Menu
Sign In
sign up
shutterstock_490960141-1

Industry News: ESG5

      Know Your Breach: Toyota

      The Target: Toyota, a Japanese car manufacturer

      The Take: Two cloud databases exposed Personally Identifiable Information including: physical address, name, phone number, email address, customer ID, vehicle registration number, and vehicle identification numbers.

      The Vector: Several misconfigured cloud databases were left open and unsecured with no password, meaning anyone with an internet connection could have downloaded the data.

      Securing access to databases through rigorous password hygiene is an essential component of security, and cloud databases are no exception. Furthermore, the data stolen in this attack can be used for crafting highly effective automotive-based phishing attacks. Regular security compliance reviews can help prevent these breaches.

      Read more...

      Galvanick Announces $10 Million in Seed Funding for Its Industrial Cybersecurity Platform

      2023-06-01

      Business Wire: Galvanick, the cybersecurity solution for protecting industrial infrastructure against cyber attacks, announced its $10 million seed round. 

      Read more...

      Cloud Security is the Greatest Area of Concern for Cybersecurity Leaders According to EC-Council’s Certified CISO Hall of Fame Report 2023

      2023-06-01

      Yahoo Finance: EC-Council, the global leader in cybersecurity education and training, released its Certified Chief Information Security Officer Hall of Fame Report, honouring the top 50 Certified CISOs globally. 

      Read more...

      Investment May Be Down, but Cybersecurity Remains a Hot Sector

      2023-05-31

      Dark Reading: Despite a more cautious approach to financing, investors continue to scour the country for the next generation of cybersecurity startups that can aid enterprises in the never-ending quest to safeguard critical IT systems.  

      Read more...

      Cyberattacks a Matter of When, Not If: Industry Leaders

      2023-05-30

      Investment Executive: The recent data breach that affected customers of Toronto-based InvestorCOM Inc. has reminded large financial services firms of the importance of cybersecurity preparation.

      Read more...

      Governments Require a Comprehensive Workforce Development Strategy to Address Cybersecurity Skills Shortage, Says Info-Tech Research Group

      2023-05-30

      PR Newswire: Governments worldwide are becoming increasingly digital, leading to more prevalent and more diverse cyberattacks.

      Read more...

      The Trend Continues: Increased Regulatory Focus On Privacy & Cybersecurity For Private Funds

      2023-05-30

      Mondaq: Recent enforcement actions highlight the increased regulatory scrutiny that private funds may face with respect to internal cybersecurity protocols and responses to cyber-crimes and cyber incidents under new and updated cybersecurity laws.

      Read more...

      Capita Cyber-Attack: 90 Organizations Report Data Breaches

      2023-05-30

      The Guardian: About 90 organizations have reported breaches of personal information held by Capita after the outsourcing group suffered a cyber-attack, Britain’s data watchdog has said.

      Read more...

      Know Your Breach: SuperVPN

      The Target: SuperVPN, a popular free VPN service provider.

      The Take: Exposed database containing of 360,308,817 million records of wide-ranging sensitive information including: email addresses, original IP addresses, geolocation data, UUID numbers, operating systems, internet connection types, and VPN application versions.

      The Vector: A misconfigured database was left open and unsecured with no password, meaning anyone with an internet connection could have downloaded the data.

      This breach is a perfect example of a preventable cyber incident. Securing access to databases through rigorous password hygiene is an essential component of security. Furthermore, the data stolen in this attack can be used for crafting highly effective phishing attacks. Companies should take every measure necessary to secure customer data.

      Read more...

      Binance Aids US Law Enforcement in Seizing $4.4 Million Linked to North Korean Cybercrimes

      2023-05-25

      Blockchain News: Leading cryptocurrency exchange Binance has assisted US law enforcement in seizing $4.4 million and freezing accounts associated with North Korean organized crime. 

      Read more...