Call us at (866) 435-8364

Cybersecurity Consulting and Advisory

OCIE issues a new alert: “Credential Stuffing”

September 16, 2020 / by Elteni / BEC, Business Email Compromise, Cyber, Hackers, Hedge Fund, OCIE, Password, Phishing, Private Equity, RIA, SEC

Safeguarding Client Accounts Against Credential Compromise

Yesterday The Office and Compliance Inspections and Examinations (“OCIE”) issued an alert about safeguarding client accounts against credential compromise that highlighted the issue of “credential stuffing attacks“. Credential stuffing is a type of cyber attack where many compromised user credentials are tried against systems to gain unauthorized access, using automated means. Over the past few […]

Read more

Major service provider to the financial services industry was breached

July 29, 2020 / by Elteni / Alternative Asset Management, Exploit, Hackers, Hedge Fund, Investment Adviser, Ransomware Attack

SEI Investments affected by breach at service provider

A service provider of SEI Investments Co., affected by a ransomware attack. SEI Investments Co., a fund administrator for several high-profile asset management firms experienced a breach, exposing the personal information of investors for approximately 100 clients. SEI stated that the breach occurred through one of their service providers that faced a ransomware attack. M.J. […]

Read more

Critical Wormable Vulnerability Affecting Windows DNS Servers

July 15, 2020 / by Elteni / Cyber, Exploit

Internet DNS

Critical Wormable Vulnerability Affecting Windows DNS Servers On July 14, 2020 Microsoft publicly disclosed a critical vulnerability affecting Windows DNS Server. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350 As a reminder DNS (Domain Naming System) servers are used primarily to resolve IP addresses. DNS is used for locating and identifying computer services and devices on the internet, such as email servers, […]

Read more

OCIE issues a new Cybersecurity: Ransomware Alert

July 10, 2020 / by Elteni LLC / Alternative Asset Management, Awareness, BEC, Business Email Compromise, Cloud, Cyber, Exploit, Hackers, Hedge Fund, Insider threats, Investment Adviser, Malware, OCIE, Penetration Test, Phishing, Private Equity, Ransomware Attack, Red Team, Regulatory, RIA, SEC, Vulnerability, WFH, Work from home

Breacking New Alert - Ocie issues cybersecurity alert.

Today the OCIE issued a Ransomware Alert, highlighting an uptick in sophisticated social engineering and other cyber campaigns, designed to infiltrate the networks of financial institutions to access sensitive information and/or to deploy ransomware. As a reminder, ransomware actors typically demand monetary payment for the return of data. We can spend time regurgitating what was […]

Read more

Palo Alto Networks Vulnerability – CVE-2020-2021

July 1, 2020 / by Elteni LLC / Exploit, Hackers, Hedge Fund, Investment Adviser, Password, Private Equity, Vulnerability, Vulnerability Disclosure

On June 29, 2020 Palo Alto Networks published a notice about a critical vulnerability affecting their devices. https://security.paloaltonetworks.com/CVE-2020-2021. The vulnerability, which is listed as an issue affecting the way SAML (Security Assertion Markup Language) authentication happens, can be exploited by remote attackers to gain access to the device. Dissecting this vulnerability, Palo Alto states that […]

Read more

Technology, security, and privacy in a Work From Home (WFH) environment

May 14, 2020 / by Elteni LLC / Alternative Asset Management, Cyber, Exploit, Hackers, Hedge Fund, Insider threats, Investment Adviser, Privacy, RIA, WFH, Work from home

Work From Home Asset Management

Will Work From Home (WFH) be an Alternative Asset Management Firm’ new norm? Firstly, let me address the question that comes to mind after reading the title, this isn’t just another article about how COVID-19 has affected us………now keep reading. I’m not writing this article to express my opinion about whether WFH is good or […]

Read more

Three UK-based Private Equity firms lose 1.3 million dollars to cyber criminals

April 24, 2020 / by Elteni LLC / BEC, Business Email Compromise, Cloud, Cyber, Exploit, Hackers, Hedge Fund, Investment Adviser, Microsoft, Microsoft Windows 10, NTLM hash, Password, Privacy, Private Equity, Vulnerability

Phishing scam private equity

  The team at Check Point identified that cyber criminals – dubbed the Florentine Banker – targeted three Private Equity firms and stole over $1.3 million dollars, with only about half the money recovered. The cyber criminals launched an email spear-phishing campaign targeting executives, and other high-profile employees in an attempt to gain access to […]

Read more

Are you considering fleeing Zoom? Don’t be so quick to do so.

April 2, 2020 / by Elteni LLC / Cloud, Cyber, Exploit, Hackers, Hedge Fund, Investment Adviser, Microsoft, Microsoft Windows 10, NTLM hash, Password, Privacy, Private Equity, Vulnerability

Elteni Zoom Vulnerability

Zoom has been under the spotlight over the past few weeks due to privacy and security issues. They were served with a class-action lawsuit over its data sharing practices, and come under scrutiny from the New York Attorney General’s Office. Headlines like this may make you want to “Zoom” for the hills, but hit the […]

Read more

Have you considered the work from home risks?

March 16, 2020 / by Elteni LLC / Awareness, BCP, Cisco, Cloud, coronavirus, Cyber, Exploit, Hackers, Hedge Fund, Insider threats, Investment Adviser, Malware, Microsoft, OCIE, Phishing, Regulatory, SEC, Vulnerability

Work From Home

Have you made the decision to allow employees to work from home or are you still contemplating the idea? If work from home is or will be the preferred method for the unforeseeable future, there are some things you should do to maintain your compliance and security posture. Here are some risks you should be […]

Read more

1 2 3 4