.png?width=200&height=78&name=CH%20Diligence%20(thicker%20line).png "CH Diligence (thicker line).png")
The Target: Discord is an instant messaging and VoIP social platform which allows communication through voice calls, video calls, text messaging, and media and files.
The Take: Four billion public Discord messages which were publicly accessible and gathered from 14,201 servers, which are home to 627,914,396 users.
The Vector: Scraping is a method where automated tools extract information from a platform, such as Discord, by exploiting weaknesses in bots or unofficial apps’ access and interaction with the targeted platform.
This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection. Change your password, enable two-factor authentication and be mindful of sharing personal information or sensitive content within Discord chats, even on private servers.
BNN Bloomberg: UK cybersecurity company Darktrace Plc agreed to sell itself to private equity firm Thoma Bravo for an equity value of about $5.32 billion. The deal will give Darktrace holders $7.75 in cash, or 620 pence per share, the companies said in a statement.
SecurityWeek: IBM and HashiCorp have entered into a definitive agreement approved by the boards of both companies, but the deal still requires approval from regulators. The transaction is expected to close by the end of the year.
Dark Reading: Malaysia has joined at least two other nations — Singapore and Ghana — in passing laws that require cybersecurity professionals or their firms to be certified and licensed to provide some cybersecurity services in their country.
PR Newswire: Abacus Group, the leading Managed Services Provider ("MSP") to financial services firms with specialized cybersecurity expertise provided by Gotham Security, an Abacus Group company, unveils a revamp of its integrated IT and security solutions and services to meet the changing needs of the financial services industry.
Globe Newswire: The Global Industrial Cybersecurity Market Size is to Grow from USD 18.74 Billion in 2023 to USD 39.94 Billion by 2033, at a Compound Annual Growth Rate (CAGR) of 7.86% during the projected period.
Forbes: In an era defined by digital transformation and escalating cyber threats, the role of cybersecurity has become ubiquitous. Today, no serious business can do without firewalls to prevent unauthorized access, encryption to protect digital assets or intrusion detection systems to prevent data breaches.
Bleeping Computer: Ransomware actors have had a rough start this year, as stats from cybersecurity firm Coveware show companies are increasingly refusing to pay extortion demands, leading to a record low of 28% of companies paying ransom in the first quarter of 2024.
The Target: Prisma Finance, a popular decentralized finance (DeFi) platform.
The Take: The Munchables blockchain-based game said it was attacked, and several security firms said about $62 million worth of cryptocurrency was stolen from the game. That incident was followed by another when a hacker stole about $11.6 million from Prisma Finance.
The Vector: The theft occurred as a result of a flash loan attack. Flash loan attacks involve hackers borrowing funds that do not require collateral, buying a significant amount of a cryptocurrency to artificially raise its price and then offloading the coins. The loan is paid back and the borrower keeps any profit. The report said that once the first person had exploited the vulnerability in the platform, two others copied the same method.
This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.
CNBC: Enterprise technology titan Cisco Systems unveiled a new security architecture product aimed at securing data centers, clouds, and other IT environments with the help of AI.
BNN Bloomberg: Armis, the multibillion-dollar cybersecurity startup that has been positioning itself for a public listing, has bought the platform Silk Security for $150 million, marking its second acquisition in a matter of months.
Yahoo Finance: Coro, the leading cybersecurity platform for small and medium-sized enterprises (SMEs), announced the results of its 2024 SME Security Workload Impact Report, revealing that cybersecurity professionals are overwhelmed by the complexity and demands of managing multiple tools in their security stack.
TechCrunch: Cybersecurity has had a rough go of it lately, with investment in the sector dropping a precipitous 40% compared to the year prior. But there are promising early, even preliminary, signs of a recovery.
Crunchbase: Venture funding overall was still sluggish, but cybersecurity startups saw some love from investors in the first quarter of 2024. To be sure, this is not the salad days of 2021 — cybersecurity funding was still down year to year — but the sector saw its best funding quarter in three quarters.
CSO Online: The United States Supreme Court unanimous ruling on an SEC disclosure case on Friday could have direct consequences on how security executives report cybersecurity incidents.
Yahoo Finance: National cybersecurity experts have shelved a vote on a draft EU cybersecurity label allowing Amazon, Alphabet's Google and Microsoft to bid for highly sensitive EU cloud computing contracts to May, people familiar with the matter said.
The Target: The PandaBuy online shopping platform.
The Take: The data contained approximately 1.5 million unique UserIds, First Name, Last Name, Phone Numbers, Emails, and Login IPs.
The Vector: "The data was stolen by exploiting several critical vulnerabilities in the platform's API and other bugs were identified allowing access to the internal service of the website," the threat actor said.
This breach is critical reminder that zero-day exploits do happen, and furthermore that patching software in a timely, effective manner is a key component of ensuring customer data is protected. Ensuring third-party vendors are deploying patches and fixes in accordance with a firm’s cybersecurity policy is an important step in an overall robust security posture.
Yahoo Finance: Darktrace raised its annual revenue and margin forecasts for the third time this year after the British cybersecurity company's third-quarter revenue jumped nearly 27%.
MSN: The World Cybercrime Index has been published in journal Plos One following three years of research by academics from the University of Oxford and the University of New South Wales (UNSW) Canberra.
Dark Reading: Dave Luber began as the National Security Agency’s (NSA) new Director of Cybersecurity on April 1, 2024. As the new Cybersecurity Director, he oversees NSA’s Cybersecurity Directorate (CSD), whose critical mission is to prevent and eradicate cyber threats to the Department of Defense, National Security Systems, and the Defense Industrial Base.
Yahoo Finance: Cyber attacks are becoming so frequent, malicious and costly that they risk triggering bank runs, according to the International Monetary Fund (IMF). The Fund warned that rising cyber threats now posed “serious concerns for financial stability” and could push companies into insolvency.
Forbes: Every day, we hear from government and company leaders asking how they can best leverage artificial intelligence (AI) and machine learning (ML) for improved cybersecurity outcomes—and for protection against more sophisticated attacks created by bad actors using AI.
The Straits Times: The Monetary Authority of Singapore (MAS) and Mastercard on April 9, 2024 signed a memorandum of understanding (MOU) to enhance cooperation in cyber security, specifically with the aim of strengthening cyber resilience in Singapore’s financial services sector.
StreetInsider: A growing number of cyber-attacks owing to the proliferation of e-commerce platforms, emergence of smart devices, and deployment of cloud are some key factors propelling Cybersecurity Market growth.
The Target: Prudential Insurance — one of the largest insurers in the United States.
The Take: The company said the names, addresses, driver's license numbers or ID cards of 36,545 were accessed.
The Vector: The company filed documents with the SEC on February 13 warning that a “cybercrime group” was able to access “administrative and user data from certain information technology systems and a small percentage of Company user accounts associated with employees and contractors.”
This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.
Cointelegraph: The United States National Institute of Standards and Technology (NIST) said it awarded cooperative agreements of almost $3.6 million, aiming to build a workforce to help guard businesses against cybersecurity risks.
Yahoo Finance: Canada's BlackBerry reported a surprise profit for the fourth quarter, helped by higher demand for its cybersecurity services amid growing online crimes and high-profile hacks.
MSN: Amazon, Alphabet's Google and Microsoft may find it easier to bid for EU cloud computing contracts after draft cybersecurity labelling rules scrapped a requirement that vendors should be independent from non-EU laws, according to the document seen by Reuters.
PR Newswire: Corsica Technologies, a leader in Cybersecurity and IT Managed Services, has released an illuminating study that sheds light on the current landscape of technology outsourcing in midmarket companies.
TechCrunch: Seven open source foundations are coming together to create common specifications and standards for Europe’s Cyber Resilience Act (CRA), regulation adopted by the European Parliament last month.
PR Newswire: Lockchain.ai, the AI-powered Blockchain Risk Management platform, has announced its official launch from stealth to bring automated risk management solutions to traders, investors, and fund managers in the blockchain ecosystem.
Yahoo Finance: Rubrik plans to list its shares in a U.S. initial public offering, the cybersecurity platform said in a filing, adding to a growing wave of companies turning to capital markets after a two-year lull.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montreal
1080 Côte du Beaver Hall, Suite 904
Montreal, QC
Canada, H2Z 1S8
+1-450-465-8880
Halifax
84 Chain Lake Drive, Suite 501
Halifax, NS
Canada, B3S 1A2
+1-902-429-8880
Manila
Ground Floor, Three E-com Center
Mall of Asia Complex
Pasay City, Metro Manila
Philippines 1300
Sydney
Level 36 Governor Phillip Tower
1 Farrer Place Sydney 2000
Australia
+61 (2) 8823 3370
Abu Dhabi
Floor No.15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy