shutterstock_490960141-1

Industry News: ESG5

    Know Your Breach: Liquipedia

    The Target: Liquipedia is an encyclopedia on various video games, covering everything from history to tactics. The platform was founded and is run by Team Liquid, a Netherlands-based professional e-sports organization owned by aXiomatic Gaming, an e-sports and gaming enabler.

    The Take: A part of the exposed information was contained in a user collection weighing 77MB, containing data on nearly 119,000 users. The exposed Liquipedia user details include: User IDs, User emails, email verification status, two-factor authentication status and account creation dates.

    The Vector: Researchers surmised that secrets and private RSA keys were used to authenticate admin access to Liquipedia’s Reddit, Discord, Twitch, and X accounts.

    This breach is a stark reminder of how authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.

    Read more...

    Expect M&A Uptick In Cybersecurity Market, Says Arctic Wolf Boss

    2024-01-18

    City A.M: The boss of one of the world’s biggest cybersecurity companies has said he expects a surge in M&A activity in the sector in 2024. Nick Schneider, the chief executive of Arctic Wolf, which is valued at $4.3bn, told City A.M. that many potential buyers are “opportunistically” scouring the market.

    Read more...

    Navigating The 'Fog Of A Cyberattack': Critical Lessons In Governance From The SEC Cybersecurity Rule

    2024-01-17

    Forbes: The short breach notification timeline attached to the SEC’s new cybersecurity disclosure rule is loud and clear: C-Suite leaders and boards have important work to do in ensuring their organizations can quickly identify, understand and publicly disclose material cybersecurity events and impacts.

    Read more...

    Cybersecurity Startup Funding Hits 5-Year Low, Drops 50% From 2022

    2024-01-17

    Crunchbase: Just two years ago venture funding to cybersecurity was on fire, with more than $23 billion flooding the sector. In 2023, cyber startups saw only about a third of that, as venture funding dipped to its lowest total since 2018. 

    Read more...

    Quantum Computing to Spark ‘Cybersecurity Armageddon,’ IBM Says

    2024-01-17

    BNN Bloomberg: Governments and businesses are not prepared for the havoc quantum computers will sow in cybersecurity by the end of the decade, according to an International Business Machines Corp. executive.  

    Read more...

    How Blockchain Revolutionizes Data Integrity And Cybersecurity

    2024-01-17

    Forbes: In the current digital landscape, data integrity and security have taken center stage, especially as businesses and institutions continue to depend on digital data. 

    Read more...

    Allianz Risk Barometer: A Cyber Event Is the Top Global Business Risk for 2024

    2024-01-16

    Business Wire: Cyber incidents such as ransomware attacks, data breaches, and IT disruptions are the biggest worry for companies globally in 2024, according to the Allianz Risk Barometer. 

    Read more...

    Thomvest Ventures Closes $250 Million Fund To Invest Across Fintech, Cybersecurity, AI

    2024-01-16

    TechCrunch: Thomvest Ventures is popping into 2024 with a new $250 million fund and the promotion of Umesh Padval and Nima Wedlake to the role of managing directors.

    Read more...

    Know Your Breach: HMG Healthcare

    The Target: HMG Healthcare is headquartered in The Woodlands, Texas, and provides a range of services, including memory care, rehabilitation and assisted living. HMG’s website says it employs more than 4,100 people and serves approximately 3,500 patients, generating more than $150 million in annual revenues.

    The Take: HMG said the stolen information “likely contained” personal information, including names, dates of birth, contact information, Social Security numbers and records related to employment; as well as medical records, general health information and information regarding medical treatment, according to the notice.

    The Vector: In a notice published on its website, HMG chief executive Derek Prince confirmed that hackers in August accessed a server storing “unencrypted files” containing sensitive information belonging to patients, employees, and their dependents. HMG said it learned of the breach months later in November.

    As phishing actors continue to explore every potential abuse opportunity on legitimate service providers, novel security gaps constantly threaten to expose users to severe risks. It is essential not to rely solely on email protection solutions, and also scrutinize every email that lands on your inbox, look for inconsistencies, and double-check all claims made in those messages.

    Read more...

    Canada Will Use Letter Grades To Assess Companies' Cyber Resilience

    2024-01-11

    BNN Bloomberg: The Canadian government is joining forces with the cybersecurity ratings firm SecurityScorecard Inc. to bolster defenses for the country’s critical infrastructure.

    Read more...

    About Castle Hall Diligence

    Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →

    Subscribe to Cyber Updates