Threat Forecasting – Using Open Source Data to Foresee Your Next Breach
We forecast cybersecurity threats and events not to predict the future, but to change it. Regulators and litigators all hold us accountable for knowing foreseeable threats so we can avoid them. But what is foreseeable? (more…)
Third-Party Crashers: Recent Data Breaches Targeting Vendors and Service Providers
Thank goodness we have partners, suppliers, contractors, and third-party service providers to keep our businesses operating smoothly. But let’s make sure that your security postures are aligned – your partners serve as an extension of your business and it is your duty to ensure they are secure and in compliance with your standards as well as (more…)
OCIE Warns Public Companies, SEC Registrants, Financial Institutions at Risk of Ransomware Attacks
The Office of Compliance Inspections and Examinations (OCIE) Cybersecurity Risk Alert reported increased ransomware attacks to SEC registrants (broker-dealers, investment advisers, and investment companies) and potentially service providers – especially if they maintain client assets or registrant records. Companies should be aware of the potential risks they face. (more…)
There’s Been an Incident! What’s the Plan?
2020 has been quite a year so far, surfacing security vulnerabilities many were unprepared for. Cyber attackers took advantage of new remote working environments as well as our fear and uncertainty due to COVID-19, and hit our networks hard. (more…)
Cyber Security Case Study: When Ransomware Attacks and You Don’t Have Documented Data Inventory
HALOCK partnered with a Manufacturing company to recover data exfiltrated from a ransomware attack (more…)
A Summary of DBIR 2020 – Where the Data Breach World is Today and How to Prepare for IT
The annual 2020 Data Breach Investigations Report (DBIR) was recently released and we would like to summarize some of the key trends found in the report. The Report takes a granular look at threat actors (bad guys) and the tactics they used to carry out the breaches and security incidents of the last year. (more…)
HALOCK Pandemic Breaches Bulletin
Common Causes for the Recent Major Spike in Security Incidents
M&A: The Cyber Risk of Business
The impact of the COVID-19 pandemic is profound – every business has been touched, forcing many to explore how their organizations adapt to the new economy. Some industries have bigger challenges due to the nature of their business – travel and lodging, restaurants, transportation, oil and gas and more due to social distancing ordinances. (more…)
Payment Processing in a Remote Working Environment
Organizations are facing a lot of change with remote work set ups – in both physical location and operational shifts. Especially challenged are businesses that manage credit card information electronically and over the phone. These new working conditions unearth new risks for sensitive data. Social distancing can also bring about more social engineering attempts. According to the U.S. Secret (more…)
