Industry News: ESG5

2019-05-26

ItWire: China has unveiled new cyber security regulations calling for "secure and controllable" technology in its networks, raising the possibility that it could be used to block American technology companies on national security grounds. A report in the South China Morning Post said the draft document, Cyber Security Review Measures, had been published by the country's Cyber Space Administration on Friday and would be up for comment until 24 June...

2019-05-25

CNN: A leading US real estate and mortgage insurer, First American Financial Corp., left vulnerable an enormous trove of digital documents, some of which may have contained social security numbers and bank account information. Bad actors only needed a web address to view the documents as they were left without password protection or other encryption, according to a Friday post from the popular cybersecurity blog Krebs on Security, which is run by journalist Brian Krebs...

2019-05-24

Zdnet: Canva, a Sydney-based startup that's behind the eponymous graphic design service, was hacked earlier today, ZDNet has learned.Data for roughly 139 million users has been taken during the breach, according to the hacker, who tipped off ZDNet. Responsible for the breach is a hacker going online as GnosticPlayers. The hacker is infamous. Since February this year, he/she/they has put up for sale on the dark web the data of 932 million users, which he stole from 44 companies from all over the world....

The target: Instagram, a Facebook-owned picture-sharing social network.

The take: 49 million user records, including name, number of followers, location, phone number and e-mail addresses.

The attack vector: An AWS database belonging to social media marketing firm Chtrbox was discovered to be publicly exposed and accessible to anyone with an internet connection.

Read more...

2019-05-23

SecurityIntelligence: Just how much are companies struggling to get a handle on cybersecurity risks and digital disruption? According to the National Association of Corporate Directors (NACD)’s “2019 Governance Outlook,” boards are uneasy about the various digital risks their organizations face. The report is designed to provide leadership with a picture of the business landscape, and as you might expect, regulations, cybersecurity risks and disruptive technology feature prominently in the list of concerns...

2019-05-22

BigLawBusiness: A former federal prosecutor will oversee cybersecurity oversight and enforcement for New York’s financial services regulator. Justin Herring, the leader of the cyber crimes unit for the U.S. Attorney for the District of New Jersey, will take the helm of a newly created Cybersecurity Division at the New York Department of Financial Services, the agency announced May 22. No other state banking and insurance regulator has a unit specifically devoted to cybersecurity, the DFS said...

2019-05-22

CBSNews: The former head of the Mossad, Israel's intelligence service, warned in a recent interview that the low cost and relative ease for states and non-state actors to conduct cyberattacks pose among the gravest security threats in the world. Tamir Pardo, who spent more than three decades in the intelligence service before being tapped to lead it from 2011 to 2016, also told Intelligence Matters host and CBS News senior national security contributor Michael Morell that Washington may be ill-prepared to respond to a large-scale cyber attack on infrastructure or other critical targets...

2019-05-22

Forbes: One does not have to look hard to find cybersecurity in the news. From seemingly daily reports of data breaches to state-sponsored hacking, data security is quickly becoming a real-life threat for most Americans. Federal policymakers also have cybersecurity in front of mind in recent days. Specifically, some lawmakers are reacting to suggestions from a government watchdog agency that the U.S. pipeline system is vulnerable to cybersecurity threats...

2019-05-20

ComputerWeekly: Danske Bank has rolled out a Technical Support Initiative (TSI) to help its small to medium-sized enterprise (SME) customers in Denmark reinforce their IT systems and infrastructure defences against increasing cyber attacks. The TSI is guided by a 12-month research project, conducted in-house by the bank, which revealed that around 27% of Danish SMEs had experienced cyber attacks in recent years...

2019-05-20

UsNews: In an age where cybersecurity threats are an increasing worry, the European Council is pushing a plan to better respond to cyberthreats. The Council adopted on May 17 a framework for targeted sanctions in order to respond to and deter cyberattacks on the European Union and its member states...