.jpg?width=200&height=78&name=CH%20Diligence%20(thicker%20line).jpg "CH Diligence (thicker line)")
Tech Crunch: The Biden administration has ordered nearly all federal agencies to patch hundreds of security bugs, some that were first found the best part of a decade ago.
BBC: Labour has yet to reveal who the third party is, the scale of the incident or what type of data was affected.
CNN: US Cyber Command head and director of the National Security Agency Gen. Paul Nakasone said Wednesday that the US had "conducted a surge" over the past three months to address the problem of ransomware attacks on US interests.
Dark Reading: As the cryptocurrency and digital asset markets mature, so have hackers' approaches to compromising exchanges, asset owners, and other parts of the crypto-financial ecosystem. Whereas cryptocurrencies' role in attacks used to simply be ransomware payments, the market has changed.
Think Advisor: SEC Commissioner Elad Roisman, a Republican, wants the agency to write a rule clarifying when advisors and broker-dealers must inform investors and the commission about a cybersecurity breach.
The target: CU Boulder, a U.S based University.
The take: Exposure of support and procedural documents, configuration files, and personally identifiable information of 30,000 students including: names, student IDs, addresses, dates of birth, phone number, and gender.
The attack vector: The breach occurred to a known configuration vulnerability in a third-party software that the University employs. While a patch was released by the third party some months prior, it had not been implemented and this let an attacker gain access to the data.
This data leak highlights the importance of patching and testing software in a timely manner. Complying with industry standard practices of software management is essential to ensure every point of access to data is secure, up-to-date, and protected against known gaps in third-party applications.
CNBC: Microsoft will partner with community colleges across the U.S. and provide free resources in an attempt to help end a shortage of cybersecurity workers, the company announced.
BNN Bloomberg: Cybersecurity startup Dragos Inc. has raised a $200 million funding round co-led by a BlackRock Inc. fund and Koch Industries Inc., an investment that gives the cybersecurity startup a $2 billion valuation.
CTV: Quebec tabled a bill Thursday to create a new cybersecurity ministry that, if passed, would be the first of its kind in North America, officials say.
Traders Magazine: In its latest podcast, “Encore | Overlapping Risks: Anti-Money Laundering and Cybersecurity”, the first of a two-part series, FINRA was looking at the intersection of a firm’s AML and cybersecurity risks.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montréal
1080 Côte du Beaver Hall, Suite 904
Montréal, QC
Canada, H2Z 1S8
+1-450-465-8880
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy