shutterstock_490960141-1

Industry News: ESG5

      Know Your Breach: Okta

      The Target: Okta is a San Fransisco-based cloud identity and access management solutions provider whose Single Sign-On (SSO), multi-factor authentication (MFA), and API access management services are used by thousands of organizations worldwide.

      The Take: The leaked data includes user IDs, full names, company names, office addresses, phone numbers, email addresses, positions/roles, and other information.

      The Vector: In October 2023, Okta warned that its support system was breached by hackers using stolen credentials, allowing attackers to steal cookies and authentication for some customers.

      This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.

      Read more...

      Atos Shares Sink as Airbus Ends Talks to Buy BDS Cybersecurity Arm

      2024-03-20

      MSN: Airbus has called off talks to buy the BDS cybersecurity unit of France's Atos, sending shares in the software company tumbling by more than a fifth.

      Read more...

      Meet America’s Most Cybersecure Banks 2024

      2024-03-19

      Forbes: Choosing a bank means more than just giving it money. Consumers must trust the institution to protect not only their financial assets, but also keep their Social Security numbers, passwords, dates of birth, and other sensitive data away from hackers. 

      Read more...

      FTC Warns Acammers are Impersonating its Employees to Steal Money

      2024-03-19

      Bleeping Computer: The U.S. Federal Trade Commission (FTC) warned today that scammers are impersonating its employees to steal thousands of dollars from Americans.

      Read more...

      Cybersecurity Investments Need to be Doubled in Next Mandate, EU Official Says

      2024-03-19

      Euronews: Cybersecurity investments will have to be doubled under the next European Commission mandate in order to ensure the bloc’s resilience to counter attacks, a senior EU official said.

      Read more...

      Cybersecurity Firm Cato Networks Hires Banks For 2025 IPO, Sources Say

      2024-03-19

      US News: Israeli cybersecurity firm Cato Networks, which was valued at more than $3 billion in a private funding round last year, has hired underwriters for an initial public offering in New York, according to people familiar with the matter.

      Read more...

      Investment Advisers Pay $400K To Settle ‘AI Washing’ Charges

      2024-03-18

      Bleeping Computer: The U.S. Securities and Exchange Commission (SEC) announced that two investment advisers, Delphia (USA) and Global Predictions, have settled charges of making misleading statements regarding the use of artificial intelligence (AI) technology in their products.

      Read more...

      Cisco Completes $28 Billion Acquisition of Splunk

      2024-03-18

      SecurityWeek: The networking giant paid $157 per share in cash for Splunk, a powerhouse in data analysis, security and observability tools, in a deal first announced in September 2023.

      Read more...

      Know Your Breach: Paysign

      The Target: Financial services firm Paysign. Paysign brought in a revenue of about $12 million last quarter through its prepaid card programs, payment processing systems and digital banking services.

      The Take: 1,242,575 records containing the full names of customers, addresses, dates of birth, phone numbers and account balances.

      The Vector: A cybercriminal with the name “emo” claimed to have taken the data and leaked it on to a hacking forum. The company declined to provide any further information regarding how the attack occurred.

      With the fintech industry experiencing rapid growth, this leak stands as a clear reminder of the critical role of robust cybersecurity measures. Fintech companies manage and store exceptionally sensitive customer data. This breach is a stark reminder of how authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.

      Read more...

      Nozomi Networks Secures $100 Million Investment to Accelerate Mission to Defend the World's Critical Infrastructure from Cyber Threats

      2024-03-13

      PR Newswire: Nozomi Networks Inc., the worldwide leader in OT and IoT security, announced a $100 million Series E funding round to help accelerate innovative cyber defenses and expand cost-efficient go-to-market expansion globally.

      Read more...

      About Castle Hall Diligence

      Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →

      Subscribe to Cyber Updates