The threat of malicious Chinese cyber actors (APT10) against global Managed Service Providers (MSPs)

March 23 @ 9:30 AM – 11:30 AM

FREE (All welcome!)

Event Details:  Everyone is invited to the 23 March free 9:30-11:30 morning meeting of our Information Systems Security Association Northern Virginia chapter (ISSA NoVa) Risk Management Framework (RMF) LifeBoat. We really appreciate Marymount University providing us with a meeting location in their Balston Center building located at 1000 N. Glebe Road, Arlington, Virginia. Please see below easy and complete instructions on how to find our Balston Center, parking, and room. Please see below for.

We can arrive at our room as early as 9am. Another group’s meeting begins at 11:30 so our RMF LifeBoat group discussion will end between 11:20 and 11:30. People can continue chatting together in the hall if they wish.

The other group is the splendid ISSA NoVa Python Programming class. Participants are reminded to bring their laptop to these meetings for the class hands-on labs. For more information about it, either text Constantinos Doskas, the course leader, at (703) 201-2401 and/or see: .

Please RSVP SOONEST since space is limited. Meetup members and nonmembers can RSVP on our “Risk-Management-Framework-LifeBoat” Meetup site or by calling Ginger at 703-402-4379.

ISSA NoVa Risk Management Framework Lifeboat

Fairfax, VA
586 RMF Knowledge Leaders

Calling all Cyber Security professionals responsible for implement NIST’s Risk Management Framework. Join the lively discussions as we go through the six RMF steps. Share your…

Next Meetup

APT 10 and Managed Service Providers (MSPs)

Saturday, Mar 23, 2019, 9:30 AM
29 Attending

Check out this Meetup Group →

Abstract: We are very fortunate to have Cindy Faith presenting her own research as a cybersecurity professional. The FBI’s indictment of the Advanced Persistent Threat (APT) 10 Chinese hacking group is the jumping off point for her presentation to identify the core security risk issues.

As alleged in the Indictment, from at least 2006 through 2018, the defendants conducted extensive campaigns of global intrusions into computer systems aiming to steal, among other data, intellectual property and confidential business and technological information from more than at least 45 commercial and defense technology companies in at least a dozen states, managed service providers (“MSP”), which are companies that remotely manage the information technology infrastructure of businesses and governments around the world, and U.S. government agencies.

The targeted victim companies were involved in a diverse array of commercial activity, industries, and technologies, including aviation, space and satellite technology, manufacturing technology, oil and gas exploration, production technology, communications technology, computer processor technology, and maritime technology. In addition, for example, the APT 10 Group’s campaign compromised the data of an MSP and certain of its clients located in at least 12 countries including Brazil, Canada, Finland, France, Germany, India, Japan, Sweden, Switzerland, the United Arab Emirates, the United Kingdom, and the United States.

Presenter’s Bio: Cindy Faith is presenting her own research as a cybersecurity professional without affiliation to her current position, employer, prime contractor, etc. References to open source material will be provided along with the presentation slides.

Cindy began her career when computer security was defined by the “rainbow series” – color-coded books of security standards and guidance published by NSA’s National Computer Security Center (NCSC). Cindy’s team built a compartmented mode workstation (CMW) under NSA’s trusted security evaluation program in the early 1990s. This work sparked her long-term interest in computer and cyber security. Cindy’s employment engagements include work as an unarmed security guard; Information Systems Security Officer (ISSO); senior security consultant; and business owner. She is a support contractor for the Cybersecurity and Infrastructure Security Agency (CISA), supporting cyber operations in the National Cybersecurity and Communications Integration Center (NCCIC) which monitors and responds to national-level physical and cyber threats. For more about CISA, see .

Instructions On How To Find Our Room and the Marymount Ballston Center

HOW TO FIND OUR ROOM: Go to lobby and take elevator to 2nd Floor. Turn to your left to another elevator to fourth floor. Follow signs to the assigned room that will be determined by number of people who RSVP.
HOW TO FIND OUR LOCATION – Request our “Directions to the building and room” PDF if you wish. It provides a helpful small reference map along with these instructions.

BALLSTON CENTER ADDRESS: 1000 N. Glebe Road, Arlington, Virginia

METRO: From the Ballston-MU Metro Station, head west on Fairfax DR toward N Stuart ST. Walk for 0.2 mile. Cross N Glebe RD to the entrance.

DRIVING: At the intersection of N Glebe RD and Fairfax DR. Underground parking costs $5 pay w/ credit card. Turn off Fairfax Drive across from the Holiday Inn Arlington At Ballston. Almost immediately, turn right at the corner of their building at 1000 N. Glebe Road. There are Marymount University signs on the drive down parking entrances are on the right.

Other Logistics:

Everyone may bring in your own snacks and drinks to the “brunch lunch” 9:30am-11:30am meeting. Some people also informally get together for “after the meeting” lunch together at a nearby restaurant.

Besides earning Professional Development Units (PDUs) for participating our ISSA Northern Virginia Chapter (ISSA NoVa) RMF LifeBoat Group meeting, we all receive the encouragement and help we need for our cyber security professional growth. The friendly interactive presentations by our members of the RMF LifeBoat group always lead to lively respectful discussions. Members always take away information that they that can be applied on the job in the following weeks! In additional our LifeBoat group meetings provide opportunities for the all-important professional networking. If you have a vexing problem, share with like-minded security professionals. They may have already successfully developed a way forward to resolve it.+ Google Calendar+ iCal Export


ISSA NOVA President Phone: +1 571 315 0552 Email: Website:


Marymount Balston 1000 N. Glebe Road
Arlington, VA United States + Google Map


Date: March 23 Time: 9:30 AM – 11:30 AM Cost: FREE (All welcome!) Website:

Leave a Comment

Your email address will not be published.