Call Us Today! (866) 435-8364

Next Generation Ransomware Attacks

2021-10-09T06:09:49-04:00October 9th, 2021|Alternative Asset Management, BEC, Business Email Compromise, Cloud, Cyber, Exploit, Hackers, Hedge Fund, Identity Theft, Investment Adviser, Malware, Microsoft, Microsoft Windows 10, Password, Phishing, PII, Privacy, Private Equity, Ransomware Attack, RIA, Vulnerability|

Ransomware, the word alone evokes fear into many companies. How did this form of crime actually start? In 1989, Dr. Joseph L. Popp created the first ransomware called the "AIDS Trojan." This trojan virus encrypted files on a computer after rebooting a number of times. Fast forward to 2006, Archiveus, a computer virus that affected

Critical Apple vulnerability exploited to eavesdrop!

2021-09-14T18:12:31-04:00September 14th, 2021|Apple, Cyber, Exploit, Hackers, Identity Theft, PII, Privacy, Technology, Vulnerability|

Apple has released an emergency security update to address vulnerabilities in iOS and iPadOS for a zero-click zero day exploit that allows the installation of malware on a device. An attacker could exploit these vulnerabilities to take control of an affected device if they are unpatched. "Attacks like the ones described are highly sophisticated, cost

The SEC issues fines for deficient cybersecurity programs!

2021-08-30T18:01:21-04:00August 30th, 2021|Alternative Asset Management, BEC, Business Email Compromise, Cloud, Cyber, Hackers, Hedge Fund, Identity Theft, Investment Adviser, PII, Private Equity, RIA, SEC|

Today the Securities and Exchange Commission (SEC) sanctioned eight firms in three actions for failures in their cybersecurity policies and procedures that resulted in email account takeovers exposing the personal information of thousands of customers and clients at each firm. A total of $800,000 were levied against these firms. In summary, the firms named in

Critical Print Spooler Vulnerability, Netgear Auth Bypass, and REvil Ransomware

2021-07-02T10:47:03-04:00July 2nd, 2021|Cyber|

PrintNightmare, Vulnerability Affecting Windows Print Spooler Eleven years ago, an escalation of privilege bug in the Windows print spooler services was used in the Stuxnet attack, the notorious worm that destroyed the enrichment centrifuges of an Iranian Nuclear facility. Over the past eleven years, Microsoft's print spooler is still plagued by multiple vulnerabilities. Yesterday, proof-of-concept

SEC Charges First American Financial Corporation With Cybersecurity Disclosure Controls Failures

2021-06-15T12:53:23-04:00June 15th, 2021|Cyber, OCIE, Privacy, Regulatory, SEC, Vulnerability, Vulnerability Disclosure|

On June 15, 2021 “The Securities and Exchange Commission (“SEC”) announced settled charges against real estate settlement services company First American Financial Corporation for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information.” On May 24, 2019, Brian Krebs notified First American Financial Corporation of a vulnerability with its

What is Ethical Hacking? Everything You Need to Know About Ethical Hacking—With Examples

2021-05-10T10:42:57-04:00April 13th, 2021|Business Email Compromise, Cloud, Cyber, Exploit, Hackers, Hedge Fund, Investment Adviser, Malware, Microsoft, Microsoft Windows 10, NTLM hash, OWASP, Password, Penetration Test, Phishing, Red Team, Technology, Vulnerability|

Our founder Anand Mohabir was interviewed by Kindra Cooper, from Springboard, on the topic of Ethical hacking. “There’s a lot that comes into play when you’re trying to become an ethical hacker. You have to know how a network is designed and operated, how servers interact, how virtual machines, storage and firewalls work,” said Mohabir.

2021 SEC OCIE Cybersecurity Exam Priorities

2021-03-04T00:36:42-05:00March 4th, 2021|Alternative Asset Management, Awareness, Azure, BCP, BEC, Business Email Compromise, Cloud, coronavirus, Cyber, Exploit, Hackers, Hedge Fund, Identity Theft, Insider threats, Investment Adviser, Malware, OCIE, OWASP, Password, Penetration Test, Phishing, PII, Privacy, Private Equity, Regulatory, RIA, SEC, Table Top, Vulnerability, WFH, Work from home|

Yesterday the U.S. Securities and Exchange Commission (SEC) Office of Compliance Inspections and Examinations (OCIE) released its 2021 exam priorities. In the letter the SEC highlighted that their focus remains the same from prior years with a slight shift in priorities and adjustment of focus. The SEC stated that they will review whether firms have

CFTC issues an alert about potential Microsoft Azure and Office 365 compromise resulting from SolarWinds breach

2021-01-13T23:46:20-05:00January 13th, 2021|CFTC, Ransomware Attack, SEC|

On January 13, 2021, the Market Participant Division (MPD) of the CFTC sent an email to registrants informing them about an alert that was issued by the DHS Cybersecurity and Infrastructure Security Agency (CISA). In the alert CISA highlighted post compromise activity related to the SolarWinds Breach. More specifically, the alert highlighted that threat actors

Solarwinds ORION delivers backdoor Trojan to worldwide networks

2020-12-31T18:42:28-05:00December 14th, 2020|Alternative Asset Management, Awareness, Cloud, Cyber, Exploit, Hackers, Hedge Fund, Identity Theft, Insider threats, Malware, Password, PII, Privacy, Remote Management, Reverse Shell, RMM, Vulnerability|

Fireye detected that Solarwinds Orion is being used by attackers to steal sensitive company data. Fireye’s threat research division found that a highly sophisticated and evasive attacker compromised the Solarwind’s Orion IT monitoring and management platform to deliver a backdoor trojan. It is suspected that the campaign has started as early as April 2020 and

Elteni is shortlisted for Best Cybersecurity Solution – 2021 Fund Intelligence Operations and Services Award

2020-12-31T18:42:42-05:00December 10th, 2020|Alternative Asset Management, Award, Cyber, Featured, Hedge Fund, Investment Adviser, Private Equity, Regulatory, RIA, Services, Technology|

Go to Top