Dark Reading: According to officials, threat actors breached the Cybersecurity and Infrastructure Security Agency's (CISA) systems using Ivanti product vulnerabilities back in February.
Bleeping Computer: New York-based securities lending platform EquiLend Holdings confirmed in data breach notification letters sent to employees that their data was stolen in a January ransomware attack.
The Target: Houser LLP, a U.S. law firm that specializes in serving high-profile financial institutions.
The Take: The data included names and one or more of Social Security number, driver’s license number, individual tax identification number, financial account information, and medical information.
The Vector: The company said certain files were encrypted during the incident and were “copied and taken from the network.”
This breach highlights the extreme importance of timely software updates for known software vulnerabilities, not only in systems directly under a firm’s control, but in third-party systems the firm relies upon as well. The longer a firm, or its vendors, hold out on deploying the most up-to-date software for their systems, the greater the chance an attacker will exploit the issue.
Financial Newswire: While at least one industry superannuation fund continues to deal with APRA over a cyber-security incident a year ago, the Association of Superannuation Funds of Australia (ASFA) has made clear to the Government that its member funds do not want minor security incidents being automatically escalated to APRA.
Yahoo Finance: CrowdStrike surged 10% and sparked a rally in cybersecurity stocks after the company's upbeat annual forecasts signaled robust demand for the one-stop platform for a variety of tools amid a rise in artificial intelligence-led sophisticated attacks.
Business Wire: KKR announced the appointment of Ruchir Swarup as a Partner and Chief Information Officer, effective immediately. In this role, Mr. Swarup will be responsible for driving KKR’s technology strategy and vision.
The Register: Criminals have probably stolen nearly 30,000 Fidelity Investments Life Insurance customers' personal and financial information — including bank account and routing numbers, credit card numbers and security or access codes — after breaking into Infosys' IT systems in the fall.
US News: Axonius, a startup which help companies manage their cybersecurity infrastructure, said it has raised $200 million at a $2.6 billion valuation, a sizable funding amount in a relatively muted market for growth and late-stage startups.
Dark Reading: It seems obvious: CEOs and their chief information security officers (CISOs) should be natural partners. With the persistent rise in cyber threats, most CEOs recognize the importance of having a strong security leader to protect the company's data, not to mention its reputation.
Forbes: Be it a tech giant or a startup, the threats to any company's security are relentless, sophisticated and constantly evolving. Hackers are weaponizing new tools, data breaches dominate headlines daily and the potential consequences of an attack are more devastating than ever.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montreal
1080 Côte du Beaver Hall, Suite 904
Montreal, QC
Canada, H2Z 1S8
+1-450-465-8880
Halifax
168 Hobsons Lake Drive Suite 301
Beechville, NS
Canada, B3S 0G4
Tel: +1 902 429 8880
Manila
10th Floor, Two Ecom Center
Mall of Asia Complex
Harbor Dr, Pasay, 1300 Metro Manila
Philippines
Sydney
Level 15 Grosvenor Place
225 George Street, Sydney NSW 2000
Australia
Tel: +61 (2) 8823 3370
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Prague
2nd Floor, The Park
V Parku 8
Chodov, Praha, 148 00
Czech Republic
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy