These updates are shared to help raise the situational awareness of Faith-Based organizations to best defend against and mitigate the impacts from all-hazards threats including physical security, cybersecurity, and natural disasters.
Moody Bible Institute (MBI) is dealing with a significant data breach after the cybercriminal group ShinyHunters targeted the organization in a “pay-or-leak” extortion campaign, resulting in the public exposure of data associated with more than 2.3 million individuals. According to reporting by The Register, the leaked information includes names, dates of birth, email and physical addresses, phone numbers, gender and marital status details, as well as records related to donors, supporters, students, and alumni. The information has been uploaded to Have I Been Pwned, though MBI has not posted any updates to their original announcement, posted on June 22, one day before ShinyHunters leaked the data.
Analyst Comment: While Houses of Worship (HOWs) and other religious institutions can sometimes feel as if their relative size and anonymity compared to large businesses or government organizations might protect them from being targeted by cyber criminals, incidents like these demonstrate that this is not the case. Cyber criminals target organizations with specific characteristics and HOWs can match these characteristics just like any other victim. Members should develop their cybersecurity posture accordingly.
A Washington, D.C., pastor is questioning the city’s decision to end its partnership with the T.R.I.G.G.E.R. Project, a violence-prevention program, after a shooting during an orientation session held at Peace Baptist Church. According to the report, an argument among participants escalated into gunfire, leaving two people injured, and police later found a 16-year-old program participant in possession of two firearms. Despite the incident, Pastor Michael Bell and other community leaders argued that the nearly decade-old program has a strong record of violence intervention and youth support, warning that cutting funding and partnerships based on a single event could harm at-risk young people who need such services.
Analyst Comment: Faith based organizations should be aware of the risk to funding that could occur from security failures during the various programs they offer. Some programs, such as ones that bring firearms on the property, can create security concerns even when the activity is planned. Preparedness is key in order to avoid potential injury to attendees, which requires thoughtful discussion and processes that enables staff members or volunteers to recognize and divert potentially concerning situations.
The Gate 15 Security Sprint is a weekly rundown of the week’s notable all-hazards security news, risks and threats and some of the key focus areas for organizations to consider behind the headlines. Gate 15 team members discuss physical security, cybersecurity, natural hazards, health threats and other issues across our environment.
In this week’s Weekly Security Sprint Dave and Andy celebrate America and talk about how resilience requires an all-hazards mindset, natural hazards, evolving extremist recruitment trends, and recent ransomware activity.
Information on other Gate 15 podcasts can be found at Podcasts (gate15.global).
The FB-ISAO’s sponsor Gate 15 publishes a daily newsletter called the SUN. Curated from their open source intelligence collection process, the SUN informs leaders and analysts with the critical news of the day and provides a holistic look at the current global, all-hazards threat environment. Ahead of the daily news cycle, the SUN allows current situational awareness into the topics that will impact your organization.