Phoenix Cast

In this episode of Phoenix Cast, hosts John, Rich, and Kyle discuss an exchange vulnerability and some thoughts on meetings - when to have them, what we need to fix, and even a tie into doctrine and planning. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: Exchange vuln:  https://www.bleepingcomputer.com/news/microsoft/microsoft-confirms-new-exchange-zero-days-are-used-in-attacks/ Adam Grant (tweet): https://twitter.com/adammgrant/status/1575919115621249025?s=46&t=3ssUn0PdP9nZeSGThMitSg Bloomberg Article: https://www.bloomberg.com/news/articles/2022-09-26/are-meetings-a-waste-of-time-pointless-plans-cost-big-companies-100m Book:  The Geography of Thought: How Asians and Westerners Think Differently...and Why https://a.co/d/eaMtKZk

In this episode of Phoenix Cast, hosts John and Kyle are joined by special guest Col Brian Russell and we discuss whether BYOD is the right thing for the Marine Corps.  Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: Fedscoop article on BYOD:  https://www.fedscoop.com/army-to-kick-off-bring-your-own-device-byod-pilot-in-coming-weeks/ Brian’s article for the MCA: https://mca-marines.org/blog/2022/07/12/before-firing-a-shot-operations-in-the-information-environment-in-the-marine-corps/ NIST 800-207: https://csrc.nist.gov/publications/detail/sp/800-207/final CrowdStrike’s Zero Trust overview: https://www.crowdstrike.com/cybersecurity-101/zero-trust-security/ Google BeyondCorp: https://cloud.google.com/beyondcorp Okta’s BeyondCorp Website: https://beyondcorp.com

In this episode of Phoenix Cast, hosts John and Kyle talk through a recent password manager hack, accessing air gapped data through LEDs, and NDAA language around vulnerabilities.  Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: Bloomberg article about LastPass: https://www.bloomberg.com/news/articles/2022-08-25/the-world-s-most-popular-password-manager-says-it-was-hacked Air gapped computers hacked through switch/network card LED lights: https://www.bleepingcomputer.com/news/security/etherled-air-gapped-systems-leak-data-via-network-card-leds/?fbclid=IwAR0KzowuUfZ_V5yKfcuwEmhn7DrcsasMQf8YHCbrtj6FjqXOy14iecjXsq8 NDAA: https://www.congress.gov/bill/117th-congress/house-bill/7900/text Sect 6722

In this episode of Phoenix Cast, hosts John and Kyle are joined by special guest LtCol Scott Cuomo and the team talks about Force Design 2030, Recon/Counter-Recon, and what experience Scott has experimenting with the concepts, and his recommendations for Comm / Intel / and Cyber Marines. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: WoTR podcast with MGen Donovan: https://warontherocks.com/2022/08/the-task-force-at-the-bleeding-edge-of-the-marine-corps/ Scott’s critique of Owen West’s article: https://warontherocks.com/2022/07/on-the-ground-truth-and-force-design-2030-reconciliation-a-way-forward/ FD2030 articles: https://mca-marines.org/wp-content/uploads/The-Case-for-Change.pdf https://www.armyupress.army.mil/journals/military-review/online-exclusive/2021-ole/berger-future/ https://www.usni.org/magazines/proceedings/2022/april/stand-forces-adapt-or-perish https://warontherocks.com/2020/05/getting-the-context-of-marine-corps-reform-right/ https://mca-marines.org/wp-content/uploads/Not-Yet-Openly-at-War-But-Still-Mostly-at-Peace.pdf

In this episode of Phoenix Cast, hosts John and Kyle discuss an article about strategic advantage and how the authors of the article feel cyber contributes (or fails to contribute). Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: Hill Article:  https://thehill.com/opinion/cybersecurity/3591153-us-strategic-advantage-depends-upon-addressing-cybersecurity-vulnerabilities-of-weapon-systems/amp/

In this episode of Phoenix Cast, hosts John, Rich, and Kyle are joined by special guest BGen Jay Matos and talk Task Force NetMod, the direction of the 06XX MOS, and what software development will look like in the Marine Corps. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: JADC2-https://www.defense.gov/News/News-Stories/Article/Article/2972369/jadc2-implementation-plan-finalized-signed-by-defense-leadership/ JWCC-https://en.wikipedia.org/wiki/Joint_Enterprise_Defense_Infrastructure Thunderdome-https://www.fedscoop.com/disa-setting-direction-for-thunderdome-cybersecurity-initiative/ Army Software Factory-https://www.fedscoop.com/marines-to-embed-at-army-software-factory%EF%BF%BC/ MCDP 8-https://www.marines.mil/News/Publications/MCPEL/Electronic-Library-Display/Article/3077947/mcdp-8-information/

In this episode of Phoenix Cast, hosts John and Kyle talk through PyPI announcing they were rolling out 2FA for critical repos and some of the fallout as a result of this decision. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: Snark:  https://www.merriam-webster.com/dictionary/snark PyPI article:  https://www.bleepingcomputer.com/news/security/pypi-mandates-2fa-for-critical-projects-developer-pushes-back/?fbclid=IwAR1miz9zGORelshF19IwWZ_GdGClAMCOdvXlDBfXiVwVzWKuHYcwZCkHKPE&fs=e&s=cl Ethical hacking gone wrong:  https://www.bleepingcomputer.com/news/security/hacker-says-hijacking-libraries-stealing-aws-keys-was-ethical-research/

In this episode of Phoenix Cast, hosts John, Rich, and Kyle talk about all things Space Force with special guest Erika Teichert. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: “Aliens” Space Marines getting ready: https://www.youtube.com/watch?v=1j3wJqvesDc Interesting Videos on Space Debris/Junk (https://www.youtube.com/watch?v=eeQnv_IWttw and https://www.youtube.com/watch?v=yS1ibDImAYU ) https://www.marines.mil/News/News-Display/Article/2961417/marine-corps-establishes-17xx-information-maneuver-occupational-field/ Joint Publication 2-01.1 - Joint Tactics, Techniques, and Procedures for Intelligence Support to Targeting (https://irp.fas.org/doddir/dod/jp2_01_1.pdf )

In this episode of Phoenix Cast, hosts John and Kyle talk about some current event type of things.  Have a listen to hear about an angry admin getting 7 years in prison, a passwordless movement, security implications of web 3.0, and an iPhone hack that works when your phone is powered off. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: Passwordless: https://developers.google.com/identity/fido https://moxie.org/2022/01/07/web3-first-impressions.html

Show notes In this episode of Phoenix Cast, hosts John and Kyle talk about a pair of recent hacks and some SaaS downtime. Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts. Links: -https://krebsonsecurity.com/2022/04/leaked-chats-show-lapsus-stole-t-mobile-source-code/  -https://krebsonsecurity.com/2022/03/a-closer-look-at-the-lapsus-data-extortion-group/ -https://www.microsoft.com/security/blog/2022/03/22/dev-0537-criminal-actor-targeting-organizations-for-data-exfiltration-and-destruction/ -https://www.wired.com/story/okta-hack-microsoft-bing-code-leak-lapsus/ -https://fortune.com/2022/03/24/mastermind-lapsus-microsoft-nvidia-okta-hack-16-year-old-living-mom/ -https://gizmodo.com/lapsus-hackers-are-stealing-microsoft-samsung-okta-d-1848687645 -https://newsletter.pragmaticengineer.com/p/scoop-atlassian?s=r