Industry News: ESG5

      MAS, Mastercard Ink MOU to Strengthen Cyber Resilience in Financial Services Sector


      The Straits Times: The Monetary Authority of Singapore (MAS) and Mastercard on April 9, 2024 signed a memorandum of understanding (MOU) to enhance cooperation in cyber security, specifically with the aim of strengthening cyber resilience in Singapore’s financial services sector.


      Britain's National Grid Drops China-Based Supplier Over Cyber Security Fears


      XM: Britain's National Grid NG.L has started removing components supplied by a unit of China-backed Nari Technology's 600406.SS from the electricity transmission network over cyber security fears, the Financial Times reported.


      Taiwan Calls on US Support to Defend Banks Against Cyberattacks


      BNN Bloomberg: Taiwan’s financial system undergirds a $760 billion high-tech economy, but its vulnerability to advanced hacks has raised fears of a worst-case scenario: a full-blown cyberattack from China that sends its currency and markets into a tailspin.


      Japanese Tech Lobby Warns Against EU Cybersecurity Labelling Scheme


      MarketScreener: Lobby group Japan Association of New Economy has joined U.S. Big Tech to warn against proposed EU cybersecurity labelling rules that they said could hamper their access to the bloc's markets, according to a letter sent to the EU industry chief.


      Sebi Brings Guidelines to Boost Cybersecurity Framework for Exchanges


      Business Standard: Capital markets regulator Sebi came out with guidelines to strengthen the existing cyber security and cyber resilience framework for stock exchanges and other market infrastructure institutions (MIIs).


      ‘Aggressive’ China Cyberattacks Are The ‘Defining Threat’ Of Our Time, Top U.S. Cyber Official Says


      CNBC: China’s cyber-espionage and sabotage capacities are an “epoch-defining threat,” the top U.S. cybersecurity official said, warning that in the event of open warfare “aggressive cyber operations” would threaten critical U.S. transportation infrastructure “to induce societal panic.”


      Know Your Breach: Leverage EDU

      The Target: Leverage EDU, a software University Admission platform.

      The Take: Exposure of over 240,000 records of Personally Identifiable Information including: names, email addresses, passport scans, applications, bank statements and loan information.

      The Vector: A misconfigured database was left open and unsecured with no password, meaning anyone with an internet connection could have viewed and downloaded the trove of data.

      This shows how important authentication controls are and that they are purposefully and smartly deployed with security in mind. Multi-factor authentication and password length and complexity rules on server access are effective strategies to mitigate these kinds of breaches to protect a firm’s data.


      UK Cyber Security Chief to Warn of China’s Rise as a Technology Superpower


      The Guardian: China poses an “epoch-defining” challenge to the west, the head of the National Cyber Security Centre (NCSC) is reportedly to warn. Lindy Cameron, who is the director of the GCHQ arm, will use a speech in Belfast this week to warn the UK and allies of the “dramatic rise of China as a technology superpower”.


      China Probes Micron for Cybersecurity Risks, Urges Japan to Stay Out of US Chip Export Curbs


      Tech Crunch: The U.S. and China chip battle continues to escalate. In China, the country’s cybersecurity watchdog has initiated a probe into U.S. memory chip maker Micron Technology, according to a statement from the Cyberspace Administration of China (CAC) released.


      Personal Data Targeting and Cyber Attacks Linked to China on the Rise


      Yahoo News: Cybersecurity firm CrowdStrike’s latest Global Threat Report showed that the number of attacks using malware has dropped in the last year, with hackers instead using “hands-on keyboard activity” to breach organisations.


      About Castle Hall Diligence

      Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →

      Subscribe to Cyber Updates