43 - GPT-4 Exploits 87% of Vulns, New CISA Requirements, VPNs Under Attack, and NIST Issues Digital Identity Updates Artwork

Emagine The Future

Emagine the Future is a cybersecurity and technology podcast aimed to offer ambitious technology and national security professionals with actionable insights and unique stories from proven industry leaders.

Each week, we release conversations with experts from the intelligence, defense, civilian, and private sectors where we discuss current events, career and skill development, technology and national security, and the future. Obtain the edge you need to stay current, to accelerate your development, and to elevate your impact.

All Episodes

Emagine The Future

43 - GPT-4 Exploits 87% of Vulns, New CISA Requirements, VPNs Under Attack, and NIST Issues Digital Identity Updates

April 30, 2024 • Emagine IT

Welcome to Episode 43 of Emagine The Future, our 4th of our "This Month in Cyber" series - April 2024 edition.

March Catchup (Things we missed):

NIST Unveils New Consortium to Operate its National Vulnerability Database
https://www.infosecurity-magazine.com/news/nist-unveils-new-nvd-consortium/
A New Roadmap for FedRAMP
https://www.fedramp.gov/2024-03-28-a-new-roadmap-for-fedramp/
Review of the Summer 2023 Microsoft Exchange Online Intrusion
https://www.cisa.gov/sites/default/files/2024-04/CSRB_Review_of_the_Summer_2023_MEO_Intrusion_Final_508c.pdf.

Incidents & Breaches:

Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH Services
https://thehackernews.com/2024/04/cisco-warns-of-global-surge-in-brute.html?&web_view=true.
GPT-4 Can Exploit Most Vulns Just by Reading Threat Advisories https://www.darkreading.com/threat-intelligence/gpt-4-can-exploit-most-vulns-just-by-reading-threat-advisories

Regulatory & Government:

New CISA Cybersecurity Incident Reporting Requirements Proposed for Critical Infrastructure Companies https://www.nextgov.com/cybersecurity/2024/03/cisas-proposed-framework-cyber-incident-reporting-rules-includes-subpoena-power/395275/?oref=ngfcw_alert_nl&utm_source=Sailthru&utm_medium=email&utm_campaign=Nextgov/FCW%20Alert%20-%20March%2027%2C%202024&utm_term=newsletter_ng_alert
- Formal Update: https://www.federalregister.gov/documents/2024/04/04/2024-06526/cyber-incident-reporting-for-critical-infrastructure-act-circia-reporting-requirements
NIST issues digital identity update allowing agencies to use synced passkeys , https://federalnewsnetwork.com/technology-main/2024/04/nist-issues-digital-identity-update-allowing-agencies-to-use-synced-passkeys/

Events That Occurred & Events < 60 Days Away:

RSA Conference (May 6-9) - San Francisco
45th IEEE Symposium on Security and Privacy (May 20-22, 2024 Security and Privacy Workshops will be held on May 23, 202 San Francisco
Gartner Security & Risk Management Summit (National Harbor, MD June 3-5)
GRC Summit 2024 Baltimore, June 17 & 18

Subscribe on YouTube: https://www.youtube.com/@EITisCyber

Connect on LinkedIn:
https://www.linkedin.com/company/emagine-it-inc-/posts/