.png?width=200&height=78&name=CH%20Diligence%20(thicker%20line).png "CH Diligence (thicker line).png")
The Star: Des Moines Public Schools announced that classes would be cancelled for its 33,000 students after being “alerted to a cyber security incident on its technology network.“
The Target: Twitter, a U.S based social media platform.
The Take: Exposure of 235 Million records of Personally Identifiable Information including: email addresses, usernames, and phone numbers.
The Vector: A zero-day exploit was used which allowed the attacker to scrape Twitter user profiles for the stolen information. This vulnerability circumvented Twitter’s privacy option which should prevent searching am account by it’s associated phone number/email.
This breach is critical reminder that zero-day exploits do happen, and furthermore that patching software in a timely, effective manner is a key component of ensuring customer data is protected.
Bleeping Computer: A signed Windows driver has been used in attacks on banks in French-speaking countries, likely from a threat actor that stole more than $11 million from various banks.
IBS Intelligence: Working with 11 international entities, CaixaBank has formed a European research consortium to explore ways to improve cybersecurity by leveraging artificial intelligence (AI) and big data. The project, AI4CYBER, is part of the Horizon Europe programme and is funded by the European Union.
Hedge Week: RFA, a specialist IT provider to the alternative investment sector, has enhanced its cyber security offering for hedge and private equity funds with the addition of external surface attack management and dark web breach and exposure monitoring solutions.
BNN Bloomberg: Peiter Zatko, the prominent computer security expert who blew the whistle last year on alleged security problems at Twitter Inc., is joining the cybersecurity firm Rapid7 Inc., the company said.
Bleeping Computer: Texas-based cloud computing provider Rackspace has confirmed that the Play ransomware operation was behind a recent cyberattack that took down the company's hosted Microsoft Exchange environments.
Forbes: Threat intelligence platforms are becoming increasingly important for both government agencies and businesses in today's digital landscape. The growing threat of ransomware attacks and other malicious activities from threat actors has highlighted the need for organizations to have a comprehensive and effective way to monitor, analyze and respond to potential threats.
Bank Info Security: After two sensational years in the public markets during the height of the COVID-19 pandemic, 2022 was a rude awakening for the cybersecurity industry.
The Target: Cornerstone Payment Systems
The Take: Exposure of 9 million transaction records which exposed Personally Identifiable Information including: email addresses, names, physical addresses, phone numbers, types of credit cards and donation details including destination and dollar amount.
The Vector: A misconfigured data server was left open and unsecured, meaning anyone with an internet connection could have viewed and downloaded the data.
This breach is critical reminder that authentication controls are an important piece in an overall robust cybersecurity posture. This data is perfect for constructing highly effecting spear-phishing campaigns. Multi-factor authentication and password length and complexity rules on server access are effective strategies to mitigate these kinds of breaches to protect a firm’s data.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montreal
1080 Côte du Beaver Hall, Suite 904
Montreal, QC
Canada, H2Z 1S8
+1-450-465-8880
Halifax
168 Hobsons Lake Drive Suite 301
Beechville, NS
Canada, B3S 0G4
Tel: +1 902 429 8880
Manila
10th Floor, Two Ecom Center
Mall of Asia Complex
Harbor Dr, Pasay, 1300 Metro Manila
Philippines
Sydney
Level 15 Grosvenor Place
225 George Street, Sydney NSW 2000
Australia
Tel: +61 (2) 8823 3370
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Prague
2nd Floor, The Park
V Parku 8
Chodov, Praha, 148 00
Czech Republic
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy