Dr. Paul de Souza's Recent LinkedIn Posts

🇺🇸𝗝𝗨𝗦𝗧 𝗥𝗘𝗟𝗘𝗔𝗦𝗘𝗗:The Trump Administration’s New National Cybersecurity Strategy: 𝗧𝗛𝗘 𝗦𝗜𝗫 𝗣𝗜𝗟𝗟𝗔𝗥𝗦. 🟦 𝗣𝗜𝗟𝗟𝗔𝗥 𝟭: 𝗦𝗛𝗔𝗣𝗘 𝗔𝗗𝗩𝗘𝗥𝗦𝗔𝗥𝗬 𝗕𝗘𝗛𝗔𝗩𝗜𝗢𝗥 • DETERRENCE AND DISRUPTION • DEFENSIVE AND OFFENSIVE CYBER OPERATIONS • RAISE COSTS WITH FULL NATIONAL POWER • DENY CYBERCRIMINAL SAFE HAVEN • WORK WITH DEMOCRATIC ALLIES 🟦 𝗣𝗜𝗟𝗟𝗔𝗥 𝟮: 𝗣𝗥𝗢𝗠𝗢𝗧𝗘 𝗖𝗢𝗠𝗠𝗢𝗡-𝗦𝗘𝗡𝗦𝗘 𝗥𝗘𝗚𝗨𝗟𝗔𝗧𝗜𝗢𝗡 • REDUCE COMPLIANCE BURDENS • STREAMLINE CYBER AND DATA RULES • IMPROVE REGULATOR-INDUSTRY ALIGNMENT • ADDRESS LIABILITY CONCERNS • PRESERVE PRIVACY RIGHTS 🟦 𝗣𝗜𝗟𝗟𝗔𝗥 𝟯: 𝗠𝗢𝗗𝗘𝗥𝗡𝗜𝗭𝗘 𝗔𝗡𝗗 𝗦𝗘𝗖𝗨𝗥𝗘 𝗙𝗘𝗗𝗘𝗥𝗔𝗟 𝗚𝗢𝗩𝗘𝗥𝗡𝗠𝗘𝗡𝗧 𝗡𝗘𝗧𝗪𝗢𝗥𝗞𝗦 • ZERO-TRUST ARCHITECTURE • POST-QUANTUM CRYPTOGRAPHY • CLOUD TRANSITION • CONTINUOUS TESTING AND THREAT HUNTING • AI-ENABLED CYBERSECURITY TOOLS • FASTER, SMARTER PROCUREMENT 🟦 𝗣𝗜𝗟𝗟𝗔𝗥 𝟰: 𝗦𝗘𝗖𝗨𝗥𝗘 𝗖𝗥𝗜𝗧𝗜𝗖𝗔𝗟 𝗜𝗡𝗙𝗥𝗔𝗦𝗧𝗥𝗨𝗖𝗧𝗨𝗥𝗘 • PROTECT ENERGY, FINANCE, TELECOM, WATER, HOSPITALS, AND DATA CENTERS • SECURE IT AND OT ENVIRONMENTS • STRENGTHEN SUPPLY CHAINS • MOVE AWAY FROM ADVERSARY VENDORS • IMPROVE RESILIENCE AND RAPID RECOVERY • SUPPORT STATE, LOCAL, TRIBAL, AND TERRITORIAL PARTNERS 🟦 𝗣𝗜𝗟𝗟𝗔𝗥 𝟱: 𝗦𝗨𝗦𝗧𝗔𝗜𝗡 𝗦𝗨𝗣𝗘𝗥𝗜𝗢𝗥𝗜𝗧𝗬 𝗜𝗡 𝗖𝗥𝗜𝗧𝗜𝗖𝗔𝗟 𝗔𝗡𝗗 𝗘𝗠𝗘𝗥𝗚𝗜𝗡𝗚 𝗧𝗘𝗖𝗛𝗡𝗢𝗟𝗢𝗚𝗜𝗘𝗦 • SECURE INNOVATION AND SUPPLY CHAINS • PROTECT AI SYSTEMS AND DATA CENTERS • SUPPORT BLOCKCHAIN AND SECURE DIGITAL TECHNOLOGIES • ADVANCE POST-QUANTUM AND QUANTUM SECURITY • USE CYBER DIPLOMACY TO SHAPE TECHNOLOGICAL COMPETITION • DEFEND AGAINST CENSORSHIP AND SURVEILLANCE-ORIENTED FOREIGN PLATFORMS 🟦 𝗣𝗜𝗟𝗟𝗔𝗥 𝟲: 𝗕𝗨𝗜𝗟𝗗 𝗧𝗔𝗟𝗘𝗡𝗧 𝗔𝗡𝗗 𝗖𝗔𝗣𝗔𝗖𝗜𝗧𝗬 • EXPAND THE CYBER WORKFORCE PIPELINE • CONNECT ACADEMIA, INDUSTRY, GOVERNMENT, AND MILITARY • TRAIN CURRENT PROFESSIONALS • RECRUIT THE NEXT GENERATION • REMOVE INSTITUTIONAL BARRIERS TO SCALE TALENT Check out the full strategy breakdown in the comments below! 👇 Cyber Security Forum Initiative The White House

I’d like to share a 𝗽𝗲𝗿𝘀𝗼𝗻𝗮𝗹 𝘂𝗽𝗱𝗮𝘁𝗲. I underwent a 𝗰𝗮𝘁𝗵 𝗹𝗮𝗯 𝗽𝗿𝗼𝗰𝗲𝗱𝘂𝗿𝗲 today, and I am 𝗴𝗿𝗮𝘁𝗲𝗳𝘂𝗹 for the 𝗰𝗮𝗿𝗲, the 𝗰𝗹𝗮𝗿𝗶𝘁𝘆, and the reminder that 🫀𝗵𝗲𝗮𝗿𝘁 𝗵𝗲𝗮𝗹𝘁𝗵 deserves our 𝗳𝘂𝗹𝗹 𝗮𝘁𝘁𝗲𝗻𝘁𝗶𝗼𝗻. 💚 For many of us 𝗮𝗳𝘁𝗲𝗿 𝟱𝟬, especially when 𝘀𝘆𝗺𝗽𝘁𝗼𝗺𝘀, 𝗳𝗮𝗺𝗶𝗹𝘆 𝗵𝗶𝘀𝘁𝗼𝗿𝘆, or 𝗿𝗶𝘀𝗸 𝗳𝗮𝗰𝘁𝗼𝗿𝘀 raise concern, getting 𝗰𝗹𝗮𝗿𝗶𝘁𝘆 matters. As 𝗽𝗹𝗮𝗾𝘂𝗲 builds up, 𝗮𝗿𝘁𝗲𝗿𝗶𝗲𝘀 can narrow and reduce or block 𝗯𝗹𝗼𝗼𝗱 𝗳𝗹𝗼𝘄. 𝗖𝗮𝗿𝗱𝗶𝗮𝗰 𝗰𝗮𝘁𝗵𝗲𝘁𝗲𝗿𝗶𝘇𝗮𝘁𝗶𝗼𝗻 with 𝗰𝗼𝗿𝗼𝗻𝗮𝗿𝘆 𝗮𝗻𝗴𝗶𝗼𝗴𝗿𝗮𝗽𝗵𝘆 allows physicians to look for 𝗻𝗮𝗿𝗿𝗼𝘄𝗲𝗱 or 𝗯𝗹𝗼𝗰𝗸𝗲𝗱 𝗰𝗼𝗿𝗼𝗻𝗮𝗿𝘆 𝗮𝗿𝘁𝗲𝗿𝗶𝗲𝘀 — 𝟭𝟬𝟬%! 🩺 ⚠️Our cyber industry must become more heart healthy. 𝗟𝗼𝗻𝗴 𝗵𝗼𝘂𝗿𝘀, 𝗰𝗼𝗻𝘀𝘁𝗮𝗻𝘁 𝗽𝗿𝗲𝘀𝘀𝘂𝗿𝗲, 𝗽𝗼𝗼𝗿 𝘀𝗹𝗲𝗲𝗽, 𝘁𝗼𝗼 𝗺𝘂𝗰𝗵 𝘀𝗶𝘁𝘁𝗶𝗻𝗴, 𝗮𝗻𝗱 𝗰𝗵𝗿𝗼𝗻𝗶𝗰 𝘀𝘁𝗿𝗲𝘀𝘀 𝗮𝗿𝗲 𝗡𝗢𝗧 𝗯𝗮𝗱𝗴𝗲𝘀 𝗼𝗳 𝗵𝗼𝗻𝗼𝗿.They are risk multipliers. Take care of your heart with the same discipline you bring to your mission. 𝓘 𝓼𝓱𝓪𝓻𝓮 𝓽𝓱𝓲𝓼 𝓫𝓮𝓬𝓪𝓾𝓼𝓮 𝓹𝓻𝓮𝓿𝓮𝓷𝓽𝓲𝓸𝓷 𝓶𝓪𝓽𝓽𝓮𝓻𝓼, 𝓪𝓷𝓭 𝓘 𝓱𝓸𝓹𝓮 𝓶𝔂 𝓮𝔁𝓹𝓮𝓻𝓲𝓮𝓷𝓬𝓮 𝓮𝓷𝓬𝓸𝓾𝓻𝓪𝓰𝓮𝓼 𝓸𝓽𝓱𝓮𝓻𝓼 𝓽𝓸 𝓽𝓪𝓴𝓮 𝓽𝓱𝓮𝓲𝓻 𝓱𝓮𝓪𝓻𝓽 𝓱𝓮𝓪𝓵𝓽𝓱 𝓼𝓮𝓻𝓲𝓸𝓾𝓼𝓵𝔂 𝓷𝓸𝔀. My sincere thanks to 🇺🇸 Dr. Eugene K. Soh, MD for his exceptional care, professionalism, and for being the best cardiologist I could have asked for. ❤️Carient Heart & Vascular❤️

🇮🇱Israeli reporting alleges “𝗻𝗲𝗮𝗿𝗹𝘆 𝗮𝗹𝗹” 𝗧𝗲𝗵𝗿𝗮𝗻 𝘁𝗿𝗮𝗳𝗳𝗶𝗰 𝗰𝗮𝗺𝗲𝗿𝗮𝘀 were compromised; footage was 𝗲𝗻𝗰𝗿𝘆𝗽𝘁𝗲𝗱 and sent to 𝘀𝗲𝗿𝘃𝗲𝗿𝘀 in 𝗧𝗲𝗹 𝗔𝘃𝗶𝘃 / 𝘀𝗼𝘂𝘁𝗵𝗲𝗿𝗻 𝗜𝘀𝗿𝗮𝗲𝗹; analytics supported 👉“𝗽𝗮𝘁𝘁𝗲𝗿𝗻 𝗼𝗳 𝗹𝗶𝗳𝗲”👈 development; and Israel allegedly 𝗱𝗶𝘀𝗿𝘂𝗽𝘁𝗲𝗱 𝗰𝗲𝗹𝗹𝘂𝗹𝗮𝗿 𝗮𝗻𝘁𝗲𝗻𝗻𝗮𝘀 to prevent updates reaching 𝗞𝗵𝗮𝗺𝗲𝗻𝗲𝗶’𝘀 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗱𝗲𝘁𝗮𝗶𝗹. 𝗖𝗔𝗡 𝗦𝗠𝗔𝗥𝗧-𝗖𝗜𝗧𝗬 𝗖𝗖𝗧𝗩 𝗕𝗘 𝗛𝗔𝗖𝗞𝗘𝗗 𝗔𝗡𝗗 𝗖𝗢𝗡𝗧𝗥𝗢𝗟𝗟𝗘𝗗 𝗥𝗘𝗠𝗢𝗧𝗘𝗟𝗬? 💯 𝗬𝗘𝗦. I’ve seen this capability firsthand while overseas a few years back. 𝗪𝗵𝘆 𝗶𝘁 𝗺𝗮𝘁𝘁𝗲𝗿𝘀 (𝗱𝗲𝗳𝗲𝗻𝗱𝗲𝗿 𝗹𝗲𝗻𝘀) 📌Smart-city CCTV/traffic systems can become strategic intelligence sensors when paired with analytics. 📌Comms disruption + surveillance visibility can accelerate decision advantage in fast-moving campaigns. 𝗣𝗮𝗿𝗮𝗹𝗹𝗲𝗹 𝗰𝗮𝘀𝗲 𝘀𝘁𝘂𝗱𝘆: 𝗪𝗮𝘀𝗵𝗶𝗻𝗴𝘁𝗼𝗻, 𝗗.𝗖. (𝟮𝟬𝟭𝟳) 🇺🇸 Just days before the Presidential Inauguration, attackers reportedly compromised 123 of 187 (~65%) outdoor surveillance cameras operated by the D.C. Metropolitan Police Department, a reminder that public safety video ecosystems can be a high-impact target. ✔️𝗗𝗜𝗦𝗖𝗟𝗔𝗜𝗠𝗘𝗥 (𝗢𝗦𝗜𝗡𝗧 𝗢𝗡𝗟𝗬) This post is based 𝟭𝟬𝟬% on 𝗽𝘂𝗯𝗹𝗶𝗰𝗹𝘆 𝗮𝘃𝗮𝗶𝗹𝗮𝗯𝗹𝗲 𝗼𝗽𝗲𝗻-𝘀𝗼𝘂𝗿𝗰𝗲 𝗿𝗲𝗽𝗼𝗿𝘁𝗶𝗻𝗴 for 𝗦𝗔 and 𝗱𝗲𝗳𝗲𝗻𝘀𝗶𝘃𝗲 𝗿𝗶𝘀𝗸 𝗮𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁. I claim 𝗻𝗼 𝗶𝗻𝘀𝗶𝗱𝗲𝗿/𝗰𝗹𝗮𝘀𝘀𝗶𝗳𝗶𝗲𝗱 𝗮𝗰𝗰𝗲𝘀𝘀 and make 𝗻𝗼 𝗮𝘁𝘁𝗿𝗶𝗯𝘂𝘁𝗶𝗼𝗻 or claims of 𝗼𝗽𝗲𝗿𝗮𝘁𝗶𝗼𝗻𝗮𝗹 𝗿𝗲𝘀𝗽𝗼𝗻𝘀𝗶𝗯𝗶𝗹𝗶𝘁𝘆. ✔️𝗕𝗔𝗡𝗡𝗘𝗥 𝗗𝗜𝗦𝗖𝗟𝗔𝗜𝗠𝗘𝗥 𝗙𝗢𝗥 𝗩𝗜𝗦𝗨𝗔𝗟 𝗘𝗙𝗙𝗘𝗖𝗧. 𝗡𝗢 𝗔𝗧𝗧𝗥𝗜𝗕𝗨𝗧𝗜𝗢𝗡. 🧭Confidence reflects 𝗦𝗼𝘂𝗿𝗰𝗲 𝗾𝘂𝗮𝗹𝗶𝘁𝘆 + 𝗰𝗼𝗿𝗿𝗼𝗯𝗼𝗿𝗮𝘁𝗶𝗼𝗻, not certainty. Without public 𝗳𝗼𝗿𝗲𝗻𝘀𝗶𝗰 𝗮𝗿𝘁𝗶𝗳𝗮𝗰𝘁𝘀 (samples, hashes, infrastructure, logs), I assess attribution as 𝗹𝗼𝘄 𝗰𝗼𝗻𝗳𝗶𝗱𝗲𝗻𝗰𝗲 and focus on 𝗱𝗲𝗳𝗲𝗻𝘀𝗲-𝗯𝘆-𝗲𝗳𝗳𝗲𝗰𝘁𝘀 (resilience, monitoring, risk reduction). 𝗦𝗼𝘂𝗿𝗰𝗲𝘀 ➊ https://lnkd.in/eiQYf2qx ➋ https://lnkd.in/ekVmfWyk ➌ https://lnkd.in/eUHA4MpK Cyber Security Forum Initiative #CSFI #CTI CSFI Cyber Threat Intelligence Division (CSFI-CTID) #CTID

🇺🇸 𝐏𝐫𝐞𝐬𝐢𝐝𝐞𝐧𝐭 𝐃𝐨𝐧𝐚𝐥𝐝 𝐉. 𝐓𝐫𝐮𝐦𝐩 𝐔𝐧𝐯𝐞𝐢𝐥𝐬 𝐍𝐚𝐭𝐢𝐨𝐧𝐚𝐥 𝐀𝐈 𝐋𝐞𝐠𝐢𝐬𝐥𝐚𝐭𝐢𝐯𝐞 𝐅𝐫𝐚𝐦𝐞𝐰𝐨𝐫𝐤. What stands out to me is that this is not a comprehensive set of new AI rules; but rather a strategic framework to centralize authority under federal oversight. It rejects a new federal AI rulemaking body, leans on sector regulators and industry-led standards, and tries to replace a fragmented patchwork of state regimes with a national baseline. I think both camps are partly right. The innovation side is right that a fragmented fifty-state patchwork will slow deployment and weaken U.S. competitiveness. The governance side is right that legitimacy cannot rest on 𝐬𝐩𝐞𝐞𝐝, 𝐬𝐥𝐨𝐠𝐚𝐧𝐬, 𝐨𝐫 𝐯𝐨𝐥𝐮𝐧𝐭𝐚𝐫𝐲 𝐬𝐭𝐚𝐧𝐝𝐚𝐫𝐝𝐬 𝐚𝐥𝐨𝐧𝐞. ⚖️ 𝐌𝐲 𝐭𝐚𝐤𝐞 𝐨𝐧 𝐭𝐡𝐢𝐬 𝐢𝐬 𝐬𝐢𝐦𝐩𝐥𝐞: build a *thin* but credible federal layer, keep sector-specific accountability where harm is concrete, and judge success by 𝐭𝐫𝐮𝐬𝐭, 𝐫𝐞𝐬𝐢𝐥𝐢𝐞𝐧𝐜𝐞, 𝐚𝐧𝐝 𝐚𝐝𝐨𝐩𝐭𝐢𝐨𝐧. 𝐓𝐡𝐞 𝐫𝐞𝐚𝐥 𝐭𝐞𝐬𝐭 is whether Congress can create coherence without creating a vacuum. 📌𝐍𝐎𝐓𝐄: Opinions expressed are my own and do not reflect the views or positions of CSFI or any organizations I represent. 𝐅𝐨𝐫 𝐚 𝐝𝐞𝐛𝐚𝐭𝐞 𝐨𝐫 𝐝𝐢𝐬𝐜𝐮𝐬𝐬𝐢𝐨𝐧: Can the US government achieve AI policy consistency without sacrificing oversight? Overall, I believe we are making progress here! 👇 𝐀𝐜𝐜𝐞𝐬𝐬 𝐀𝐈 𝐅𝐫𝐚𝐦𝐞𝐰𝐨𝐫𝐤 𝐢𝐧 𝐭𝐡𝐞 𝐜𝐨𝐦𝐦𝐞𝐧𝐭𝐬 𝐛𝐞𝐥𝐨𝐰! 👇 The White House US Congress #AI #policy #cyber 🔄 Repost 💬 Comment

🇮🇷 𝐓𝐇𝐈𝐒 𝐖𝐀𝐒 𝐍𝐎𝐓 𝐉𝐔𝐒𝐓 𝐀 𝐇𝐀𝐂𝐊, 𝐈𝐓 𝐖𝐀𝐒 𝐀 𝐂𝐋𝐄𝐀𝐑 𝐂𝐀𝐒𝐄 𝐒𝐓𝐔𝐃𝐘 𝐈𝐍 𝐌𝐎𝐃𝐄𝐑𝐍 𝐂𝐘𝐁𝐄𝐑 𝐖𝐀𝐑𝐅𝐀𝐑𝐄. The *Handala Hack Team* publicly claimed, and reporting indicates, unauthorized access to the personal Gmail account of Kash Patel, followed by the online release of hundreds of emails and personal files. The 🇺🇸FBI confirmed the targeting and stated the exposed material was “historical” and contained NO government information. But the strategic lesson is much bigger than the mailbox. ⚠️ ⬛ 𝐓𝐡𝐢𝐬 𝐢𝐧𝐜𝐢𝐝𝐞𝐧𝐭 𝐬𝐡𝐨𝐰𝐬 𝐡𝐨𝐰 𝐦𝐨𝐝𝐞𝐫𝐧 𝐜𝐲𝐛𝐞𝐫 𝐰𝐚𝐫𝐟𝐚𝐫𝐞 𝐰𝐨𝐫𝐤𝐬: ➜ 𝐈𝐝𝐞𝐧𝐭𝐢𝐭𝐲-𝐜𝐞𝐧𝐭𝐫𝐢𝐜 𝐢𝐧𝐭𝐫𝐮𝐬𝐢𝐨𝐧 against a softer personal asset ➜ 𝐇𝐚𝐜𝐤-𝐚𝐧𝐝-𝐥𝐞𝐚𝐤 𝐩𝐬𝐲𝐜𝐡𝐨𝐥𝐨𝐠𝐢𝐜𝐚𝐥 𝐨𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬 designed for coercion, embarrassment, and narrative impact ➜ 𝐀𝐝𝐣𝐚𝐜𝐞𝐧𝐭 𝐝𝐞𝐬𝐭𝐫𝐮𝐜𝐭𝐢𝐯𝐞 𝐜𝐚𝐩𝐚𝐛𝐢𝐥𝐢𝐭𝐲, with parallel reporting on Iran-aligned wiper-style disruption through cloud and control-plane abuse ⬛ 𝐓𝐡𝐞 𝐭𝐫𝐚𝐝𝐞𝐜𝐫𝐚𝐟𝐭 𝐢𝐬 𝐰𝐡𝐚𝐭 𝐝𝐞𝐟𝐞𝐧𝐝𝐞𝐫𝐬 𝐬𝐡𝐨𝐮𝐥𝐝 𝐟𝐨𝐜𝐮𝐬 𝐨𝐧. The FBI FLASH describes actionable malware behavior and file IOCs tied to a 𝐦𝐮𝐥𝐭𝐢-𝐬𝐭𝐚𝐠𝐞 𝐖𝐢𝐧𝐝𝐨𝐰𝐬 𝐦𝐚𝐥𝐰𝐚𝐫𝐞 𝐬𝐞𝐭. ▪️ 𝐒𝐭𝐚𝐠𝐞 𝟏 masquerades as common apps such as Pictory, KeePass, and Telegram ▪️ 𝐒𝐭𝐚𝐠𝐞 𝟐 establishes 𝐛𝐢𝐝𝐢𝐫𝐞𝐜𝐭𝐢𝐨𝐧𝐚𝐥 𝐂𝟐 through a Telegram bot communicating with 𝐚𝐩𝐢.𝐭𝐞𝐥𝐞𝐠𝐫𝐚𝐦.𝐨𝐫𝐠 ▪️ Delivery reportedly relies on 𝐬𝐨𝐜𝐢𝐚𝐥 𝐞𝐧𝐠𝐢𝐧𝐞𝐞𝐫𝐢𝐧𝐠 and file transfer through messaging apps ▪️ Persistence uses 𝐖𝐢𝐧𝐝𝐨𝐰𝐬 𝐑𝐞𝐠𝐢𝐬𝐭𝐫𝐲 𝐚𝐮𝐭𝐨𝐫𝐮𝐧 ▪️ Defensive evasion involves 𝐏𝐨𝐰𝐞𝐫𝐒𝐡𝐞𝐥𝐥 behavior 🛡️ 𝐓𝐡𝐞 𝐝𝐞𝐟𝐞𝐧𝐬𝐢𝐯𝐞 𝐥𝐞𝐬𝐬𝐨𝐧𝐬 📍Treat 𝐩𝐞𝐫𝐬𝐨𝐧𝐚𝐥 𝐚𝐜𝐜𝐨𝐮𝐧𝐭𝐬 𝐨𝐟 𝐬𝐞𝐧𝐢𝐨𝐫 𝐥𝐞𝐚𝐝𝐞𝐫𝐬 as part of the attack surface 📍Hunt for 𝐦𝐚𝐬𝐪𝐮𝐞𝐫𝐚𝐝𝐢𝐧𝐠 𝐢𝐧𝐬𝐭𝐚𝐥𝐥𝐞𝐫𝐬, 𝐑𝐞𝐠𝐢𝐬𝐭𝐫𝐲 𝐫𝐮𝐧 𝐤𝐞𝐲𝐬, and 𝐏𝐨𝐰𝐞𝐫𝐒𝐡𝐞𝐥𝐥 𝐚𝐛𝐮𝐬𝐞 📍Monitor unusual outbound traffic to 𝐚𝐩𝐢.𝐭𝐞𝐥𝐞𝐠𝐫𝐚𝐦.𝐨𝐫𝐠 and related messaging-app infrastructure 📍Build response plans for 𝐝𝐚𝐭𝐚 𝐭𝐡𝐞𝐟𝐭, 𝐢𝐧𝐟𝐨𝐫𝐦𝐚𝐭𝐢𝐨𝐧 𝐨𝐩𝐬, and 𝐩𝐮𝐛𝐥𝐢𝐜 𝐧𝐚𝐫𝐫𝐚𝐭𝐢𝐯𝐞 𝐬𝐡𝐨𝐜𝐤, not just traditional incident response ➜ 𝐂𝐲𝐛𝐞𝐫 𝐰𝐚𝐫𝐟𝐚𝐫𝐞 𝐧𝐨 𝐥𝐨𝐧𝐠𝐞𝐫 𝐬𝐭𝐚𝐫𝐭𝐬 𝐚𝐭 𝐭𝐡𝐞 𝐩𝐞𝐫𝐢𝐦𝐞𝐭𝐞𝐫. It starts with 𝐢𝐝𝐞𝐧𝐭𝐢𝐭𝐲, 𝐚𝐜𝐜𝐞𝐬𝐬, 𝐩𝐞𝐫𝐬𝐨𝐧𝐚𝐥 𝐝𝐞𝐯𝐢𝐜𝐞𝐬, and the ability to weaponize stolen data for strategic effect. Cyber Security Forum Initiative #CSFI

🇮🇷𝗜𝗿𝗮𝗻’𝘀 𝗰𝘆𝗯𝗲𝗿 𝗽𝗹𝗮𝘆𝗯𝗼𝗼𝗸 𝗶𝘀 𝗮𝗰𝘁𝗶𝘃𝗲, 𝗮𝗻𝗱 𝘁𝗵𝗲 “𝗻𝗼𝗶𝘀𝗲” 𝗶𝘀 𝗽𝗮𝗿𝘁 𝗼𝗳 𝘁𝗵𝗲 𝘀𝘁𝗿𝗮𝘁𝗲𝗴𝘆. Rapid7 Lab's new report on the escalating regional conflict highlights a layered ecosystem: state-linked APTs and proxy/hacktivist fronts. Expect high-visibility disruption through DDoS and defacement, alongside quieter access-building that can outlast the news cycle. ✅ 𝗗𝗖𝗢 𝗳𝗼𝗰𝘂𝘀 𝗳𝗼𝗿 𝘁𝗵𝗲 𝗻𝗲𝘅𝘁 𝟳𝟮 𝗵𝗼𝘂𝗿𝘀: Hunt for spikes in perimeter scanning, newly dropped web shells, abnormal authentication patterns, MFA changes, newly created privileged accounts, and any *IT-to-OT pivot attempts*. Treat DDoS and defacement as possible cover for deeper access operations. 🎯 𝗧𝗮𝗰𝘁𝗶𝗰𝗮𝗹 𝗧𝗧𝗣𝘀 𝘁𝗼 𝘄𝗮𝘁𝗰𝗵 (𝗠𝗜𝗧𝗥𝗘 𝗔𝗧𝗧&𝗖𝗞): • Internet-facing recon/scanning → T1595 (Active Scanning) • Exploitation of edge/public-facing apps → T1190 (Exploit Public-Facing Application) • Phishing and crisis-themed lures → T1566 / T1566.001 • Credential misuse across VPN, SSO, and cloud → T1078 + T1110 • DDoS and defacement for pressure and distraction → T1498 + T1491 • Exfiltration and hack-and-leak amplification → T1567.002 • Destructive escalation through wipers → T1561.002 / T1485 ⚠️ 𝗘𝘅𝗽𝗼𝘀𝘂𝗿𝗲 𝗽𝗿𝗶𝗼𝗿𝗶𝘁𝗶𝗲𝘀: Rapid7 calls for rapid patching and mitigation of internet-facing footholds, especially high-impact auth-bypass and RCE paths such as 𝗖𝗩𝗘-𝟮𝟬𝟮𝟲-𝟭𝟮𝟴𝟭, 𝗖𝗩𝗘-𝟮𝟬𝟮𝟱-𝟱𝟮𝟲𝟵𝟭, and 𝗖𝗩𝗘-𝟮𝟬𝟮𝟱-𝟯𝟮𝟰𝟯𝟯. 🧩 𝗬𝗔𝗥𝗔 (𝘄𝗶𝗽𝗲𝗿 𝘀𝘁𝗮𝗴𝗶𝗻𝗴) 𝘀𝘁𝗮𝗿𝘁𝗶𝗻𝗴 𝗽𝗼𝗶𝗻𝘁: 𝗭𝗲𝗿𝗼𝗖𝗹𝗲𝗮𝗿𝗲 𝗣𝗦𝟭 indicators include “ClientUpdate.ps1,” “DECKey,” “Decrypte-Content,” and “$ClientData.” Strong work by 𝗥𝗮𝗽𝗶𝗱𝟳 𝗟𝗮𝗯𝘀: timely and actionable coverage for defenders. #ThreatIntel #DFIR #DCO #SOC #MITREATTACK #IncidentResponse 🇺🇸Cyber Security Forum Initiative CSFI Cyber Threat Intelligence Division (CSFI-CTID)🇺🇸 NOTE: Infographic design by CSFI. Rapid7 report link in comments below.

🇺🇸🇮🇱𝗙𝗜𝗥𝗦𝗧 𝟰𝟴 𝗛𝗢𝗨𝗥𝗦 of 𝗘𝗣𝗜𝗖 𝗙𝗨𝗥𝗬 (OSINT snapshot): The public reporting suggests a strike-window, multi-domain effects package with cyber disruption and influence activity unfolding alongside kinetic escalation, and yet it provides very few technical artifacts to support tool-level attribution. 🔲  𝗖𝗢𝗠𝗠𝗦 𝗗𝗘𝗡𝗜𝗔𝗟 (𝗡𝗔𝗧𝗜𝗢𝗡𝗔𝗟): Iranian national connectivity reportedly collapsed to ~4% of normal traffic (effect confirmed; cause contested; no public routing/BGP attribution). 🔲  𝗜𝗡𝗙𝗟𝗨𝗘𝗡𝗖𝗘 𝗩𝗜𝗔 𝗧𝗥𝗨𝗦𝗧𝗘𝗗 𝗖𝗛𝗔𝗡𝗡𝗘𝗟: Mass push notifications were delivered through a high-reach prayer-time/calendar app for ~30 minutes, urging surrender/defection; intrusion mechanism and perpetrator remain unconfirmed/unclaimed. (Pivot: Android package ID reported as com.mobiliha.badesaba.play.) 🔲  𝗠𝗘𝗗𝗜𝗔/𝗣𝗟𝗔𝗧𝗙𝗢𝗥𝗠 𝗗𝗜𝗦𝗥𝗨𝗣𝗧𝗜𝗢𝗡: Multiple Iranian news websites and “local apps” were reported disrupted; at least one case described apparent hack/defacement before takedown, technique remains ambiguous (DDoS vs web takeover vs upstream disruption vs controls). 🔲  𝗖𝗜𝗧𝗬-𝗟𝗘𝗩𝗘𝗟 𝗗𝗘𝗚𝗥𝗔𝗗𝗔𝗧𝗜𝗢𝗡: Reporting also described disruptions to Wi-Fi, landlines, and mobile networks with intermittent data. 𝗠𝗜𝗧𝗥𝗘 𝗔𝗧𝗧&𝗖𝗞 (best-fit mapping to reported effects; **NOT a confirmed TTP chain): T1498 — Network Denial of Service T1491.002 — Defacement: External Website T1190 — Exploit Public-Facing Application T1078 — Valid Accounts T1195 — Supply Chain Compromise 👉𝗗𝗜𝗦𝗖𝗟𝗔𝗜𝗠𝗘𝗥: This post relies on publicly reported information and OSINT only; attribution remains low confidence, and no public malware/IOC set was released within the assessed window. Cyber Security Forum Initiative #CSFI CSFI Cyber Threat Intelligence Division (CSFI-CTID) #CTID #OSINT #CTI #CEMA #InfoOps #DOW #CyberOps #OCO

🇺🇸🇮🇱==[ 𝗘𝗣𝗜𝗖 𝗙𝗨𝗥𝗬 ]==<<< 𝗟𝗲𝘀𝘀𝗼𝗻𝘀 𝗳𝗿𝗼𝗺 𝗢𝗽𝗲𝗿𝗮𝘁𝗶𝗼𝗻 𝗘𝗽𝗶𝗰 𝗙𝘂𝗿𝘆: 𝗧𝗵𝗲 𝗠𝘆𝘁𝗵 𝗼𝗳 𝘁𝗵𝗲 "𝗦𝗮𝗳𝗲" 𝗣𝘂𝘀𝗵 𝗡𝗼𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻. 𝗡𝗢𝗧𝗘: The app-based psychological operation began roughly 𝟳 minutes after the start of the primary kinetic strikes. 𝗙𝗶𝗿𝘀𝘁 𝗞𝗶𝗻𝗲𝘁𝗶𝗰 𝗔𝘁𝘁𝗮𝗰𝗸: Coordinated U.S. and Israeli 𝘀𝘁𝗿𝗶𝗸𝗲𝘀 (Operations Epic Fury and Roaring Lion) commenced at 𝟬𝟵:𝟰𝟱 𝗔𝗠 Tehran local time on 𝗙𝗲𝗯𝗿𝘂𝗮𝗿𝘆 𝟮𝟴, 𝟮𝟬𝟮𝟲. 𝗙𝗶𝗿𝘀𝘁 𝗔𝗽𝗽 𝗔𝘁𝘁𝗮𝗰𝗸: The weaponized push notifications from the BadeSaba prayer app began at 𝟬𝟵:𝟱𝟮 𝗔𝗠 Tehran local time. 📲𝗧𝗵𝗲 𝘁𝗵𝗿𝗲𝗲 𝗽𝗿𝗶𝗺𝗮𝗿𝘆 𝗺𝗲𝘀𝘀𝗮𝗴𝗲𝘀 𝘄𝗲𝗿𝗲: 𝟬𝟵:𝟱𝟮 𝗔𝗠 — "𝗛𝗲𝗹𝗽 𝗵𝗮𝘀 𝗮𝗿𝗿𝗶𝘃𝗲𝗱." 𝟭𝟬:𝟬𝟮 𝗔𝗠 — "𝗧𝗵𝗲 𝘁𝗶𝗺𝗲 𝗳𝗼𝗿 𝗿𝗲𝘃𝗲𝗻𝗴𝗲 𝗵𝗮𝘀 𝗰𝗼𝗺𝗲." 𝟭𝟬:𝟭𝟰 𝗔𝗠 — "𝗟𝗮𝘆 𝗱𝗼𝘄𝗻 𝘆𝗼𝘂𝗿 𝘄𝗲𝗮𝗽𝗼𝗻𝘀 𝗼𝗿 𝗷𝗼𝗶𝗻 𝘁𝗵𝗲 𝗳𝗼𝗿𝗰𝗲𝘀 𝗼𝗳 𝗹𝗶𝗯𝗲𝗿𝗮𝘁𝗶𝗼𝗻." The cyber operators chose the BadeSaba ecosystem for a reason: 𝗦𝗖𝗔𝗟𝗘 𝗮𝗻𝗱 𝗧𝗥𝗨𝗦𝗧. With 𝟱𝗠+ 𝗱𝗼𝘄𝗻𝗹𝗼𝗮𝗱𝘀 and a faith-oriented daily-use pattern, the platform provided a high-confidence channel where messages would be received, trusted, and acted on with minimal friction. 𝗪𝗲 𝘀𝗽𝗲𝗻𝗱 𝗮 𝗹𝗼𝘁 𝗼𝗳 𝘁𝗶𝗺𝗲 𝗵𝗮𝗿𝗱𝗲𝗻𝗶𝗻𝗴 𝘁𝗵𝗲 𝗳𝗿𝗼𝗻𝘁 𝗱𝗼𝗼𝗿, 𝗯𝘂𝘁 𝘄𝗵𝗮𝘁’𝘀 𝗼𝘂𝗿 𝗽𝗹𝗮𝗻 𝘄𝗵𝗲𝗻 𝘁𝗵𝗲 𝗮𝗱𝘃𝗲𝗿𝘀𝗮𝗿𝘆 𝘄𝗮𝗹𝗸𝘀 𝗶𝗻 𝘁𝗵𝗿𝗼𝘂𝗴𝗵 𝗮 𝗰𝗵𝗮𝗻𝗻𝗲𝗹 𝘄𝗲 𝗮𝗹𝗿𝗲𝗮𝗱𝘆 𝘁𝗿𝘂𝘀𝘁? The latest 𝗖𝗦𝗙𝗜 𝗢𝗦𝗜𝗡𝗧 on Operation Epic Fury (the BadeSaba compromise) highlights a sophisticated abuse of 𝗽𝘂𝘀𝗵 𝗻𝗼𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻 𝗶𝗻𝗳𝗿𝗮𝘀𝘁𝗿𝘂𝗰𝘁𝘂𝗿𝗲 (often implemented via services like 𝗙𝗶𝗿𝗲𝗯𝗮𝘀𝗲 𝗖𝗹𝗼𝘂𝗱 𝗠𝗲𝘀𝘀𝗮𝗴𝗶𝗻𝗴 (𝗙𝗖𝗠)). For any organization running a high-reach mobile application, this is a wake-up call. 🔍 𝗞𝗲𝘆 𝗧𝗮𝗸𝗲𝗮𝘄𝗮𝘆𝘀 𝗳𝗼𝗿 𝗗𝗲𝗳𝗲𝗻𝗱𝗲𝗿𝘀: ✔️𝗪𝗲𝗮𝗽𝗼𝗻𝗶𝘇𝗶𝗻𝗴 𝗧𝗿𝘂𝘀𝘁: The attackers didn't need a malicious APK update. Instead, they compromised the push-sending capability to broadcast messages at scale to an installed base measured in 𝟱𝗠+ 𝗱𝗼𝘄𝗻𝗹𝗼𝗮𝗱𝘀 via a trusted channel. ✔️𝗧𝗵𝗲 𝗣𝗼𝘄𝗲𝗿 𝗼𝗳 𝘁𝗵𝗲 𝗣𝗶𝘃𝗼𝘁: While the initial access remains unknown (ranging from account takeover to backend compromise), the operational effect was clear: mass confusion and influence delivered through a "legitimate" app interface. ✔️𝗜𝗻𝗳𝗿𝗮𝘀𝘁𝗿𝘂𝗰𝘁𝘂𝗿𝗲 𝗮𝘀 𝗮 𝗕𝗹𝗶𝗻𝗱 𝗦𝗽𝗼𝘁: If you don’t have message-level audit logs (who sent what, when), delivery telemetry, and payload capture on the send-side, your investigation becomes guesswork. ****If your push pipeline is compromised today, do you have the telemetry to prove it? 💡 𝗧𝗵𝗲 𝗧𝗵𝗼𝘂𝗴𝗵𝘁-𝗣𝗿𝗼𝘃𝗼𝗸𝗶𝗻𝗴 𝗥𝗲𝗮𝗹𝗶𝘁𝘆: We spend millions on code signing and supply chain security for our binaries, but often treat 𝗽𝘂𝘀𝗵 𝗻𝗼𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻 𝗰𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹𝘀 as secondary secrets. Cyber Security Forum Initiative #epicfury

🇺🇸𝐎𝐃𝐍𝐈 𝟐𝟎𝟐𝟔 𝐓𝐇𝐑𝐄𝐀𝐓 𝐑𝐄𝐏𝐎𝐑𝐓 𝐂𝐄𝐍𝐓𝐄𝐑𝐒 𝐀𝐈 𝐈𝐍 𝐂𝐘𝐁𝐄𝐑 𝐑𝐈𝐒𝐊. The 2026 Annual Threat Assessment delivered by the Office of the Director of National Intelligence to the United States Senate frames *artificial intelligence* not as a fringe risk but as a driver reshaping the cyber domain and national security at large. ◾𝐀𝐈 is described as a 𝐝𝐞𝐟𝐢𝐧𝐢𝐧𝐠 𝐭𝐞𝐜𝐡𝐧𝐨𝐥𝐨𝐠𝐲 of this decade: one that 𝐚𝐜𝐜𝐞𝐥𝐞𝐫𝐚𝐭𝐞𝐬 𝐭𝐫𝐚𝐝𝐢𝐭𝐢𝐨𝐧𝐚𝐥 𝐜𝐲𝐛𝐞𝐫 𝐭𝐡𝐫𝐞𝐚𝐭𝐬, enables adversaries to 𝐬𝐜𝐚𝐥𝐞 𝐨𝐟𝐟𝐞𝐧𝐬𝐢𝐯𝐞 𝐨𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧𝐬 (OCO), and forces defenders to 𝐫𝐞𝐭𝐡𝐢𝐧𝐤 both 𝐝𝐨𝐜𝐭𝐫𝐢𝐧𝐞 𝐚𝐧𝐝 𝐭𝐨𝐨𝐥𝐢𝐧𝐠. ◾𝐓𝐡𝐞 𝐎𝐃𝐍𝐈 𝐫𝐞𝐩𝐨𝐫𝐭 identifies the following 𝐂𝐘𝐁𝐄𝐑 𝐭𝐡𝐫𝐞𝐚𝐭 𝐟𝐥𝐨𝐰: ◾Global tech competition ➡ AI race intensifies ➡ chips power AI dominance ➡ AI speeds intelligence, cyber, and military operations ➡ nation-states and ransomware target critical infrastructure ➡ cyber risk spreads to space and supply chains ➡ quantum threatens encryption ➡ national security now depends on AI, cyber resilience, semiconductors, and trusted infrastructure. 👇 📄 𝐀𝐜𝐜𝐞𝐬𝐬 𝐭𝐡𝐞 𝐑𝐄𝐏𝐎𝐑𝐓 𝐛𝐞𝐥𝐨𝐰 👇 🔄 Repost 💬 Comment Cyber Security Forum Initiative #CSFI #ODNI

🇮🇷 𝗙𝗢𝗥 𝗧𝗘𝗛𝗥𝗔𝗡, 𝗖𝗬𝗕𝗘𝗥𝗦𝗣𝗔𝗖𝗘 𝗥𝗘𝗠𝗔𝗜𝗡𝗦 𝗧𝗛𝗘 𝗠𝗢𝗦𝗧 𝗣𝗘𝗥𝗠𝗜𝗦𝗦𝗜𝗩𝗘 𝗗𝗢𝗠𝗔𝗜𝗡 for imposing costs on the United States and its allies, while its broader proxy and covert architecture preserves the potential to translate pressure into real-world harm. 𝗞𝗘𝗘𝗣 𝗧𝗛𝗘𝗦𝗘 𝗔𝗖𝗧𝗢𝗥𝗦 𝗢𝗡 𝗬𝗢𝗨𝗥 𝗥𝗔𝗗𝗔𝗥: 🔹 APT35 / Charming Kitten: credential theft and cloud mailbox access 🔹 APT42: targeted espionage against NGOs, policy figures, and dissidents 🔹 APT34 / OilRig and MuddyWater: LOTL post-exploitation 🔹 Fox Kitten / Pioneer Kitten: VPN and firewall compromise for reusable access 🔹 CyberAv3ngers-type fronts: OT exposure + weak credentials = disproportionate impact 𝗗𝗘𝗙𝗘𝗡𝗦𝗜𝗩𝗘 𝗣𝗥𝗜𝗢𝗥𝗜𝗧𝗜𝗘𝗦: 🛡️ Phishing-resistant MFA for high-risk users 🛡️ Alerting on mailbox rules, OAuth abuse, and impossible-travel admin logins 🛡️ Aggressive patching and telemetry collection on perimeter devices 🛡️ Hunting for encoded PowerShell, scheduled tasks, and WMI/WinRM misuse 𝗕𝗢𝗧𝗧𝗢𝗠 𝗟𝗜𝗡𝗘: In this battlespace, identity and the edge are decisive terrain. Cyber Security Forum Initiative CSFI Cyber Threat Intelligence Division (CSFI-CTID)

🇺🇸 𝐀 𝐑𝐚𝐫𝐞 𝐏𝐞𝐫𝐬𝐨𝐧𝐚𝐥 𝐏𝐨𝐬𝐭. My youngest son, Victor de Souza, is getting married, and he and his fiancée, Emma Young, are beginning their life together. They are a young couple building their future with humility, hard work, and strong values. 💍. I do not usually share personal matters here on LinkedIn, but this is one of those rare exceptions. ❤️ 👉 𝐓𝐡𝐞𝐢𝐫 𝐰𝐞𝐝𝐝𝐢𝐧𝐠 𝐫𝐞𝐠𝐢𝐬𝐭𝐫𝐲 𝐢𝐬 𝐡𝐞𝐫𝐞: https://lnkd.in/eKxTaKbJ 🎖️Victor has lived a life of service from an early age through the 𝐘𝐨𝐮𝐧𝐠 𝐌𝐚𝐫𝐢𝐧𝐞𝐬 and 𝐂𝐢𝐯𝐢𝐥 𝐀𝐢𝐫 𝐏𝐚𝐭𝐫𝐨𝐥, and today he proudly serves our nation in the 𝐔𝐧𝐢𝐭𝐞𝐝 𝐒𝐭𝐚𝐭𝐞𝐬 𝐀𝐢𝐫 𝐅𝐨𝐫𝐜𝐞. He also works hard as a cyber professional and, above all, is a loving son. Dr. Christine de Souza and I are also very happy to welcome Emma into our family. She is a 𝐬𝐩𝐞𝐜𝐢𝐚𝐥, 𝐡𝐚𝐫𝐝𝐰𝐨𝐫𝐤𝐢𝐧𝐠 𝐲𝐨𝐮𝐧𝐠 𝐥𝐚𝐝𝐲, and we feel truly grateful to have her as our daughter-in-law. 🤍 To my friends, colleagues, and peers across this community: if you feel moved to support this young couple as they begin this new chapter, I would be deeply grateful. 🙏 𝑇ℎ𝑎𝑛𝑘 𝑦𝑜𝑢 𝑓𝑜𝑟 𝑦𝑜𝑢𝑟 𝑘𝑖𝑛𝑑𝑛𝑒𝑠𝑠, 𝑔𝑒𝑛𝑒𝑟𝑜𝑠𝑖𝑡𝑦, 𝑎𝑛𝑑 𝑠𝑢𝑝𝑝𝑜𝑟𝑡 ~ Dr. Paul de Souza and Dr. Christine de Souza. Cyber Security Forum Initiative

🇺🇦𝗨𝗸𝗿𝗮𝗶𝗻𝗶𝗮𝗻 𝗰𝘆𝗯𝗲𝗿 𝘂𝗻𝗶𝘁𝘀 (256th Cyber Assault Division), InformNapalm, and associated OSINT/activist networks conducted what Kyiv describes as a counter-operation against 🇷🇺 Russian attempts to restore or bypass restricted access to SpaceX’s Starlink satellite network. 👉𝗖𝗬𝗕𝗘𝗥 → 𝗞𝗜𝗡𝗘𝗧𝗜𝗖 in no time! A real-world comms-network disruption with battlefield counter-C2 effects—exactly the sort of signal worth feeding into CTI enrichment, correlation, and verification streams. 💡𝗧𝗛𝗘 𝗧𝗥𝗔𝗗𝗘𝗖𝗥𝗔𝗙𝗧 🔲 Ukrainian cyber reportedly used Telegram-based deception (fake channels/bots) promising “activation” or registration help for Starlink terminals, exploiting urgency after access restrictions. 🔲 🇷🇺Russian personnel allegedly submitted identifying details, terminal IDs, and precise location coordinates expecting restoration of connectivity. 🔲 The operation reportedly amassed ~2,420 records tied to Russian-used terminals/positions; Ukrainian authorities then used the data to block or “brick” devices. 📌Operationally, this is a hybrid cyber-OSINT trap producing geo-registered adversary C2 infrastructure data and behavioral indicators; ideal for 𝗳𝗼𝗹𝗹𝗼𝘄-𝗼𝗻 𝗰𝗼𝗿𝗿𝗲𝗹𝗮𝘁𝗶𝗼𝗻 (HUMINT/IMINT), geolocation verification, attribution tagging, and threat-actor profiling in CTI watches. 📌 MITRE ATT&CK — 𝗢𝗽𝗲𝗿𝗮𝘁𝗶𝗼𝗻𝗮𝗹 𝘀𝗲𝗾𝘂𝗲𝗻𝗰𝗲 (𝗿𝗲𝗽𝗼𝗿𝘁𝗲𝗱) T1583 – Acquire Infrastructure T1585 – Establish Accounts T1566 – Phishing T1598 – Phishing for Information T1592 – Gather Victim Host Information T1590 – Gather Victim Network Information T1119 – Automated Collection T1552 – Unsecured Credentials / Sensitive Information T1489 – Service Stop T1499 – Endpoint / Network Denial of Service Cyber Security Forum Initiative CSFI Cyber Threat Intelligence Division (CSFI-CTID) #CTI #cyberOps #CSFI

🇺🇸🎥𝗪𝗮𝘁𝗰𝗵 𝘁𝗵𝗲 𝗻𝗲𝘄𝗹𝘆 𝗿𝗲𝗹𝗲𝗮𝘀𝗲𝗱 𝗨.𝗦. 𝗖𝘆𝗯𝗲𝗿 𝗖𝗼𝗺𝗺𝗮𝗻𝗱’𝘀 𝗖𝘆𝗯𝗲𝗿 𝗡𝗮𝘁𝗶𝗼𝗻𝗮𝗹 𝗠𝗶𝘀𝘀𝗶𝗼𝗻 𝗙𝗼𝗿𝗰𝗲 (𝗖𝗡𝗠𝗙) 𝗺𝗶𝘀𝘀𝗶𝗼𝗻 𝘃𝗶𝗱𝗲𝗼 𝗵𝗲𝗿𝗲: https://lnkd.in/efrMGgE3 The short video underscores the unit’s evolving posture, one centered on persistent engagement abroad under the defend‑forward strategy rather than a static defensive stance. CNMF’s global footprint with more than 𝟱𝟱 𝗱𝗲𝗽𝗹𝗼𝘆𝗺𝗲𝗻𝘁𝘀 𝘁𝗼 𝗮𝘁 𝗹𝗲𝗮𝘀𝘁 𝟮𝟳 𝗰𝗼𝘂𝗻𝘁𝗿𝗶𝗲𝘀 𝗮𝗻𝗱 𝗺𝗼𝗿𝗲 𝘁𝗵𝗮𝗻 𝟳𝟱 𝗵𝘂𝗻𝘁-𝗼𝗽𝗲𝗿𝗮𝘁𝗶𝗼𝗻𝘀 𝗼𝗻 𝗻𝗲𝘁𝘄𝗼𝗿𝗸 𝗲𝗻𝘃𝗶𝗿𝗼𝗻𝗺𝗲𝗻𝘁𝘀 𝘀𝗶𝗻𝗰𝗲 𝟮𝟬𝟭𝟴, reflecting how the U.S. military cyber arm projects persistent operations overseas to deter and disrupt adversary activity. 🇺🇸Operationally, #CNMF is framed as integral to U.S. priorities such as election security, counter‑ransomware, and counter‑espionage crises, reinforcing a narrative of global engagement and signaling to partners and potential recruits alike that the U.S. cyber force is both active and forward‑leaning. Cyber National Mission Force U.S. Cyber Command

💡There is a decisive push on acquisition velocity by the Central Intelligence Agency #CIA which is rolling out a new acquisition framework designed to shorten the time from mission requirement to operating authority by using centralized vendor vetting and streamlined IT authorization, with an emphasis on rapidly onboarding prototypes and modernizing core systems. 🇺🇸𝘾𝙤𝙢𝙥𝙚𝙩𝙞𝙩𝙞𝙫𝙚 𝙖𝙙𝙫𝙖𝙣𝙩𝙖𝙜𝙚 𝙘𝙤𝙢𝙚𝙨 𝙛𝙧𝙤𝙢 𝙨𝙮𝙨𝙩𝙚𝙢𝙨, 𝙛𝙖𝙨𝙩 𝙥𝙧𝙤𝙘𝙪𝙧𝙚𝙢𝙚𝙣𝙩, 𝙝𝙖𝙧𝙙𝙚𝙣𝙚𝙙 𝙙𝙖𝙩𝙖 𝙥𝙞𝙥𝙚𝙡𝙞𝙣𝙚𝙨, 𝙖𝙣𝙙 𝙨𝙘𝙖𝙡𝙖𝙗𝙡𝙚 𝙖𝙣𝙖𝙡𝙮𝙩𝙞𝙘 𝙩𝙝𝙧𝙤𝙪𝙜𝙝𝙥𝙪𝙩 𝙖𝙣𝙙 𝙣𝙤𝙩 𝙖 𝙨𝙞𝙣𝙜𝙡𝙚 “𝙨𝙞𝙡𝙫𝙚𝙧 𝙗𝙪𝙡𝙡𝙚𝙩” 𝙩𝙤𝙤𝙡. ┏━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┓ ┃ 𝗤𝗨𝗘𝗦𝗧𝗜𝗢𝗡 𝗙𝗢𝗥 𝗨.𝗦. 𝗩𝗘𝗡𝗗𝗢𝗥𝗦 ┃ ┗━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┛ ➤ 𝗪𝗵𝗮𝘁 𝗺𝗶𝘀𝘀𝗶𝗼𝗻-𝗴𝗿𝗮𝗱𝗲 𝗰𝗮𝗽𝗮𝗯𝗶𝗹𝗶𝘁𝘆 𝘄𝗼𝘂𝗹𝗱 𝘆𝗼𝘂 𝗯𝗿𝗶𝗻𝗴 𝘁𝗼 the 𝗖𝗜𝗔, 𝗮𝗻𝗱 𝗵𝗼𝘄 𝘄𝗼𝘂𝗹𝗱 𝘆𝗼𝘂 𝗽𝗮𝗰𝗸𝗮𝗴𝗲 𝗶𝘁 𝗳𝗼𝗿 𝗳𝗮𝘀𝘁 𝗲𝘃𝗮𝗹𝘂𝗮𝘁𝗶𝗼𝗻 𝘁𝗵𝗿𝗼𝘂𝗴𝗵 𝗼𝗳𝗳𝗶𝗰𝗶𝗮𝗹 𝗰𝗵𝗮𝗻𝗻𝗲𝗹𝘀? └─ 𝗞𝗲𝗲𝗽 𝗶𝘁 𝗵𝗶𝗴𝗵-𝗹𝗲𝘃𝗲𝗹 — 𝗻𝗼 𝘀𝗲𝗻𝘀𝗶𝘁𝗶𝘃𝗲 𝗱𝗲𝘁𝗮𝗶𝗹𝘀.👈 https://lnkd.in/eZNpMQtq Cyber Security Forum Initiative #CSFI #Cybersecurity #CTI #DataEngineering #AI #OSINT #NationalSecurity

🐿️𝐍𝐄𝐖 𝐅𝐑𝐎𝐌 𝐂𝐒𝐅𝐈🇺🇸: 𝐋𝐢𝐯𝐞 𝐈𝐎𝐂 & 𝐓𝐚𝐜𝐭𝐢𝐜𝐚𝐥 𝐇𝐮𝐧𝐭𝐢𝐧𝐠 𝐑𝐞𝐩𝐨𝐫𝐭. Cyber professionals tracking🇮🇷 Iran-linked activity should read this. 𝐂𝐒𝐅𝐈’𝐬 𝐥𝐚𝐭𝐞𝐬𝐭 𝐜𝐲𝐛𝐞𝐫 𝐭𝐡𝐫𝐞𝐚𝐭 𝐢𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞 𝐫𝐞𝐩𝐨𝐫𝐭 delivers tactical value for defenders monitoring 𝐌𝐮𝐝𝐝𝐲𝐖𝐚𝐭𝐞𝐫, 𝐇𝐚𝐧𝐝𝐚𝐥𝐚, and 𝐌𝐎𝐈𝐒-𝐥𝐢𝐧𝐤𝐞𝐝 𝐢𝐧𝐟𝐫𝐚𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞, with a sharp focus on 𝐥𝐢𝐯𝐞 𝐫𝐨𝐮𝐭𝐢𝐧𝐠 𝐬𝐢𝐠𝐧𝐚𝐥𝐬, 𝐢𝐧𝐟𝐫𝐚𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞 𝐩𝐢𝐯𝐨𝐭𝐬, 𝐡𝐨𝐬𝐭 𝐚𝐫𝐭𝐢𝐟𝐚𝐜𝐭𝐬, and 𝐢𝐦𝐦𝐞𝐝𝐢𝐚𝐭𝐞 𝐡𝐮𝐧𝐭 𝐚𝐜𝐭𝐢𝐨𝐧. ⚫ 𝐇𝐢𝐠𝐡𝐥𝐢𝐠𝐡𝐭𝐬: ▪️ 𝐓𝐢𝐞𝐫 𝟏 𝐢𝐧𝐝𝐢𝐜𝐚𝐭𝐨𝐫𝐬 prioritized for immediate hunt and blocking ▪️ 𝐋𝐢𝐯𝐞 𝐢𝐧𝐟𝐫𝐚𝐬𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞 𝐩𝐢𝐯𝐨𝐭𝐬 tied to active or recently observed routing and hosting ▪️ 𝐇𝐨𝐬𝐭 𝐚𝐫𝐭𝐢𝐟𝐚𝐜𝐭𝐬, 𝐡𝐚𝐬𝐡𝐞𝐬, 𝐚𝐧𝐝 𝐀𝐓𝐓&𝐂𝐊-𝐦𝐚𝐩𝐩𝐞𝐝 𝐛𝐞𝐡𝐚𝐯𝐢𝐨𝐫𝐬 for rapid triage ▪️ 𝐑𝐞𝐚𝐝𝐲-𝐭𝐨-𝐝𝐞𝐩𝐥𝐨𝐲 𝐝𝐞𝐭𝐞𝐜𝐭𝐢𝐨𝐧𝐬 across 𝐘𝐀𝐑𝐀, 𝐒𝐢𝐠𝐦𝐚, 𝐒𝐮𝐫𝐢𝐜𝐚𝐭𝐚/𝐒𝐧𝐨𝐫𝐭, 𝐙𝐞𝐞𝐤, 𝐒𝐩𝐥𝐮𝐧𝐤, and 𝐊𝐐𝐋 ▪️ 𝐎𝐩𝐞𝐫𝐚𝐭𝐨𝐫-𝐫𝐞𝐚𝐝𝐲 𝐩𝐢𝐯𝐨𝐭 𝐜𝐡𝐚𝐢𝐧𝐬 from domain hit to persistence or impact activity 𝐑𝐞𝐚𝐝 𝐭𝐡𝐞 𝐥𝐚𝐭𝐞𝐬𝐭 𝐂𝐒𝐅𝐈 𝐫𝐞𝐩𝐨𝐫𝐭 𝐚𝐧𝐝 𝐬𝐡𝐚𝐫𝐩𝐞𝐧 𝐲𝐨𝐮𝐫 𝐡𝐮𝐧𝐭 𝐦𝐢𝐬𝐬𝐢𝐨𝐧! A special thanks to our Operational Sponsors Silobreaker and Penlink! Cyber Security Forum Initiative CSFI Cyber Threat Intelligence Division (CSFI-CTID) Darrell Johnston Johnmichael O'Hare #CSFI #CTI 🔄 Pass it on 📢 Spread the word 🤝 Join the movement

🇮🇷 𝐌𝐀𝐑𝐂𝐇 𝟐𝟎𝟐𝟔 𝐂𝐘𝐁𝐄𝐑 𝐀𝐒𝐒𝐄𝐒𝐒𝐌𝐄𝐍𝐓: 𝐒𝐓𝐑𝐀𝐈𝐓 𝐎𝐅 𝐇𝐎𝐑𝐌𝐔𝐙. The cyber and electronic threat picture in and around the Strait of Hormuz continues to intensify, with direct implications for maritime security, critical infrastructure, energy logistics, and regional stability. 🟢 𝐈. 𝐋𝐀𝐓𝐄𝐒𝐓 𝐂𝐘𝐁𝐄𝐑 & 𝐄𝐋𝐄𝐂𝐓𝐑𝐎𝐍𝐈𝐂 𝐓𝐇𝐑𝐄𝐀𝐓𝐒 ➜ 𝐆𝐏𝐒 𝐉𝐀𝐌𝐌𝐈𝐍𝐆 & 𝐒𝐏𝐎𝐎𝐅𝐈𝐍𝐆: Massive spike in interference, with 1,100+ commercial ships disrupted across the UAE, Qatar, Oman, and Iran. 🟢 𝐀𝐈𝐒 𝐀𝐍𝐎𝐌𝐀𝐋𝐈𝐄𝐒: Automatic Identification System signals diverted to false-positive locations, including inland Iran and airports, creating elevated collision risk. 🟢 𝐃𝐈𝐆𝐈𝐓𝐀𝐋 𝐌𝐀𝐑𝐈𝐓𝐈𝐌𝐄 𝐁𝐋𝐎𝐂𝐊𝐀𝐃𝐄: Transit is effectively constrained by the loss of precise navigation and the resulting withdrawal of maritime insurance. 🟢 𝐒𝐄𝐋𝐄𝐂𝐓𝐈𝐕𝐄 𝐓𝐑𝐀𝐍𝐒𝐈𝐓 𝐂𝐎𝐍𝐓𝐑𝐎𝐋𝐒: The environment appears to be shifting toward a permission-based transit model, with traffic near collapse and only two crossings reported on March 16. 🟢 𝐈𝐈. 𝐂𝐑𝐈𝐓𝐈𝐂𝐀𝐋 𝐈𝐍𝐅𝐑𝐀𝐒𝐓𝐑𝐔𝐂𝐓𝐔𝐑𝐄 𝐕𝐔𝐋𝐍𝐄𝐑𝐀𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒 ➜ 𝐈𝐍𝐃𝐔𝐒𝐓𝐑𝐈𝐀𝐋 𝐂𝐎𝐍𝐓𝐑𝐎𝐋 𝐒𝐘𝐒𝐓𝐄𝐌𝐒 (𝐈𝐂𝐒): Adversary focus appears to be shifting toward ports, water plants, and power stations. 🟢 𝐌𝐀𝐑𝐈𝐓𝐈𝐌𝐄 𝐋𝐎𝐆𝐈𝐒𝐓𝐈𝐂𝐒 & 𝐒𝐇𝐈𝐏𝐏𝐈𝐍𝐆: High-priority alerting remains warranted for ➜ ***VShell remote access trojans*** targeting Greek and international firms. 🟢 𝐄𝐍𝐄𝐑𝐆𝐘 𝐈𝐍𝐅𝐑𝐀𝐒𝐓𝐑𝐔𝐂𝐓𝐔𝐑𝐄: Recent fuel distribution disruptions in Jordan indicate possible spillover risk to U.S. and Israeli energy logistics. 🟢 𝐒𝐀𝐓𝐄𝐋𝐋𝐈𝐓𝐄 & 𝐂𝐎𝐌𝐌𝐔𝐍𝐈𝐂𝐀𝐓𝐈𝐎𝐍: A 200% surge in dark activity, with vessels switching off tracking, is complicating global maritime monitoring. 🟢 𝐈𝐈𝐈. 𝐓𝐇𝐑𝐄𝐀𝐓 𝐀𝐂𝐓𝐎𝐑 𝐏𝐑𝐎𝐅𝐈𝐋𝐄 ➜ 𝐃𝐄𝐆𝐑𝐀𝐃𝐄𝐃 𝐁𝐔𝐓 𝐏𝐄𝐑𝐒𝐈𝐒𝐓𝐄𝐍𝐓: Iran’s central cyber headquarters may be degraded, but proxy networks and geographically dispersed cells remain active. 🟢 𝐀𝐒𝐘𝐌𝐌𝐄𝐓𝐑𝐈𝐂 𝐅𝐎𝐂𝐔𝐒: High-impact hack-and-leak operations and DDoS campaigns remain viable options against global shipping and energy markets. Cyber Security Forum Initiative #CSFI CSFI Cyber Threat Intelligence Division (CSFI-CTID) #CTI #hormuz

🌐 𝐃𝐈𝐏𝐋𝐎𝐌𝐀𝐂𝐘 𝐓𝐑𝐀𝐃𝐄𝐂𝐑𝐀𝐅𝐓 is no longer a niche capability reserved for foreign ministries. It is becoming a 𝐜𝐨𝐫𝐞 𝐥𝐞𝐚𝐝𝐞𝐫𝐬𝐡𝐢𝐩 𝐜𝐨𝐦𝐩𝐞𝐭𝐞𝐧𝐜𝐲 for cyber leaders. 𝐂𝐲𝐛𝐞𝐫 𝐫𝐢𝐬𝐤 now sits at the intersection of 𝐭𝐞𝐜𝐡𝐧𝐨𝐥𝐨𝐠𝐲, 𝐥𝐚𝐰, 𝐠𝐞𝐨𝐩𝐨𝐥𝐢𝐭𝐢𝐜𝐬, 𝐚𝐧𝐝 𝐞𝐱𝐞𝐜𝐮𝐭𝐢𝐯𝐞 𝐝𝐞𝐜𝐢𝐬𝐢𝐨𝐧-𝐦𝐚𝐤𝐢𝐧𝐠. According to the World Economic Forum’s 𝐆𝐥𝐨𝐛𝐚𝐥 𝐂𝐲𝐛𝐞𝐫𝐬𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐎𝐮𝐭𝐥𝐨𝐨𝐤 𝟐𝟎𝟐𝟔 (𝐃𝐢𝐠𝐞𝐬𝐭), 𝟔𝟒% of organizations report accounting for geopolitically motivated cyberattacks, and 𝟗𝟏% of the largest organizations have adjusted strategy because of geopolitical volatility. 🤝 I travel globally to 𝐭𝐫𝐚𝐢𝐧, 𝐩𝐫𝐞𝐬𝐞𝐧𝐭, 𝐚𝐧𝐝 𝐧𝐞𝐠𝐨𝐭𝐢𝐚𝐭𝐞 with foreign governments on how to build and professionalize cyber forces. That experience reinforced a simple lesson for me: ***that 𝐭𝐞𝐜𝐡𝐧𝐢𝐜𝐚𝐥 𝐝𝐞𝐩𝐭𝐡 is foundational, but no longer sufficient!*** That is why I strongly recommend 𝐃𝐢𝐩𝐥𝐨𝐦𝐚𝐭𝐢𝐜 𝐓𝐫𝐚𝐝𝐞𝐜𝐫𝐚𝐟𝐭 𝐟𝐨𝐫 𝐍𝐨𝐧-𝐃𝐢𝐩𝐥𝐨𝐦𝐚𝐭𝐬 𝟐𝟎𝟐𝟔 from the 🇨🇭Geneva Centre for Security Policy for current and aspiring cyber leaders: https://lnkd.in/ee3-XsRJ 𝐂𝐲𝐛𝐞𝐫 𝐥𝐞𝐚𝐝𝐞𝐫𝐬 must also be able to 𝐬𝐡𝐚𝐩𝐞 𝐨𝐮𝐭𝐜𝐨𝐦𝐞𝐬 𝐚𝐜𝐫𝐨𝐬𝐬 𝐛𝐨𝐫𝐝𝐞𝐫𝐬, with 𝐜𝐫𝐞𝐝𝐢𝐛𝐢𝐥𝐢𝐭𝐲, 𝐫𝐞𝐬𝐭𝐫𝐚𝐢𝐧𝐭, 𝐚𝐧𝐝 𝐬𝐭𝐫𝐚𝐭𝐞𝐠𝐢𝐜 𝐜𝐥𝐚𝐫𝐢𝐭𝐲. 🇱🇺🇺🇸 These photos were taken at a 𝐜𝐲𝐛𝐞𝐫 𝐭𝐡𝐫𝐞𝐚𝐭 𝐢𝐧𝐭𝐞𝐥𝐥𝐢𝐠𝐞𝐧𝐜𝐞 𝐞𝐯𝐞𝐧𝐭 at the 𝐄𝐦𝐛𝐚𝐬𝐬𝐲 𝐨𝐟 𝐋𝐮𝐱𝐞𝐦𝐛𝐨𝐮𝐫𝐠 in Washington, DC. I had the privilege of helping organize the discussion in partnership with the 𝐆𝐨𝐯𝐞𝐫𝐧𝐦𝐞𝐧𝐭 𝐨𝐟 𝐋𝐮𝐱𝐞𝐦𝐛𝐨𝐮𝐫𝐠. #CyberDiplomacy #CyberLeadership #CyberSecurity #Geopolitics #ThreatIntelligence Cyber Security Forum Initiative

🇸🇪🇬🇧🇺🇸Silobreaker provides #CSFI with persistent, all-source #OSINT collection and analysis to maintain situational awareness on Iran’s protest operating environment (OE); fusing 🇮🇷 Iranian and international reporting while also enabling deeper visibility into regional *cyber activity* (APTs, TTPs, etc). The platform supports rapid correlation of disparate indicators into actionable cyber threat intelligence (CTI) enrichment and decision advantage! If you’d like a capability brief or a demo, please contact my primary POC (and dear friend for many years): Darrell Johnston.☘️ 𝐃𝐫𝐨𝐩 “𝐒𝐈𝐋𝐎” 𝐢𝐧 𝐭𝐡𝐞 𝐜𝐨𝐦𝐦𝐞𝐧𝐭𝐬 🗨️ 𝐢𝐟 𝐲𝐨𝐮 𝐰𝐚𝐧𝐭 𝐚 𝐪𝐮𝐢𝐜𝐤 𝐝𝐞𝐦𝐨 𝐨𝐫 𝐚 𝐬𝐡𝐨𝐫𝐭 𝐛𝐫𝐢𝐞𝐟𝐢𝐧𝐠 📊 The Silobreaker dashboard is simply outstanding! 📌𝐋𝐞𝐚𝐝𝐞𝐫𝐬𝐡𝐢𝐩 𝐭𝐚𝐤𝐞𝐚𝐰𝐚𝐲: treat geopolitical OSINT as indications & warning (I&W) to stress-test resilience and continuity. The intent is to ensure teams are postured for: 📌𝐃𝐞𝐠𝐫𝐚𝐝𝐞𝐝 𝐜𝐨𝐧𝐧𝐞𝐜𝐭𝐢𝐯𝐢𝐭𝐲 / intermittent access and downstream impacts to operations and comms 📌𝐄𝐥𝐞𝐯𝐚𝐭𝐞𝐝 𝐝𝐢𝐬𝐢𝐧𝐟𝐨𝐫𝐦𝐚𝐭𝐢𝐨𝐧 / influence pressure across the information environment 📌𝐈𝐧𝐜𝐫𝐞𝐚𝐬𝐞𝐝 𝐃𝐃𝐨𝐒 / volumetric attack risk against public services with potential spillover effects 📌𝐑𝐚𝐩𝐢𝐝 𝐩𝐨𝐥𝐢𝐜𝐲/sanctions/compliance shifts that can constrain operations with minimal notice 🏙️ 𝐂𝐢𝐭𝐢𝐞𝐬 𝐭𝐫𝐞𝐧𝐝𝐢𝐧𝐠 𝐢𝐧 𝐯𝐢𝐨𝐥𝐞𝐧𝐜𝐞 𝐚𝐧𝐝 𝐜𝐲𝐛𝐞𝐫 𝐚𝐜𝐭𝐢𝐯𝐢𝐭𝐲 𝐢𝐧 𝐭𝐡𝐞 𝐩𝐚𝐬𝐭 𝟕 𝐝𝐚𝐲𝐬: 🇮🇷👉Bandar Abbas (major port on the Persian Gulf / Strait of Hormuz)🤔 Bukan 🇮🇷 Bushehr 🇮🇷 Khorramabad 🇮🇷 Arak 🇮🇷 Cyber Security Forum Initiative CSFI Cyber Threat Intelligence Division (CSFI-CTID) #CTI #silobreaker Remember to: 👍 LIKE 💬 COMMENT | 🔄 SHARE |📲 FOLLOW me for more!

🚨𝟓𝟎% 𝐑𝐂𝐂𝐉𝐎𝐀 𝐭𝐫𝐚𝐢𝐧𝐢𝐧𝐠 𝐝𝐢𝐬𝐜𝐨𝐮𝐧𝐭 𝐞𝐱𝐜𝐥𝐮𝐬𝐢𝐯𝐞 𝐭𝐨 𝐥𝐚𝐰 𝐞𝐧𝐟𝐨𝐫𝐜𝐞𝐦𝐞𝐧𝐭 𝐦𝐞𝐦𝐛𝐞𝐫𝐬! 𝐀𝐭𝐭𝐞𝐧𝐭𝐢𝐨𝐧, 𝐥𝐚𝐰 𝐞𝐧𝐟𝐨𝐫𝐜𝐞𝐦𝐞𝐧𝐭 𝐦𝐞𝐦𝐛𝐞𝐫𝐬! Violent extremist elements are on the move. What is your plan to detect, disrupt, and contain them? ❓What do you know about their beliefs & motivations? ❓What do you know about your own vulnerabilities in preventing terrorist attacks? ❓Do you know how to identify and counter online radicalization? ***REGISTER HERE***: https://csfi.us/?p=rccjoa ✍️***PAY HERE***: https://lnkd.in/di5YEDUG (50% OFF!) 📡 Join the RCCJOA for a revolutionary training experience! Connect from any location, at any hour of the day, on your chosen platform. Uncover endless possibilities with this flexible asynchronous virtual learning opportunity! ⚠️ 𝐂𝐎𝐒𝐓 𝐅𝐎𝐑 𝐋𝐀𝐖 𝐄𝐍𝐅𝐎𝐑𝐂𝐄𝐌𝐄𝐍𝐓 𝐎𝐍𝐋𝐘: 𝐔𝐒 $𝟓𝟎𝟎.𝟎𝟎 #RCCJOA helps your team accomplish this by looking at the entire threat picture posed by #Jihadists and their current operations worldwide. It takes you deep into the world of extremist ideology and terrorist tactics, techniques, and procedures. It looks at online social media activity, recruiting, and how the radicalization process unfolds. Most importantly, it teaches you what to do about it. Are you ready to identify and fight online radicalization? Sign up today for the *Radicalization and Counter Cyber Jihadist Operations Analyst* COURSE AND CERTIFICATION! Famous Canadian spy and CSFI Instructor Mubin Shaikh teaches you how! 🇺🇸🇨🇦 #training #lawenforcement #counterterrorism United States Capitol Police #radicalization Cyber Security Forum Initiative #CSFI "𝐼 𝑎𝑚 𝑎 𝑟𝑒𝑐𝑒𝑛𝑡 𝑔𝑟𝑎𝑑𝑢𝑎𝑡𝑒 𝑜𝑓 𝑡ℎ𝑒 𝐶𝑆𝐹𝐼 𝑅𝑎𝑑𝑖𝑐𝑎𝑙𝑖𝑧𝑎𝑡𝑖𝑜𝑛 𝑎𝑛𝑑 𝐶𝑜𝑢𝑛𝑡𝑒𝑟/𝐶𝑦𝑏𝑒𝑟 𝐽𝑖ℎ𝑎𝑑𝑖𝑠𝑡 𝑂𝑝𝑒𝑟𝑎𝑡𝑖𝑜𝑛𝑠 𝐴𝑛𝑎𝑙𝑦𝑠𝑡 (𝑅𝐶𝐶𝐽𝑂𝐴) 𝑐𝑜𝑢𝑟𝑠𝑒. 𝐼 ℎ𝑎𝑣𝑒 𝑝𝑟𝑒𝑣𝑖𝑜𝑢𝑠𝑙𝑦 𝑐𝑜𝑚𝑝𝑙𝑒𝑡𝑒𝑑 𝑇𝑒𝑟𝑟𝑜𝑟𝑖𝑠𝑚 𝐿𝑖𝑎𝑖𝑠𝑜𝑛 𝑂𝑓𝑓𝑖𝑐𝑒𝑟 𝑠𝑐ℎ𝑜𝑜𝑙 𝑎𝑛𝑑 ℎ𝑎𝑣𝑒 𝑤𝑜𝑟𝑘𝑒𝑑 𝑖𝑛 𝑙𝑎𝑤 𝑒𝑛𝑓𝑜𝑟𝑐𝑒𝑚𝑒𝑛𝑡 𝑖𝑛 𝑠𝑜𝑚𝑒 𝑐𝑎𝑝𝑎𝑐𝑖𝑡𝑦 𝑓𝑜𝑟 𝑜𝑣𝑒𝑟 10 𝑦𝑒𝑎𝑟𝑠 𝑜𝑓 𝑚𝑦 𝑙𝑖𝑓𝑒. 𝐼 𝑏𝑒𝑙𝑖𝑒𝑣𝑒 𝑡ℎ𝑎𝑡 𝑡ℎ𝑒 𝑅𝐶𝐶𝐽𝑂𝐴 𝑒𝑑𝑢𝑐𝑎𝑡𝑖𝑜𝑛𝑎𝑙 𝑚𝑎𝑡𝑒𝑟𝑖𝑎𝑙 𝑎𝑛𝑑 𝑡ℎ𝑒 𝑏𝑜𝑛𝑢𝑠 𝑚𝑎𝑡𝑒𝑟𝑖𝑎𝑙 𝑝𝑟𝑜𝑣𝑖𝑑𝑒𝑑 𝑜𝑛 𝑐𝑜𝑚𝑝𝑙𝑒𝑡𝑖𝑜𝑛 𝑜𝑓 𝑡ℎ𝑒 𝑐𝑜𝑢𝑟𝑠𝑒 𝑖𝑠 𝑤𝑒𝑙𝑙 𝑤𝑜𝑟𝑡ℎ 𝑡ℎ𝑒 𝑝𝑟𝑖𝑐𝑒 𝑜𝑓 𝑒𝑛𝑡𝑟𝑦. 𝐼 𝑤𝑜𝑢𝑙𝑑 𝑟𝑒𝑐𝑜𝑚𝑚𝑒𝑛𝑑 𝑡ℎ𝑖𝑠 𝑐𝑙𝑎𝑠𝑠 𝑤𝑖𝑡ℎ𝑜𝑢𝑡 ℎ𝑒𝑠𝑖𝑡𝑎𝑡𝑖𝑜𝑛." 𝐴𝑎𝑟𝑜𝑛 𝐽𝑜𝑛𝑒𝑠, 𝐶ℎ𝑎𝑛𝑑𝑙𝑒𝑟 𝑃𝑜𝑙𝑖𝑐𝑒 𝐷𝑒𝑝𝑎𝑟𝑡𝑚𝑒𝑛𝑡, 𝐴𝑟𝑖𝑧𝑜𝑛𝑎.

🇺🇸 𝗔𝗿𝘁𝗶𝗳𝗶𝗰𝗶𝗮𝗹 𝗜𝗻𝘁𝗲𝗹𝗹𝗶𝗴𝗲𝗻𝗰𝗲 𝗶𝘀 𝗿𝗲𝘀𝗵𝗮𝗽𝗶𝗻𝗴 𝘁𝗵𝗲 𝗯𝗮𝘁𝘁𝗹𝗲𝗳𝗶𝗲𝗹𝗱 𝗯𝘆 𝗰𝗼𝗺𝗽𝗿𝗲𝘀𝘀𝗶𝗻𝗴 𝘁𝗵𝗲 𝘁𝗶𝗺𝗲 𝗯𝗲𝘁𝘄𝗲𝗲𝗻 𝘀𝗲𝗲𝗶𝗻𝗴, 𝗱𝗲𝗰𝗶𝗱𝗶𝗻𝗴, 𝗮𝗻𝗱 𝗮𝗰𝘁𝗶𝗻𝗴. The 𝗠𝗮𝘃𝗲𝗻 𝗦𝗺𝗮𝗿𝘁 𝗦𝘆𝘀𝘁𝗲𝗺 was built to accelerate military targeting by fusing enormous volumes of intelligence, satellite imagery, drone feeds, and signals intelligence into a faster operational picture. Developed with Palantir Technologies, this 𝗮𝗿𝘁𝗶𝗳𝗶𝗰𝗶𝗮𝗹 𝗶𝗻𝘁𝗲𝗹𝗹𝗶𝗴𝗲𝗻𝗰𝗲-powered command-and-control platform reportedly integrates data from more than ***150 sensors*** to identify, classify, and track threats in near real time. The strategic value: 𝗶𝘁 𝘀𝗵𝗼𝗿𝘁𝗲𝗻𝘀 𝘁𝗵𝗲 𝗽𝗮𝘁𝗵 𝗳𝗿𝗼𝗺 𝘀𝗲𝗻𝘀𝗼𝗿 𝘁𝗼 𝗱𝗲𝗰𝗶𝘀𝗶𝗼𝗻 𝘁𝗼 𝗲𝘅𝗲𝗰𝘂𝘁𝗶𝗼𝗻. 📍 𝗪𝗵𝘆 𝘁𝗵𝗶𝘀 𝗺𝗮𝘁𝘁𝗲𝗿𝘀 • 𝗦𝗽𝗲𝗲𝗱 is now a battlefield advantage. • 𝗔𝗿𝘁𝗶𝗳𝗶𝗰𝗶𝗮𝗹 𝗶𝗻𝘁𝗲𝗹𝗹𝗶𝗴𝗲𝗻𝗰𝗲 helps commanders move through data saturation faster. • 𝗧𝗮𝗿𝗴𝗲𝘁𝗶𝗻𝗴 𝗰𝘆𝗰𝗹𝗲𝘀 are being compressed by machine-assisted analysis and automation. • 𝗛𝘂𝗺𝗮𝗻 𝗷𝘂𝗱𝗴𝗺𝗲𝗻𝘁 remains essential for validation, legality, and commander intent. 📍 𝗛𝗼𝘄 𝘁𝗵𝗲 𝗳𝗹𝗼𝘄 𝘄𝗼𝗿𝗸𝘀 ➤ 𝗦𝘁𝗲𝗽 𝗔 — 𝗖𝗼𝗹𝗹𝗲𝗰𝘁𝗶𝗼𝗻 𝗮𝗻𝗱 𝗜𝗻𝗴𝗲𝘀𝘁 • Intelligence, surveillance, and reconnaissance systems collect imagery, video, and sensor streams. • The Maven Smart System ingests those feeds for large-scale analysis and fusion. ➤ 𝗦𝘁𝗲𝗽 𝗕 — 𝗙𝘂𝘀𝗶𝗼𝗻 𝗶𝗻𝘁𝗼 𝗮 𝗦𝗵𝗮𝗿𝗲𝗱 𝗕𝗮𝘁𝘁𝗹𝗲𝘀𝗽𝗮𝗰𝗲 𝗣𝗶𝗰𝘁𝘂𝗿𝗲 • Data from multiple sources is fused into a common operational picture. • Multiple echelons can view the same battlespace and focus quickly on areas of interest. ➤ 𝗦𝘁𝗲𝗽 𝗖 — 𝗔𝗿𝘁𝗶𝗳𝗶𝗰𝗶𝗮𝗹 𝗜𝗻𝘁𝗲𝗹𝗹𝗶𝗴𝗲𝗻𝗰𝗲 𝗖𝘂𝗲𝗶𝗻𝗴 • Computer vision and tracking models detect, classify, and follow potential threats. • The system helps surface likely targets faster than manual review alone. ➤ 𝗦𝘁𝗲𝗽 𝗗 — 𝗔𝗻𝗮𝗹𝘆𝘀𝘁 𝗥𝗲𝘃𝗶𝗲𝘄 𝗮𝗻𝗱 𝗣𝗼𝘀𝗶𝘁𝗶𝘃𝗲 𝗜𝗱𝗲𝗻𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻 • Human analysts validate the data against mission requirements and commander intent. • Artificial intelligence narrows the search, but people remain central to positive identification. ➤ 𝗦𝘁𝗲𝗽 𝗘 — 𝗧𝗮𝗿𝗴𝗲𝘁 𝗠𝗮𝗻𝗮𝗴𝗲𝗺𝗲𝗻𝘁 𝗮𝗻𝗱 𝗣𝗿𝗶𝗼𝗿𝗶𝘁𝗶𝘇𝗮𝘁𝗶𝗼𝗻 • Advanced tools help organize, rank, and prioritize targets. • This supports faster decisions inside a synchronized battlefield framework. ➤ 𝗦𝘁𝗲𝗽 𝗙 — 𝗗𝗶𝗴𝗶𝘁𝗮𝗹 𝗛𝗮𝗻𝗱𝗼𝗳𝗳 𝘁𝗼 𝗠𝗶𝘀𝘀𝗶𝗼𝗻 𝗦𝘆𝘀𝘁𝗲𝗺𝘀 • Once validated, targeting data can move directly into mission-command and fire-support systems. • That reduces friction between nomination and execution. ➤ 𝗦𝘁𝗲𝗽 𝗚 — 𝗔𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁 𝗮𝗻𝗱 𝗙𝗲𝗲𝗱𝗯𝗮𝗰𝗸 • Effects and battle damage assessments feedback into the system. • The shared picture updates continuously, improving the next decision cycle. Cyber Security Forum Initiative #CSFI #AI United States Department of War

🇪🇺 𝐄𝐔 𝐅𝐔𝐍𝐃𝐈𝐍𝐆 𝐎𝐏𝐏𝐎𝐑𝐓𝐔𝐍𝐈𝐓𝐈𝐄𝐒 𝐎𝐏𝐄𝐍 𝐍𝐎𝐖 I’m seeing strong strategic momentum across the Digital Europe Programme, and two active calls stand out for Member States, public administrations, and trusted partners: 🔹 𝐂𝐫𝐨𝐬𝐬-𝐁𝐨𝐫𝐝𝐞𝐫 𝐂𝐲𝐛𝐞𝐫 𝐇𝐮𝐛𝐬 Strengthen collective cyber defense, shared situational awareness, and operational collaboration across Europe. 🔹 𝐈𝐧𝐧𝐨𝐯𝐚𝐭𝐢𝐯𝐞 & 𝐂𝐨𝐧𝐧𝐞𝐜𝐭𝐞𝐝 𝐏𝐮𝐛𝐥𝐢𝐜 𝐀𝐝𝐦𝐢𝐧𝐢𝐬𝐭𝐫𝐚𝐭𝐢𝐨𝐧𝐬 (𝐌𝐂𝐏) Advance cross-border digital services, interoperability frameworks, and shared data ecosystems. 📅 𝐃𝐞𝐚𝐝𝐥𝐢𝐧𝐞𝐬 𝐚𝐩𝐩𝐫𝐨𝐚𝐜𝐡𝐢𝐧𝐠 (𝐌𝐚𝐲 𝟐𝟎𝟐𝟔) 💶 𝐅𝐮𝐧𝐝𝐢𝐧𝐠 𝐚𝐯𝐚𝐢𝐥𝐚𝐛𝐥𝐞 𝐟𝐨𝐫 𝐦𝐮𝐥𝐭𝐢-𝐜𝐨𝐮𝐧𝐭𝐫𝐲 𝐜𝐨𝐥𝐥𝐚𝐛𝐨𝐫𝐚𝐭𝐢𝐨𝐧 👉 If you are building capabilities in: • Cyber threat intelligence sharing • Cross-border operational coordination • Interoperable digital infrastructure • Public sector cyber resilience This is the moment to engage, build consortia, and position strategically. Europe is investing in 𝐜𝐨𝐥𝐥𝐞𝐜𝐭𝐢𝐯𝐞 𝐜𝐲𝐛𝐞𝐫 𝐬𝐭𝐫𝐞𝐧𝐠𝐭𝐡 𝐚𝐧𝐝 𝐢𝐧𝐭𝐞𝐫𝐨𝐩𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 𝐚𝐭 𝐬𝐜𝐚𝐥𝐞, those who move early will shape the architecture! #CyberSecurity #EUFunding #DigitalEurope #CyberDefense #Interoperability #CTI Cyber Security Forum Initiative European Cybersecurity Competence Centre (ECCC) European Union Council of the European Union NATO

🇺🇸 𝐕𝐨𝐥𝐮𝐧𝐭𝐞𝐞𝐫 𝐎𝐩𝐩𝐨𝐫𝐭𝐮𝐧𝐢𝐭𝐲 (𝐃𝐌𝐕) ➜ 𝐂𝐒𝐅𝐈 𝐄𝐱𝐞𝐜𝐮𝐭𝐢𝐯𝐞 𝐀𝐬𝐬𝐢𝐬𝐭𝐚𝐧𝐭 𝐏𝐫𝐨𝐠𝐫𝐚𝐦 🎓 𝐂𝐨𝐥𝐥𝐞𝐠𝐞 𝐒𝐭𝐮𝐝𝐞𝐧𝐭𝐬 𝐏𝐫𝐞𝐟𝐞𝐫𝐫𝐞𝐝. We are recruiting volunteer Executive Assistants in the DMV to support CSFI leadership through the 𝐂𝐒𝐅𝐈 𝐄𝐱𝐞𝐜𝐮𝐭𝐢𝐯𝐞 𝐀𝐬𝐬𝐢𝐬𝐭𝐚𝐧𝐭 𝐏𝐫𝐨𝐠𝐫𝐚𝐦. If you are studying IT, marketing, cybersecurity, or you are serious about breaking into the cybersecurity field, we want to hear from you. ➜ This is a 𝐯𝐨𝐥𝐮𝐧𝐭𝐞𝐞𝐫, 𝐦𝐢𝐬𝐬𝐢𝐨𝐧-𝐝𝐫𝐢𝐯𝐞𝐧 𝐫𝐨𝐥𝐞. It supports cyber warfare awareness, collaboration, and professional development inside a cybersecurity-focused environment. 𝐖𝐡𝐚𝐭 𝐲𝐨𝐮 𝐰𝐢𝐥𝐥 𝐬𝐮𝐩𝐩𝐨𝐫𝐭: ▪️ Executive and administrative coordination (meetings, correspondence, precision follow-through) ▪️ Communications liaison work (across internal teams and external stakeholders) ▪️ Project coordination (for strategic initiatives, events, and training activities) ▪️ Information and record management (with a strong security mindset) 𝐖𝐡𝐨 𝐰𝐞 𝐚𝐫𝐞 𝐥𝐨𝐨𝐤𝐢𝐧𝐠 𝐟𝐨𝐫: ▪️ ***𝐔𝐒 𝐜𝐢𝐭𝐢𝐳𝐞𝐧𝐬 𝐨𝐧𝐥𝐲 ▪️ Local to 𝐖𝐚𝐬𝐡𝐢𝐧𝐠𝐭𝐨𝐧, 𝐃𝐂 / 𝐕𝐢𝐫𝐠𝐢𝐧𝐢𝐚 / 𝐌𝐚𝐫𝐲𝐥𝐚𝐧𝐝 (𝐃𝐌𝐕) ▪️ College students preferred (IT, marketing, cybersecurity, or adjacent fields) ▪️ Strong writing, organization, and professional judgment ▪️ Comfortable handling sensitive information with discretion 𝐒𝐞𝐥𝐞𝐜𝐭𝐢𝐨𝐧 𝐚𝐧𝐝 𝐨𝐧𝐛𝐨𝐚𝐫𝐝𝐢𝐧𝐠: 📌 Screening and interviews are required due to the nature of the work 📌 A signed NDA is required 📌 CSFI Code of Conduct adherence is required 📌 Public Engagement Guidance will be provided during onboarding 📌 A recommendation letter (professional reference) is required 𝐂𝐨𝐦𝐦𝐢𝐭𝐦𝐞𝐧𝐭: ⏳ 𝐌𝐢𝐧𝐢𝐦𝐮𝐦 𝐨𝐧𝐞-𝐲𝐞𝐚𝐫 𝐜𝐨𝐦𝐦𝐢𝐭𝐦𝐞𝐧𝐭 𝐇𝐨𝐰 𝐭𝐨 𝐚𝐩𝐩𝐥𝐲: 📩 Send your resume and cover letter to contact@csfi.us Include a short note explaining why you want to serve and what you want to learn. 🤝 We welcome serious applicants who value professionalism, discipline, and service. Cyber Security Forum Initiative #CSFI WWW.CSFI.US

𝗪𝗵𝗲𝗻 𝘁𝗵𝗲 𝗴𝗹𝗼𝗯𝗮𝗹 𝘀𝘁𝗮𝗻𝗱𝗮𝗿𝗱 𝗶𝘀 𝗮 𝗺𝗮𝗿𝗮𝘁𝗵𝗼𝗻, 𝗱𝗼𝗻’𝘁 𝘀𝗲𝘁𝘁𝗹𝗲 𝗳𝗼𝗿 𝗮 𝘀𝗽𝗿𝗶𝗻𝘁. 🌍 Most CTFs are a 48-hour pressure cooker. 𝗖𝘆𝗯𝗲𝗿𝗚𝗮𝗺𝗲 𝟮𝟬𝟮𝟲 flips the script. We are a 𝟭𝟬-𝘄𝗲𝗲𝗸 𝗺𝗮𝗿𝗮𝘁𝗵𝗼𝗻 built for those who want to master the "why," not just the "how." With 70 days of gameplay and 70+ diverse challenges, you have the space to deep-dive, research, and truly level up. 𝗗𝗼𝗻'𝘁 𝗷𝘂𝘀𝘁 𝗰𝗼𝗺𝗽𝗲𝘁𝗲. 𝗘𝘃𝗼𝗹𝘃𝗲. 𝗪𝗵𝘆 𝗝𝗼𝗶𝗻 𝗖𝘆𝗯𝗲𝗿𝗚𝗮𝗺𝗲? 𝟳𝟬-𝗗𝗮𝘆 𝗗𝗲𝗲𝗽 𝗗𝗶𝘃𝗲: Trade burnout for mastery. You have 10 weeks to solve complex tasks at your own pace. ⏳ 𝗗𝗶𝘃𝗲𝗿𝘀𝗲 𝗦𝗸𝗶𝗹𝗹 𝗧𝗿𝗮𝗰𝗸𝘀: Hands-on experience in 𝗠𝗮𝗹𝘄𝗮𝗿𝗲 𝗔𝗻𝗮𝗹𝘆𝘀𝗶𝘀, 𝗙𝗼𝗿𝗲𝗻𝘀𝗶𝗰𝘀, 𝗢𝗦𝗜𝗡𝗧, and 𝗢𝗳𝗳𝗲𝗻𝘀𝗶𝘃𝗲 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆. 🔍 𝗥𝗲𝗮𝗹-𝗪𝗼𝗿𝗹𝗱 𝗦𝗰𝗲𝗻𝗮𝗿𝗶𝗼𝘀: Solve 15+ logically connected scenarios that mimic actual cyber incidents. 💻 𝗖𝗮𝗿𝗲𝗲𝗿 𝗟𝗮𝘂𝗻𝗰𝗵𝗽𝗮𝗱: Top performers can qualify for the 𝗘𝘂𝗿𝗼𝗽𝗲𝗮𝗻 𝗖𝘆𝗯𝗲𝗿 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗖𝗵𝗮𝗹𝗹𝗲𝗻𝗴𝗲 (𝗘𝗖𝗦𝗖). 🏆 𝗢𝗽𝗲𝗻 𝘁𝗼 𝗔𝗹𝗹: From students to pros—all you need is a PC and a "never-give-up" attitude. 🚀 𝗘𝘅𝗽𝗲𝗿𝘁 𝗦𝘂𝗽𝗽𝗼𝗿𝘁: Access a dedicated community and advice from the 𝗦𝗞-𝗖𝗘𝗥𝗧 team. 🤝 👇 𝗥𝗲𝗴𝗶𝘀𝘁𝗿𝗮𝘁𝗶𝗼𝗻 𝗹𝗶𝗻𝗸 𝗶𝗻 𝘁𝗵𝗲 𝗰𝗼𝗺𝗺𝗲𝗻𝘁𝘀! #cybersecurity #cybergame #cyberexercise #cyberCTF Cyber Security Forum Initiative

🛡️ 𝗡𝗔𝗧𝗢 𝗟𝗢𝗬𝗔𝗟 𝗟𝗘𝗗𝗔 𝟮𝟬𝟮𝟲: 𝗗𝗲𝗳𝗶𝗻𝗶𝗻𝗴 𝘁𝗵𝗲 𝗙𝘂𝘁𝘂𝗿𝗲 𝗼𝗳 𝗖𝗼𝗹𝗹𝗲𝗰𝘁𝗶𝘃𝗲 𝗗𝗲𝗳𝗲𝗻𝘀𝗲. ⚔️ 𝗦𝗰𝗮𝗹𝗲 & 𝗦𝗰𝗼𝗽𝗲: Involved over 4,000 warfighters from 25 nations. ⚔️ Here are the most interesting cyber-focused facts from the exercise: 🟦 𝗢𝗳𝗳𝗲𝗻𝘀𝗶𝘃𝗲 𝗣𝗼𝗹𝗶𝗰𝘆 𝗦𝗵𝗶𝗳𝘁𝘀: LOLE26 provided a venue for NATO to test its move toward a more proactive and offensive cyber posture, where members can provide ***cyber weaponry "effects"*** to a commander without sharing the sensitive source code or specifics of the tool. 🟦 𝗧𝘄𝗲𝗻𝘁𝘆-𝗙𝗼𝘂𝗿/𝗦𝗲𝘃𝗲𝗻 𝗛𝘆𝗯𝗿𝗶𝗱 𝗪𝗮𝗿𝗳𝗮𝗿𝗲 𝗜𝗻𝗷𝗲𝗰𝘁𝘀: The exercise wasn't limited to the physical battlefield. Participants faced constant "injects" (simulated events) from response cells that included simulated cyberattacks on critical infrastructure like electrical grids and supply chains. 🎖️ 𝗞𝗲𝘆 𝗖𝘆𝗯𝗲𝗿 𝗧𝗮𝗸𝗲𝗮𝘄𝗮𝘆𝘀: 🟦 𝗜𝗻𝘁𝗲𝗴𝗿𝗮𝘁𝗲𝗱 𝗘𝗳𝗳𝗲𝗰𝘁𝘀: For the first time, cyber operations were fully synchronized with Air, Space, and Land domains under a single Article 5 scenario. 🟦 𝗜𝗻𝗳𝗿𝗮𝘀𝘁𝗿𝘂𝗰𝘁𝘂𝗿𝗲 𝗗𝗲𝗳𝗲𝗻𝘀𝗲: Simulated attacks on electrical grids and supply chains forced commanders to adapt to a "contested" digital environment. 🟦 𝗙𝘂𝘁𝘂𝗿𝗲-𝗣𝗿𝗼𝗼𝗳 𝗧𝗲𝗰𝗵: Testing the latest in AI-driven network defense and Zero Trust architecture across 9 Allied territories. NATO NATO Communications and Information Agency (NCI Agency) Cyber Security Forum Initiative #CSFI #NATO

🌏 In an age of geopolitical disruption and global crises, #diplomacy is an increasingly crucial skill to manage #conflict, to advocate for new ideas and to achieve sustainable political outcomes through #dialogue and #negotiation. In this course on Diplomatic Tradecraft for Non-Diplomats 2026, you'll explore the evolution of diplomacy, #crisismanagement, negotiation tactics, #communication & #leadership skills to enhance your knowledge and use of diplomatic tools & practices! 📅 Sign up before 4 May to take part: https://bit.ly/4pKB7ao Modules: ✔️The core modules for the course are:  ✔️What does a diplomat do? ✔️Negotiating as a diplomat ✔️Diplomatic jargon busting ✔️Soft Power ✔️Working with the media ✔️Bilateral and Multilateral Diplomacy ✔️Diplomatic Writing 🇨🇭[ D I P L O M A T I C  T R A D E C R A F T ] 👉 𝐈 𝐰𝐢𝐥𝐥 𝐛𝐞 𝐚𝐭𝐭𝐞𝐧𝐝𝐢𝐧𝐠 𝐭𝐡𝐢𝐬 𝐜𝐨𝐮𝐫𝐬𝐞, 𝐚𝐧𝐝 𝐈 𝐰𝐨𝐮𝐥𝐝 𝐛𝐞 𝐩𝐥𝐞𝐚𝐬𝐞𝐝 𝐭𝐨 𝐡𝐚𝐯𝐞 𝐚 𝐬𝐞𝐥𝐞𝐜𝐭 𝐠𝐫𝐨𝐮𝐩 𝐨𝐟 𝐜𝐥𝐨𝐬𝐞 𝐜𝐨𝐧𝐧𝐞𝐜𝐭𝐢𝐨𝐧𝐬 𝐣𝐨𝐢𝐧 𝐦𝐞 𝐚𝐬 𝐰𝐞 𝐜𝐨𝐧𝐭𝐢𝐧𝐮𝐞 𝐫𝐞𝐟𝐢𝐧𝐢𝐧𝐠 𝐭𝐡𝐞 𝐝𝐢𝐩𝐥𝐨𝐦𝐚𝐭𝐢𝐜 𝐣𝐮𝐝𝐠𝐦𝐞𝐧𝐭 𝐚𝐧𝐝 𝐥𝐞𝐚𝐝𝐞𝐫𝐬𝐡𝐢𝐩 𝐬𝐤𝐢𝐥𝐥𝐬 𝐫𝐞𝐪𝐮𝐢𝐫𝐞𝐝 𝐭𝐨 𝐧𝐚𝐯𝐢𝐠𝐚𝐭𝐞 𝐭𝐨𝐝𝐚𝐲’𝐬 𝐜𝐨𝐦𝐩𝐥𝐞𝐱 𝐠𝐥𝐨𝐛𝐚𝐥 𝐞𝐧𝐯𝐢𝐫𝐨𝐧𝐦𝐞𝐧𝐭. 🇨🇭[ L E A D E R S H I P  I N  A C T I O N ] Geneva Centre for Security Policy #GCSP