.png?width=200&height=78&name=CH%20Diligence%20(thicker%20line).png "CH Diligence (thicker line).png")
The Target: Trello is an online project management tool owned by Atlassian. Businesses commonly use it to organize data and tasks into boards, cards, and lists.
The Take: The leaked data includes email addresses and public Trello account information, including the user's full name.
The Vector: While Atlassian, the owner of Trello, did not confirm at the time how the data was stolen, emo (the threat actor) said it was collected using an unsecured REST API that allowed developers to query for public information about a profile based on users' Trello ID, username, or email address.
As phishing actors continue to explore every potential abuse opportunity on legitimate service providers, novel security gaps constantly threaten to expose users to severe risks. It is essential not to rely solely on email protection solutions, and also scrutinize every email that lands on your inbox, look for inconsistencies, and double-check all claims made in those messages.
Tech Radar: The King has unveiled the newly-elected Labour government’s first drafted bills and legislation to the UK Parliament, including several pieces relating to technology.
Dark Reading: A new analysis by Netskope of anonymized AI app usage data from customer environments showed substantially more organizations have begun using blocking controls, data loss prevention (DLP) tools, live coaching, and other mechanisms to mitigate risk.
City A.M: London-based tech company CultureAI has secured $10m (£7.7m) in a Series A funding round, co-led by Mercia Ventures and Smedvig Ventures. The investment is set to propel CultureAI’s product development, double its workforce and support its expansion into the US market.
Crunchbase: Venture funding to cybersecurity startups had its best quarter since Q1 2022 — surging 144% year to year — and seemingly building off a strong start to the year.
CSO Online: Russian security firm Kaspersky Lab has informed its employees in the United States that the company will begin winding down its US operations starting July 20, according to a report from Zero Day.
Advisor.ca: Ticketmaster’s recent data security incident, which potentially compromised the personal information of millions of people, is a poignant reminder of the need for individuals, organizations and companies to take cybersecurity seriously, says Raj Lala, president and CEO of Evolve Funds Group Inc. in Toronto.
BNN Bloomberg: Google parent Alphabet Inc. is in advanced talks to buy cybersecurity startup Wiz in a deal that could fetch $23 billion, the Wall Street Journal reported, citing people with knowledge of the matter.
The Target: U.S. messaging giant Twilio.
The Take: Data associated with Authy accounts, including 33 million phone numbers.
The Vector: Twilio detected that threat actors were able to identify data associated with Authy accounts, including phone numbers, due to an unauthenticated endpoint.
This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.
CFO Dive: The findings come as businesses grapple with escalating cybersecurity threats. Sixty-one percent of organizations represented in the research had a data breach or cybersecurity incident in the past two years. More than half of respondents (55%) said their organization has experienced more than four to five of such incidents.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montreal
1080 Côte du Beaver Hall, Suite 904
Montreal, QC
Canada, H2Z 1S8
+1-450-465-8880
Halifax
84 Chain Lake Drive, Suite 501
Halifax, NS
Canada, B3S 1A2
+1-902-429-8880
Manila
Ground Floor, Three E-com Center
Mall of Asia Complex
Pasay City, Metro Manila
Philippines 1300
Sydney
Level 36 Governor Phillip Tower
1 Farrer Place Sydney 2000
Australia
+61 (2) 8823 3370
Abu Dhabi
Floor No.15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy