.png?width=200&height=78&name=CH%20Diligence%20(thicker%20line).png "CH Diligence (thicker line).png")
Dark Reading: Around the world, employees have been experiencing extreme stress due to the ongoing pandemic, business disruption, and the faster pace of work.
Reuters: Cybersecurity start-up Snyk Ltd said it had raised $196.5 million in Series G funding, led by Qatar Investment Authority, which is at a lower valuation of $7.4 billion.
Bleeping Computer: Digipolis, the IT company responsible for managing Antwerp's IT systems, suffered a ransomware attack that disrupted the city's IT, email, and phone services.
Yahoo Finance: California’s finance department has been hit by a cybersecurity attack, and a notorious ransomware group is claiming responsibility.
Forbes: The story of cybersecurity is a constant progression of new ways to defeat new threats, from thought experiments to mainstream best practices. It started with the earliest antivirus software, which began as an experiment and progressed to being a necessity.
The Target: Vevor, a California-based online retailer.
The Take: 1.1 billion records across two databases of Personally Identifiable Information including: first and last name, partial credit card numbers, transaction IDs, order and refund information, home addresses, and email addresses. Internal Vevor account admin names and plaintext passwords were also exposed, as well as IP addresse, ports, and pathways.
The Vector: A misconfigured data server was left open and unsecured, meaning anyone with an internet connection could have viewed and downloaded the data.
This breach is critical reminder that authentication controls are an important piece in an overall robust cybersecurity posture and furthermore, that when admin credentials are exposed, dangerous pivot attacks may follow as attackers use these to move into a firm’s other platforms. Multi-factor authentication and password length and complexity rules are effective strategies to mitigate these kinds of breaches to protect a firm’s data.
Express: Australia had 16 major cyber-attacks against Australian organisations, which were trying to be “cyber extortion attacks”, claimed CyberCX Cyber Intelligence Director Katherine Mansted. Recently, millions of Australians had their privacy breached in cyber attacks on Optus, Medibank and other companies.
CTech: The cybersecurity industry is not immune. This message has been internalized over the past week in the technology sector. It started with U.S. company CrowdStrike, which is considered one of the biggest players in the market. The company revealed good results in its financial reports for the third quarter, but the CEO admitted that customers are cutting expenses and postponing purchases.
Bleeping Computer: Cybercrime marketplaces are increasingly selling stolen corporate email addresses for as low as $2 to fill a growing demand by hackers who use them for business email compromise and phishing attacks or initial access to networks.
Wealth Professional: Data proliferation is reaching new heights as a result of new digital infrastructure and long-term work-from-home arrangements, while cyberattacks are also increasing in intensity. And as corporations and governments attempt to remain ahead of the curve, cybersecurity firms are taking centre stage.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montreal
1080 Côte du Beaver Hall, Suite 904
Montreal, QC
Canada, H2Z 1S8
+1-450-465-8880
Halifax
168 Hobsons Lake Drive Suite 301
Beechville, NS
Canada, B3S 0G4
Tel: +1 902 429 8880
Manila
10th Floor, Two Ecom Center
Mall of Asia Complex
Harbor Dr, Pasay, 1300 Metro Manila
Philippines
Sydney
Level 15 Grosvenor Place
225 George Street, Sydney NSW 2000
Australia
Tel: +61 (2) 8823 3370
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Prague
2nd Floor, The Park
V Parku 8
Chodov, Praha, 148 00
Czech Republic
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy