.png?width=200&height=78&name=CH%20Diligence%20(thicker%20line).png "CH Diligence (thicker line).png")
Bleeping Computer: CISA says the U.S. government has extended MITRE's funding to ensure no continuity issues with the critical Common Vulnerabilities and Exposures (CVE) program.
Investing.com: Christopher Krebs, whom President Donald Trump fired as head of the Cybersecurity and Infrastructure Security Agency in 2020, said he is leaving cybersecurity company SentinelOne following pressure from the White House.
PR Newswire: New research from Ernst & Young LLP highlights significant financial risks posed by today's evolving cybersecurity threat landscape, with alarming disconnects across the C-suite on exposure levels, threat sources and more.
PYMNTS.com: A Bloomberg report says that JPMorgan Chase and Bank of New York Mellon have scaled back electronic information sharing with the Office of the Comptroller of the Currency (OCC) following a significant breach of the regulator’s email system.
The Target: Sensata Technologies is an industrial technology company that develops, manufactures, and sells a wide range of sensors and sensor-rich solutions, as well as electrical protection components and systems.
The Take: A preliminary investigation with assistance from external cybersecurity experts confirmed that the hackers have exfiltrated data from the company network.
The Vector: Data theft is a common tactic used by ransomware actors to extort victims, increase pressure to pay a ransom, and create legal and regulatory complexities. Currently, Sensata is still determining what files were stolen in the attack and will notify impacted individuals and regulatory authorities as needed, based on the results of its investigation.
This breach is a stark reminder of how strong authentication controls are in an overall robust cybersecurity posture, and that good password hygiene plays a pivotal role in protection.
Cybersecurity Dive: Attackers gained access to emails containing sensitive government data related to financial institutions in a cyberattack on the Department of the Treasury’s Office of the Comptroller of the Currency (OCC), in what the agency characterized as a “major incident.”
Business Wire: Radiant Logic (“the Company”), a pioneer in Identity Security Posture Management (“ISPM”) solutions, announced a strategic growth investment from Ridgeview Partners (“Ridgeview”), a growth-oriented technology private equity firm.
Yahoo Finance: Cybereco is thrilled to announce that it has received a generous financial contribution of $500,000 from Desjardins. This vital support is provided through the GoodSpark Fund and will help Cybereco strengthen its capacities and carry out projects focusing on innovation and codevelopment to further develop Canada's cybersecurity industry.
CSO Online: The introduction of new US tariffs has significantly rattled the US cybersecurity sector, reducing the stock market valuations of cybersecurity companies by tens of billions of dollars and sparking concerns that organizations may be forced to cut cybersecurity spending.
The Target: StreamElements is a popular cloud-based streaming tools platform used primarily by content creators on Twitch and YouTube. It provides a suite for stream overlays, tips/donations, chatbots, activity feeds, merch store integration, stream analytics, loyalty/reward systems, and more.
The Take: A threat actor using the nickname "victim" claimed to have stolen the data of 210,000 StreamElements customers on March 20, 2025. The threat actor also shared samples of the stolen data, which included full names, addresses, phone numbers, and email addresses.
The Vector: The same hacker claimed that they breached a StreamElements employee via an information-stealing malware infection, which allowed them to take over an internal account and access the platform's order management system.
This breach highlights the extreme importance of timely software updates for known software vulnerabilities, not only in systems directly under a firm’s control, but in third-party systems the firm relies upon as well. The longer a firm, or its vendors, hold out on deploying the most up-to-date software for their systems, the greater the chance an attacker will exploit the issue.
Castle Hall helps investors build comprehensive due diligence programs across hedge fund, private equity and long only portfolios More →
Montreal
1080 Côte du Beaver Hall, Suite 904
Montreal, QC
Canada, H2Z 1S8
+1-450-465-8880
Halifax
168 Hobsons Lake Drive Suite 301
Beechville, NS
Canada, B3S 0G4
Tel: +1 902 429 8880
Manila
10th Floor, Two Ecom Center
Mall of Asia Complex
Harbor Dr, Pasay, 1300 Metro Manila
Philippines
Sydney
Level 15 Grosvenor Place
225 George Street, Sydney NSW 2000
Australia
Tel: +61 (2) 8823 3370
Abu Dhabi
Floor No. 15 Al Sarab Tower,
Adgm Square,
Al Maryah Island, Abu Dhabi, UAE
Tel: +971 (2) 694 8510
Copyright © 2021 Entreprise Castle Hall Alternatives, Inc. All Rights Reserved.
Terms of Service and Privacy Policy