back to article What keeps Mandiant Intelligence EVP Sandra Joyce up at night? The coming storm

When Sandra Joyce, EVP of Mandiant Intelligence, describes the current threat landscape, it sounds like the perfect storm.  The threat intelligence firm, which is being acquired by Google Cloud, made its annual cybersecurity predictions for the year ahead. And this year, they all materialized at once. "We predicted supply- …

  1. amanfromMars 1 Silver badge

    Fiddling about around the Edge whilst Rome burns ..... a recipe for guaranteed disaster

    Of course, sometimes there remains a disconnect between knowing what should be done and actually doing it. But overall, enterprises are becoming more resilient because they realize the problem is not going away, Joyce said.

    Is that a tacit admission that such a catastrophic systemic vulnerability ..... not doing what should be done ....... is acceptable overall, with measures touting and providing resilience in the field the best that enterprises can expect from the likes of a Mandiant Intelligence/Google Cloud ‽ . That sounds like someone is selling expensive [$5.4bn]fake snake oil to me.

    And regarding the statement "This problem is getting bigger." ..... is there any problem getting bigger than the following one if nothing effective and remedial is to be done about it ..... or nothing effective and remedial can be done about without fcuking up everything crooked which most probably is the honest truth?

    Makes you wonder about who on Earth thought the present system was such a fantastic idea and what sort of folk think it great to mindlessly support and follow to horrendous crash and titanic collapse.

    But when a country faces an inflationary problem you can’t just pay more and spend more, you have to find ways of tackling the underlying causes of inflation. .... Boris Johnson

    The underlying cause of inflation is the capitalist system's worship and need for profit at every stage of a production and supply cycle [an arbitrary extra sum of money for nothing extra added] which forces the price of everything way above cost and eventually, very quickly, is everything too expensive to buy as every Tom, Dick and Harry adds a crippling percentage price rise on that which they provide.

    It aint rocket science FFS.

    And as that aint gonna be fixed any time soon, you can expect things to get considerably worse than they are now, with the very real likelihood of mass civil unrest verging on mirroring the likes of the Troubles and the revolutionary, only this time more accurately targeted against a comfortably well off rich enemy.

    That's one lesson learned from decades of explosive devices in working districts.

    It would be nice to be wrong about that being a possibility but don't be putting any money you cannot afford to lose on it not being so.

    That's the coming storm which will do more than just keep the likes of Mandiant Intelligence EVP Sandra Joyce up at night, methinks.

    1. chivo243 Silver badge

      Re: Fiddling about around the Edge whilst Rome burns ..... a recipe for guaranteed disaster

      +1

      It's all an "Infomercial" Buy our pig with lipstick...

      1. vtcodger Silver badge

        Re: Fiddling about around the Edge whilst Rome burns ..... a recipe for guaranteed disaster

        Actually, I believe the lipstick is extra and you need to buy a subscription. But not to worry, there's a free coupon in the crate for a two week supply,

  2. Anonymous Coward
    Anonymous Coward

    Where's the Body?

    When I read the headline my immediate thought went to another Professor Sue Black (aka Baroness Black of Strome), one of the UK's leading forensic anthropologists...

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like

  • We're now truly in the era of ransomware as pure extortion without the encryption
    Why screw around with cryptography and keys when just stealing the info is good enough

    Feature US and European cops, prosecutors, and NGOs recently convened a two-day workshop in the Hague to discuss how to respond to the growing scourge of ransomware.

    "Only by working together with key law enforcement and prosecutorial partners in the EU can we effectively combat the threat that ransomware poses to our society," said US assistant attorney general Kenneth Polite, Jr, in a canned statement.

    Earlier this month, at the annual RSA Conference, this same topic was on cybersecurity professionals' minds – and lips.

    Continue reading
  • China is trolling rare-earth miners online and the Pentagon isn't happy
    Beijing-linked Dragonbridge flames biz building Texas plant for Uncle Sam

    The US Department of Defense said it's investigating Chinese disinformation campaigns against rare earth mining and processing companies — including one targeting Lynas Rare Earths, which has a $30 million contract with the Pentagon to build a plant in Texas.

    Earlier today, Mandiant published research that analyzed a Beijing-linked influence operation, dubbed Dragonbridge, that used thousands of fake accounts across dozens of social media platforms, including Facebook, TikTok and Twitter, to spread misinformation about rare earth companies seeking to expand production in the US to the detriment of China, which wants to maintain its global dominance in that industry. 

    "The Department of Defense is aware of the recent disinformation campaign, first reported by Mandiant, against Lynas Rare Earth Ltd., a rare earth element firm seeking to establish production capacity in the United States and partner nations, as well as other rare earth mining companies," according to a statement by Uncle Sam. "The department has engaged the relevant interagency stakeholders and partner nations to assist in reviewing the matter.

    Continue reading
  • Cisco warns of security holes in its security appliances
    Bugs potentially useful for rogue insiders, admin account hijackers

    Cisco has alerted customers to another four vulnerabilities in its products, including a high-severity flaw in its email and web security appliances. 

    The networking giant has issued a patch for that bug, tracked as CVE-2022-20664. The flaw is present in the web management interface of Cisco's Secure Email and Web Manager and Email Security Appliance in both the virtual and hardware appliances. Some earlier versions of both products, we note, have reached end of life, and so the manufacturer won't release fixes; it instead told customers to migrate to a newer version and dump the old.

    This bug received a 7.7 out of 10 CVSS severity score, and Cisco noted that its security team is not aware of any in-the-wild exploitation, so far. That said, given the speed of reverse engineering, that day is likely to come. 

    Continue reading
  • Inside the RSAC expo: Buzzword bingo and the bear in the room
    We mingle with the vendors so you don't have to

    RSA Conference Your humble vulture never liked conference expos – even before finding myself on the show floor during a global pandemic. Expo halls are a necessary evil that are predominatly visited to find gifts to bring home to the kids. 

    Do organizations really choose security vendors based on a booth? The whole expo hall idea seems like an outdated business model – for the vendors, anyway. Although the same argument could be made for conferences in general.

    For the most part, all of the executives and security researchers set up shop offsite – either in swanky hotels and shared office space (for the big-wigs) or at charming outdoor chess tables in Yerba Buena Gardens. Many of them said they avoided the expo altogether.

    Continue reading
  • RSAC branded a 'super spreader event' as attendees share COVID-19 test results
    That, and Black Hat, are about to reveal risk assessment skills of our cyber-risk experts

    RSA Conference Quick show of hands: who came home from this year's RSA Conference without COVID-19?

    The cybersecurity event's organizers say they're not keeping count of attendees who say they've been hit with the coronavirus. Meanwhile, a growing number of folks have taken to Twitter to post photos and reports of positive test results after attending the conference. 

    Continue reading
  • Ukraine's secret cyber-defense that blunts Russian attacks: Excellent backups
    This is why Viasat attack – rated one of the biggest ever of its kind – had relatively little impact

    RSA Conference The Kremlin-backed cyberattack against satellite communications provider Viasat, which happened an hour before Russia invaded Ukraine, was "one of the biggest cyber events that we have seen, perhaps ever, and certainly in warfare," according to Dmitri Alperovitch, a co-founder and former CTO of CrowdStrike and chair of security-centric think tank Silverado Policy Accelerator.

    Alperovitch shared that opinion during a global threat briefing he delivered with Sandra Joyce, EVP of Mandiant Intelligence, at the RSA Conference on Tuesday.

    The two suggested that the primary purpose of the attack on satellite comms provider Viasat was to disrupt Ukrainian communications during the invasion, by wiping the modems' firmware remotely, it also disabled thousands of small-aperture terminals in Ukraine and across Europe. The attack therefore disrupted satellite connectivity for thousands, and disabled remote monitoring of 5,800 wind turbines in Germany.  

    Continue reading
  • Threat and risk specialists signal post-COVID conference season is back on
    Well, we'll see in a week or so

    RSA Conference For the first time in over two years the streets of San Francisco have been filled by attendees at the RSA Conference and it seems that the days of physical cons are back on.

    The security conference trade has been more cautious than most when it comes to getting conferences back up to speed in the COVID years. Almost all cons were virtual with a very limited hybrid-conference season last year, including DEF CON, where masks were taken seriously. People still wanted to mingle and ShmooCon too went ahead, albeit later than usual in March.

    The RSA conference has been going for over 30 years and many security folks love going. There are usually some good talks, it's a chance to meet old friends, and certain pubs host meetups where more constructive work gets done on hard security ideas than a month or so of Zoom calls.

    Continue reading
  • Cisco EVP: We need to lift everyone above the cybersecurity poverty line
    It's going to become a human-rights issue, Jeetu Patel tells The Register

    RSA Conference Exclusive Establishing some level of cybersecurity measures across all organizations will soon reach human-rights issue status, according to Jeetu Patel, Cisco EVP for security and collaboration.

    "It's our civic duty to ensure that everyone below the security poverty line has a level of safety, because it's gonna eventually get to be a human-rights issue," Patel told The Register, in an exclusive interview ahead of his RSA Conference keynote. 

    "This is critical infrastructure — financial services, health care, transportation — services like your water supply, your power grid, all of those things can stop in an instant if there's a breach," he said. 

    Continue reading
  • World Economic Forum wants a global map of online crime
    Will cyber crimes shrug off Atlas Initiative? Objectively, yes

    RSA Conference An ambitious project spearheaded by the World Economic Forum (WEF) is working to develop a map of the cybercrime ecosystem using open source information.

    The Atlas initiative, whose contributors include Fortinet and Microsoft and other private-sector firms, involves mapping the relationships between criminal groups and their infrastructure with the end goal of helping both industry and the public sector — law enforcement and government agencies — disrupt these nefarious ecosystems.  

    This kind of visibility into the connections between the gang members can help security researchers identify vulnerabilities in the criminals' supply chain to develop better mitigation strategies and security controls for their customers. 

    Continue reading
  • CISA and friends raise alarm on critical flaws in industrial equipment, infrastructure
    Nearly 60 holes found affecting 'more than 30,000' machines worldwide

    Updated Fifty-six vulnerabilities – some deemed critical – have been found in industrial operational technology (OT) systems from ten global manufacturers including Honeywell, Ericsson, Motorola, and Siemens, putting more than 30,000 devices worldwide at risk, according to private security researchers. 

    Some of these vulnerabilities received CVSS severity scores as high as 9.8 out of 10. That is particularly bad, considering these devices are used in critical infrastructure across the oil and gas, chemical, nuclear, power generation and distribution, manufacturing, water treatment and distribution, mining and building and automation industries. 

    The most serious security flaws include remote code execution (RCE) and firmware vulnerabilities. If exploited, these holes could potentially allow miscreants to shut down electrical and water systems, disrupt the food supply, change the ratio of ingredients to result in toxic mixtures, and … OK, you get the idea.

    Continue reading

Biting the hand that feeds IT © 1998–2022