Elteni LLC, Author at Elteni

Solarwinds ORION delivers backdoor Trojan to worldwide networks

Elteni LLC — Mon, 14 Dec 2020 15:03:35 +0000

Fireye detected that Solarwinds Orion is being used by attackers to steal sensitive company data. Fireye’s threat research division found that a highly sophisticated and evasive attacker compromised the Solarwind’s Orion IT monitoring and management platform to deliver a backdoor trojan. It is suspected that the campaign has started as early as April 2020 and

The post Solarwinds ORION delivers backdoor Trojan to worldwide networks appeared first on Elteni.

Elteni is shortlisted for Best Cybersecurity Solution – 2021 Fund Intelligence Operations and Services Award

Elteni LLC — Fri, 11 Dec 2020 01:17:15 +0000

The post Elteni is shortlisted for Best Cybersecurity Solution – 2021 Fund Intelligence Operations and Services Award appeared first on Elteni.

Cayman Islands Investment firm exposes sensitive client information!

Elteni LLC — Mon, 07 Dec 2020 00:10:12 +0000

A Cayman Islands investment firm's backups stored in a Microsoft Azure Blob Storage was not secured properly thus resulting in a potential leak of personal banking information, individual passport data, and other sensitive information. A researcher discovered the gaping hole left open by the firm’s Hong Kong based IT provider via a special search engine

The post Cayman Islands Investment firm exposes sensitive client information! appeared first on Elteni.

OCIE issues a new alert: “Credential Stuffing”

Elteni LLC — Wed, 16 Sep 2020 13:30:23 +0000

Yesterday The Office and Compliance Inspections and Examinations ("OCIE") issued an alert about safeguarding client accounts against credential compromise that highlighted the issue of "credential stuffing attacks". Credential stuffing is a type of cyber attack where many compromised user credentials are tried against systems to gain unauthorized access, using automated means. Over the past few

The post OCIE issues a new alert: “Credential Stuffing” appeared first on Elteni.

Major service provider to the financial services industry was breached

Elteni LLC — Wed, 29 Jul 2020 21:55:00 +0000

A service provider of SEI Investments Co., affected by a ransomware attack. SEI Investments Co., a fund administrator for several high-profile asset management firms experienced a breach, exposing the personal information of investors for approximately 100 clients. SEI stated that the breach occurred through one of their service providers that faced a ransomware attack. M.J.

The post Major service provider to the financial services industry was breached appeared first on Elteni.

Critical Wormable Vulnerability Affecting Windows DNS Servers

Elteni LLC — Wed, 15 Jul 2020 17:36:42 +0000

Critical Wormable Vulnerability Affecting Windows DNS Servers On July 14, 2020 Microsoft publicly disclosed a critical vulnerability affecting Windows DNS Server. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350 As a reminder DNS (Domain Naming System) servers are used primarily to resolve IP addresses. DNS is used for locating and identifying computer services and devices on the internet, such as email servers,

The post Critical Wormable Vulnerability Affecting Windows DNS Servers appeared first on Elteni.

OCIE issues a new Cybersecurity: Ransomware Alert

Elteni LLC — Fri, 10 Jul 2020 22:36:20 +0000

Today the OCIE issued a Ransomware Alert, highlighting an uptick in sophisticated social engineering and other cyber campaigns, designed to infiltrate the networks of financial institutions to access sensitive information and/or to deploy ransomware. As a reminder, ransomware actors typically demand monetary payment for the return of data. We can spend time regurgitating what was

The post OCIE issues a new Cybersecurity: Ransomware Alert appeared first on Elteni.

Palo Alto Networks Vulnerability – CVE-2020-2021

Elteni LLC — Wed, 01 Jul 2020 16:35:23 +0000

On June 29, 2020 Palo Alto Networks published a notice about a critical vulnerability affecting their devices. https://security.paloaltonetworks.com/CVE-2020-2021. The vulnerability, which is listed as an issue affecting the way SAML (Security Assertion Markup Language) authentication happens, can be exploited by remote attackers to gain access to the device. Dissecting this vulnerability, Palo Alto states that

The post Palo Alto Networks Vulnerability – CVE-2020-2021 appeared first on Elteni.

Technology, security, and privacy in a Work From Home (WFH) environment

Elteni LLC — Thu, 14 May 2020 23:25:58 +0000

Will Work From Home (WFH) be an Alternative Asset Management Firm’ new norm? Firstly, let me address the question that comes to mind after reading the title, this isn’t just another article about how COVID-19 has affected us………now keep reading. I’m not writing this article to express my opinion about whether WFH is good or

The post Technology, security, and privacy in a Work From Home (WFH) environment appeared first on Elteni.

Three UK-based Private Equity firms lose 1.3 million dollars to cyber criminals

Elteni LLC — Fri, 24 Apr 2020 14:36:38 +0000

The team at Check Point identified that cyber criminals - dubbed the Florentine Banker - targeted three Private Equity firms and stole over $1.3 million dollars, with only about half the money recovered. The cyber criminals launched an email spear-phishing campaign targeting executives, and other high-profile employees in an attempt to gain access to

The post Three UK-based Private Equity firms lose 1.3 million dollars to cyber criminals appeared first on Elteni.