FINANCIAL INFOSECURITY NEWSLETTER

February 2019

[Blog] Third-Party Assessments: What to Expect and Why They Can Benefit You

Sean Falconi, deltarisk.com, February 7, 2019

Why are third-party cyber security assessments beneficial? What’s the difference between an assessment and an audit? Find answers to these questions and more in our new blog.

Read More

Finance: A Cloud Security Investigation

securityboulevard.com, January 30, 2019

Financial organizations are often targeted by hackers who are looking to seize personally identifiable information (PII) and nonpublic personal information (NPI) – this information is useful for identity theft and lucrative to sell on the dark web. Data loss prevention (DLP) and access controls are obvious priorities, and while employees generally use managed devices in the financial industry, data leakage is still a common occurrence.

Read More

More Money, More Worries About Cyber Risk

infosecurity-magazine.com, January 25, 2019

Executives at financial services companies are increasingly concerned about risks, but as technology becomes more integrated in managing financials, more executives say that cyber security is increasingly becoming the most important type of risk, according to a new global risk management survey.

Read More

Double Exposure: 24 Million Loan Records Also Exposed on Open Amazon S3 Bucket

scmagazine.com, January 25, 2019

The original mortgage and credit documents involved in the 24 million Elasticsearch data breach that was revealed also have been found residing in an open Amazon S3 bucket by the cyber researcher behind the original discovery.

Read More

Why Cyber Security Must Be a Top Priority for Small & Midsize Businesses

darkreading.com, January 24, 2019

According to the US National Cyber Security Alliance, an estimated 60% of small companies will go out of business within just six months of a cyber attack, illustrating the real-world consequences of inadequate cyber security measures.

Read More

BlackRock Data Leak Highlights the Human Side of Cyber Security

investmentnews.com, January 23, 2019

BlackRock Inc. made headlines recently with a series of stories that it accidentally exposed confidential information involving about 20,000 financial advisers. In particular, data involving advisers with LPL Financial, Envestnet and Axa Equitable leaked onto BlackRock’s iShares website.

Read More

Cyber Attackers Bait Financial Firms with Google Cloud Platform

darkreading.com, Jan 24, 2019

Researchers have spotted a trend in targeted themed attacks using the App Engine Google Cloud Platform (GCP) to deliver malware via PDF decoys. The threat has so far been detected across 42 organizations, mostly in the financial sector but also within governments worldwide.

Read More

[Webinar] How to Prepare for and Recover from an Attack in Your Hybrid Enterprise Environment

Join our experts for a live webinar on February 20 for insights on how you can plan for, detect, and respond to threats in both on-premise and cloud environments.

Register Here