.jpg?width=200&height=78&name=CH%20Diligence%20(thicker%20line).jpg "CH Diligence (thicker line)")
Investing: Chinese regulators have gained a reputation for aggressive action, but even hardened investors were shocked by the announcement of a probe into ride-hailing firm Didi just two days after its $4.4 billion New York stock market debut.
The target: Wolfe Eye Clinic, an operator of a network of eye clinics throughout Iowa.
The take: Personally identifiable and medical information of 500,000 current and past patients including names, addresses, birth dates, social security numbers, and, in some cases, medical and health information.
The attack vector: Wolfe reported that they had been victim of a ransomware attack in February of 2021. They elected not to pay the ransom at the time of the attack, but after a forensic investigation, it was confirmed that a substantial quantity of data was exfiltrated as a part of the attack.
While ransomware attacks have traditionally limited themselves to encrypting data in-place, allowing firms with robust backup regimens to recover, the vast majority of recent attacks have included an exfiltrated component, in an attempt to ensure that the victim will pay the ransom to prevent sensitive information from being leaked. Commensurate technical controls and a robust security awareness program to prevent employees from falling victims to social engineering scams are critical to preventing ransomware attacks from occurring in the first place.
BNN Bloomberg: A hacker group linked to the Russian state known as “Fancy Bear” conducted a cyber attack on critical German infrastructure and the country’s banking system in the past few days, Bild newspaper reported, citing unidentified Western intelligence sources.
Private Equity Wire: Crosspoint Capital Partners (Crosspoint), a private equity investment firm focused on cybersecurity, privacy, and infrastructure software markets, has appointed Samir Kapuria as Managing Director to help lead the company’s efforts to identify and grow world-class companies in the cybersecurity space.
Yahoo Finance: The UK and Singapore announced the launch of a new Financial Partnership at the sixth UK-Singapore Financial Dialogue that was held virtually today. The Dialogue was chaired by Director General (Financial Services) of HM Treasury (HMT), Ms Katharine Braddick, and Deputy Managing Director (Markets and Development) of the Monetary Authority of Singapore (MAS), Mr Leong Sing Chiong.
Hedge Week: Drawbridge, a provider of cybersecurity software and solutions to the alternative investment industry, has named Scott DePetris as President and Chief Operating Officer (COO) and appointed him to the Board of Directors.
ZDNet: Ireland's Health Service Executive (HSE) has been praised for its response after falling victim to a major ransomware attack and for not giving into cyber criminals and paying a ransom.
CNBC: “There’s a direct correlation,” the cybersecurity firm executive said on “Closing Bell.” “When you look at the rise of ransomware, it absolutely aligns with the rise of anonymous digital currencies.”
Yahoo Finance: Cybersecurity firm SentinelOne Inc, backed by billionaire investor Daniel Loeb's hedge fund Third Point, has boosted the price range for its IPO and is now looking to raise about $1.02 billion, a regulatory filing showed.
The target: Amerigas, the U.S’s largest propane provider.
The take: Personally Identifiable Information of 123 employees which included: lab IDs, social security numbers, driver license numbers, and dates of birth.
The attack vector: The breach occurred when an employee of a third-party vendor, J.J Keller, fell for a phishing email and unknowingly gave away their login credentials to a threat actor. After this, the attacker logged in using the employee’s legitimate credentials and began accessing secure documents and information.
Phishing attacks against individual employees remain one of the greatest security threats to the entire organization. Regular social engineering and awareness testing and training, along with tone-from-the-top messaging to emphasize the importance of critical thinking and caution are crucial to protecting sensitive information assets.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montréal
1080 Côte du Beaver Hall, Suite 904
Montréal, QC
Canada, H2Z 1S8
+1-450-465-8880
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy