence. Those costs and losses will be passed down via the Trickle Down Economy to customers and tax payers. Equally, and as perversley as it may seem, any fines levied for wholly inadequate security will also be met by the same clients and tax payers. The only exception to this is if the incident forces the organization to file Chapter 11/Bankruptcy and cease trading. With Cyber Insurance revenues continually increasing as well as cyberattacks costs and losses rapidly increasing, the Delta between the two is further apart than ever. We have been concerned for several years that cyber Insurance at best contributes to the dilemma and often provides a false sense of security. There is one sure fire way to substanitally reduce the chances of a cyberattack and that is by doing the basics and doing them well. Internet Asset Security including critical DNS MUST be controlled and managed if an organization wants to stand any chance in the cess pit world of cyber crime. It is not Rocket Science, and as Nike so famously said: 'Just Do It.' We are happy to share how to ensure your perimeter is resilient, robust, and does what it needs to and not simply overlooked enabling and providing easy Access. #WhitethornShield #CyberInsurance #LloydsofLondon #DNS #InternetSecurity #PKI FBI Cyber Division GCHQ The White House

The Perilous Reality of FISA Section 702: Offense Over Defense Leaves Digital World Exposed, Vulnerable, and INSECURE. FISA Section 702 has grants unprecedented power to National Security Agency and other Intelligence Agencies. This in effect, enables full Command, Control, and Access of the global Internet. While touted as a tool for National Security, its unchecked focus on offense has left a dangerous void across all digital defense. The result? A playground ripe for cybercriminals who exploit the same tactics of surveillance and data harvesting. Recent events, such as the $22 million ransom paid by United Healthcare, underscore the urgent need for a reevaluation. It's time to shift the narrative from unchecked surveillance, or at the bare minimu, ensure fit for purpose and fortified basic security and defense. Without robust measures in place, the digital world remains perilously exposed to exploitation and manipulation. It's a wake-up call to the sound of screaming Klaxons to prioritize cybersecurity and safeguard our digital infrastructure before it's too late. #WhitethornShield FBI Cyber Division #PKI Federal Bureau of Investigation (FBI) The White House #InternetSecurity #DNS

The Psychological Dynamics Behind Organizational Systemic Insecurity. In the labyrinth of leadership corridors, a fascinating interplay of ancient instincts and modern dilemmas unfolds and sheds light on the curious paradox of systemic organizational insecurity. At the heart of this conundrum lie three psychological phenomena: Stone Age Brains, the Dictator Game, and Illusory Control. All are amplified by the intoxicating elixir of power. Stone Age Brains, remnants of our evolutionary past, whisper ancient tales of survival in the ears of contemporary decision-makers. In a world where scarcity once dictated life or death, the instinct to amass resources, wield control, and dominate remains ingrained within the neural circuitry of leaders. This primal urge, while once adaptive, becomes a double-edged sword in the context of modern organizations. Leaders prioritize personal gain and status over collective security, blinded by the allure of dominance. The Dictator Game was an experiment revealing humanity's propensity for self-interest at the expense of others. Participants endowed with power exhibit tendencies of exploitation and inequality, showcasing inherent flaws of unchecked authority. Within the corridors of corporate power, this phenomenon manifests as leaders who, emboldened by their positions, prioritize their own interests and ambitions above the welfare of their organization and its stakeholders. Their illusion of invincibility, fostered by years of unchallenged authority, renders them impervious to the consequences of their actions. Illusory Control, the cognitive bias that leads individuals to believe they have more control over events than they actually do, further exacerbates the situation. Leaders, cocooned within ivory towers of corporate hierarchy, perceive themselves as masters of their domains, capable of bending reality to their will. This inflated sense of control breeds complacency and hubris, blinding them to the lurking threats that jeopardize the security of their organizations. The most insidious force at play is the corrupting influence of power itself. Lord Acton famously remarked, "Power corrupts, and absolute power corrupts absolutely..." The intoxicating allure of power blinds leaders to the ethical implications of their decisions but also fosters a culture of hypocrisy where principles are sacrificed at the altar of expediency. Hypocrisy, coupled with the cognitive distortions of Stone Age Brains, the Dictator Game, and Illusory Control, creates a perfect storm of organizational insecurity. Despite investing billions in security infrastructure, organizations remain vulnerable. Not due to technological shortcomings, but because of the deeply ingrained psychological biases of those at the helm. Security is not merely a matter of technology, but a battle of the human psyche of leaders. #WhitethornShield FBI Cyber Division Federal Bureau of Investigation (FBI) The White House #InternetSecurity #DNS

Q: What do two separate Healthcare Groups, Medibank and UnitedHealth Group, major cyberattacks in two different continents, seperated by nearly a year and a half have in common? A: They both share the same Third Party providers' Exposed and Insecure Servers... These two attacks have impacted tens of millions of patients and clients and forced them into a viscious cycle of Insecurity Entrapment and exposing them continually to Cyber Crime. Are both guilty of failing their Duty of Care to patients? Sadly they are due to their lack of Duty and Care of their digital infrastructure. In both these major incidents with incredibly far reaching consequential and subsequential cyber crime for years to come. However, it is not due to the Health Care providers' medical prowess or negligence but the fact they 'Assumed' the Third-Party global tech giant also knew what they were doing in the field of basic security. Their Assumptions were and still are misplaced as the attachments demonstrate. David Koczkar and Andrew Witty are NOT guilty of negligence per se, however, they really should NOT believe the false and incorrect diagnosis. We would urge them to seek a Second Opinion along with every other Organization before it is too late. Misdiagnosis, collusion, cover-ups, even corruption cannot be ruled out. Security professionals and C -Suites must start to realize that the organizations Exposed and Insecure positions are not simply confined within their perimeter, but are being exploited via Insecure Third Party negligent tech Giants' servers. Culpability and Root Casue for these and thousands of other cyberattacks exploiting these Exposed and Insecure Servers is a near daily occurrence. Like a trusted Doctor incorrectly prescribing what turns out to be poison instead of medicine, Medibank and UnitedHealth Group are being given the WRONG medicine and at best are addressing symptoms whilst ignoring and neglecting the cause. How many more Healthcare groups need to suffer cyberattacks and people's lives put at risk we are unsure before people awaken from their induced Coma we are unsure. Until they do, Access via these Exposed and Insecure Servers will continue and cause $billions in costs and losses... #WhitethornShield #Healthcare #Insurance FBI Cyber Division Federal Bureau of Investigation (FBI) The White House #InternetSecurity #DNS #PKI

I love the way Senator Joshua David Hawley calls out the lying cheating secretary of the Department of Energy. The world needs more honesty and integrity. Senator Hawley I applaud you. #WhitethornShield #Watchhersquirm.