.jpg?width=200&height=78&name=CH%20Diligence%20(thicker%20line).jpg "CH Diligence (thicker line)")
Bleeping Computer: Digipolis, the IT company responsible for managing Antwerp's IT systems, suffered a ransomware attack that disrupted the city's IT, email, and phone services.
Yahoo Finance: California’s finance department has been hit by a cybersecurity attack, and a notorious ransomware group is claiming responsibility.
Forbes: The story of cybersecurity is a constant progression of new ways to defeat new threats, from thought experiments to mainstream best practices. It started with the earliest antivirus software, which began as an experiment and progressed to being a necessity.
The Target: Vevor, a California-based online retailer.
The Take: 1.1 billion records across two databases of Personally Identifiable Information including: first and last name, partial credit card numbers, transaction IDs, order and refund information, home addresses, and email addresses. Internal Vevor account admin names and plaintext passwords were also exposed, as well as IP addresse, ports, and pathways.
The Vector: A misconfigured data server was left open and unsecured, meaning anyone with an internet connection could have viewed and downloaded the data.
This breach is critical reminder that authentication controls are an important piece in an overall robust cybersecurity posture and furthermore, that when admin credentials are exposed, dangerous pivot attacks may follow as attackers use these to move into a firm’s other platforms. Multi-factor authentication and password length and complexity rules are effective strategies to mitigate these kinds of breaches to protect a firm’s data.
Express: Australia had 16 major cyber-attacks against Australian organisations, which were trying to be “cyber extortion attacks”, claimed CyberCX Cyber Intelligence Director Katherine Mansted. Recently, millions of Australians had their privacy breached in cyber attacks on Optus, Medibank and other companies.
CTech: The cybersecurity industry is not immune. This message has been internalized over the past week in the technology sector. It started with U.S. company CrowdStrike, which is considered one of the biggest players in the market. The company revealed good results in its financial reports for the third quarter, but the CEO admitted that customers are cutting expenses and postponing purchases.
Bleeping Computer: Cybercrime marketplaces are increasingly selling stolen corporate email addresses for as low as $2 to fill a growing demand by hackers who use them for business email compromise and phishing attacks or initial access to networks.
Wealth Professional: Data proliferation is reaching new heights as a result of new digital infrastructure and long-term work-from-home arrangements, while cyberattacks are also increasing in intensity. And as corporations and governments attempt to remain ahead of the curve, cybersecurity firms are taking centre stage.
Cision: Despite the fact that most Canadian real estate companies now build smart tech into their buildings to monitor, manage, and maintain many functions, such as heating, lighting, elevators, power meters and fire alarm systems, very few have invested to ensure these systems can't be hacked, finds new research from KPMG in Canada.
Yahoo Finance: CrowdStrike Co-Founder and CEO George Kurtz joins Yahoo Finance Live to discuss the company's latest quarterly results, the outlook for cybersecurity spending, and expectations for cyberattacks in 2023.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montréal
1080 Côte du Beaver Hall, Suite 904
Montréal, QC
Canada, H2Z 1S8
+1-450-465-8880
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy