This DAP highlights – ODNI report – Uyghur Genocide and Concentrated Reeducation Camps in the Xinjiang Uyghur Autonomous Region of the People’s Republic of China / Gate 15’s Weekly Security Sprint EP 89 - Post election texts, terror arrests and threats, and compromised emails / USCIRF hearing – Addressing Entities of Particular Concern: Non-State Actors and Egregious Violations of Religious Freedom. DAP also has More Faith-Based Stories and Select All-Hazard Stories. These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.
Faith-Based Daily Awareness Post 24 August 2023
Faith-Based Security Headlines
These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against, and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.
Cole & Van Note Announces First Colony Church of Christ Data Breach Investigation.
Cole & Van Note, a leading consumer rights law firm, announced today its investigation of First Colony Church of Christ on behalf of its consumers/clients, arising out the company’s recent data breach. According to the company, the private information of a massive number of people may have been stolen in the hacking of its information network. It is currently unknown how many people have had their information used for criminal purposes.
Analyst Comment:
FBO’s continue to be a rich target for data breaches and other cyber attacks such as ransomware. Whether it’s due to the valuable data many FBO’s steward (making them a direct target) or vulnerabilities in cyber defenses (making them a target of opportunity) – or a combination of both, it’s important for FBO’s to secure the systems and educate staff to protect the data they are entrusted. One of the more practical resources to help FBO’s enhance cybersecurity are the CISA Cross-Sector Cybersecurity Performance Goals (CPGs). The CPGs are a baseline, prioritized set of manageable cybersecurity practices to improve cybersecurity maturity.
Suspected PRC Cyber Actors Continue to Globally Exploit Barracuda ESG Zero-Day Vulnerability
The FBI Cyber Division published a TLP:CLEAR FLASH (AC-000172-TT) emphasizing the Barracuda warning from early June to immediately replace impacted appliances.
As a part of the FBI investigation into the exploitation of CVE-2023-2868, a zero-day vulnerability in Barracuda Network’s Email Security Gateway (ESG) appliances, the FBI has independently verified that all exploited ESG appliances, even those with patches pushed out by Barracuda, remain at risk for continued computer network compromise from suspected PRC cyber actors exploiting this vulnerability. The FBI strongly advises all affected ESG appliances be isolated and replaced immediately.
Analyst Comment:
Action strongly suggested. Barracuda Email Security Gateway is a popular network security appliance. As such, faith-based organizations which use and have not already isolated or replaced impacted Barracuda Email Security Gateway (ESG) appliances are encouraged to address immediately. Members are highly encouraged to check with technology teams or service providers to confirm this has been addressed.
Although suspected Chinese PRC cyber actors are less likely to target an FBO, because this vulnerability is widely known, unprotected/unpatched/non-isolated appliances can become a target of opportunity from other types of cyber threat actors.
More Faith-Based Stories
Event: DHS Center for Faith-Based and Neighborhood Partnerships – Protecting Places of Worship Network: An Initiative of the DHS Center for Faith-Based and Neighborhood Partnerships. Aug 29, 2023 03:00 PM in Eastern Time (US and Canada).
MI: Vandals damage sacred symbols in Holy Family Catholic Church
FL: Fire destroys church in Altha
FLORIDA CHURCH LOSES YOUTH BUILDING IN SUSPECTED ARSON
OH: Four arrested for breaking and entering church with 6-year-old child
FL: Jacksonville man pleads to deleting messages with man FBI probed over anti-Jewish threat
NY: SWASTIKAS DISCOVERED NEAR LONG ISLAND HOLOCAUST MEMORIAL INVESTIGATED AS HATE CRIME
ILLINOIS PAIR CHARGED WITH HATE CRIME FOR SPRAY PAINTING ANTISEMITIC SLURS
POLICE INVESTIGATING ANTI-JEWISH ‘GOYIM DEFENSE LEAGUE’ (GDL) FLYERS DISCOVERED IN VIRGINIA TOWN
SWASTIKAS DEFACE VIRGINIA NEIGHBORHOOD
MA: Jewish groups get $2.85 million in funds to strengthen security at temples, schools
Church Sues California County Over Alleged Covid-19 Geofencing
Jackson close to settling antisemitism lawsuit with NJ Attorney General
George Washington University Still Has an Anti-Semitism Problem
Virginia Beach pastor John Blanchard’s record expunged in Chesterfield County
Northern Ireland: Nazi flags erected near Mosque in Dunmurry condemned
UK: Vandals wrecking spree at synagogue cemetery
UK: Heartbreak as vandals smash graves in Solihull
Muslim teens confess plan to attack Austrian middle school, ‘shoot all the Christians’
Terrorists Kill Two, Burn Down Church and Ten Homes in Kenya
AF: ERITREA: 13 CHRISTIAN PRISONERS OF FAITH RELEASED
‘Killing Christians Takes Us to Paradise’: The Persecution of Christians, July 2023
Pakistan Christians in fear after blasphemy allegations trigger violence
Mob vandalizes Delhi church during Sunday mass and beats churchgoers, including women
‘Callous’ headmistress jailed for abuse at Australian Jewish school
Select All-Hazards Stories
Donald Trump to surrender in Atlanta in fourth criminal case brought against ex-president this year
FACTSHEET: ILLEGAL ENCOUNTERS AT SOUTHWEST BORDER JUMP FROM JUNE AS BORDER CRISIS CONTINUES
‘Salad Bar Extremism’ as White Distraction: The (In)coherence of a Category
National Weather Service: Still Hot But A Change Is Coming for Some Locations; Harold Remnants.
Tropical Storm Franklin Strikes Dominican Republic, Killing 1
Multiple People Swept Away In Las Vegas Flash Floods
NewsGuard Misinformation Monitor August: Plagiarism-Bot? How Low-Quality Websites Are Using AI to Deceptively Rewrite Content from Mainstream News Outlets
Tourists Give Themselves Away by Looking Up. So Do Most Network Intruders.
The Hidden Dangers of Public Wi-Fi
New “Whiffy Recon” Malware Triangulates Infected Device Location via Wi-Fi Every Minute
Ransomware Vs. Malware: What’s The Difference?
How to spot you’re on a hacked website
Cybercriminals turn to AI to bypass modern email security measures
Artificial Intelligence and USBs Drive 8% Rise in Cyber-Attacks
New Akira Ransomware Targets Businesses via Exploited CISCO VPNs
Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit
DuoLingo investigating dark web post offering data from 2.6 million accounts
First Weekly Chrome Security Update Patches High-Severity Vulnerabilities
Sextortion Scams Surge 178% in a Year
Google Chrome security advisory (AV23-498)
HPE security advisory (AV23-499)
More Security-focused Content
The FB-ISAO’s sponsor Gate 15 publishes a free daily newsletter called the SUN. Curated from their open source intelligence collection process, the SUN informs leaders and analysts with the critical news of the day and provides a holistic look at the current global, all-hazards threat environment. Ahead of the daily news cycle, the SUN allows current situational awareness into the topics that will impact your organization. To sign-up for The SUN, please sign up below.
This DAP highlights – The First Colony Church of Christ data breach investigation, the importance of addressing vulnerable Barracuda appliances, and more! Every DAP also has More Faith-Based Stories and Select All-Hazard Stories. These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.
Add Your Heading Text Here
Related Posts
