FINANCIAL GROUP FINED $4.25 MILLION FOR NYSDFS CYBERSECURITY CONTROL FAILURES
FINANCIAL GROUP FINED $4.25 MILLION FOR NYSDFS CYBERSECURITY CONTROL FAILURES September 1, 2023 NYSDFS Announces $4,250,000.00 Penalty for Cybersecurity Control Failures On May 25th, 2023 NYSDFS published a press release which announced OneMain Financial Group, LLC failed to “effectively manage third-party service provider risk, manage access privileges, and maintain a formal application security development methodology, […]
Microsoft Breached by Chinese Hacking Group Storm-0558
Microsoft Breached by Chinese Hacking Group Storm-0558 July 13, 2023 Microsoft Breached by Chinese hacking group Storm-0558 Microsoft has reported over 25 organizations email accounts have been breached by Chinese hacking group Storm-0558. CISA reports the data stolen from these organizations, which included US federal agencies and state department were non-classified. “Last month, U.S. government […]
Zero-day Exploits Patched in iPhones/Mac CVE-2023028205 Security Updates
Zero-day Exploits Patched in iPhones/Mac CVE-2023028205 Security Updates April 14, 2023 CVE-2023-28205 and CVE-2023-28206 patched by Apple for iPhones/Mac with Security Updates Apple released security updates on April 7th, 2023 for iPhones, iPads, Mac desktops, and MacBook’s to fix two actively exploited security flaws. The update impacts a wide range of devices, including older models. […]
HOW TO: Recover your Gmail account from a breach in 2023
HOW TO: Recover your Gmail account from a breach in 2023 January 25, 2023 How to recover your Gmail account from a breach in 2023 In this tutorial, we will review the 3 most important steps you can take to recover your gmail account from a breach. What is an email breach? An email breach […]
LastPass: Encrypted Vault Master Password Concerns and Breach Update
Breach: Last Pass Update Jan 2023 December 29, 2022 LastPass Breach Update. Is LastPass Still Safe? LastPass has notified users of their platform of a breach into their cloud based-storage environment. LastPass did an exceptional job maintaining transparency for all users and providing updates as the investigation continued. On December 22nd, LastPass posted an update […]
Risk Considerations When Selecting A Managed Service Provider
Risk Considerations When Selecting A Managed Service Provider December 6, 2022 Risk Considerations When Selecting a Managed Service Provider Considerations, best-practices for defensive network architecture, and cyber security concerns when selecting a new MSP partner. 1. Least Privilege Managed Service Providers (MSP) and/or their sub-contractors should be granted the minimum necessary rights assigned to perform […]
Suffolk County Network Suffers Ransomware Attack, Palo Alto Leading Forensic Investigation
Suffolk County Network Suffers Ransomware Attack, Palo Alto Leading Forensic Investigation November 23, 2022 Suffolk County Network Suffers Ransomware Attack, Palo Alto Leading Forensic Investigation Suffolk County suffered from a ransomware attack by ALPHV/BlackCat on September 8th, 2022. Suffolk county’s email, web applications, and websites were taken offline during this cyber attack, resulting in Suffolk […]
NYSDFS 23 CRR 500 PROPOSES NEW REGULATION REQUIREMENTS
NYSDFS 23 CRR 500 PROPOSES NEW REGULATION REQUIREMENTS September 9, 2022 What is NYSDFS 23 CRR 500? New York State Department of Financial Services created the 23 NYCRR Part 500 a cybersecurity regulation on March 1st, 2017. This regulation applies to organizations and agencies in the financial service industry. Entities such as Mortgage banks, Insurance […]
Do I need to Comply with NYDFS Cybersecurity for my Cryptocurrency Company?
Do I need to Comply with NYDFS Cybersecurity for my Cryptocurrency Company? August 31, 2022 Am I required to comply with NYSDFS’s cyber requirements as a cryptocurrency company? New York State Department of Financial Services made the 23 NYCRR Part 500 a cybersecurity requirement on March 1st, 2017. This regulation applies to organizations and agencies […]
What is Black Basta Ransomware?
What is Black Basta Ransomware? July 5, 2022 Black Basta Ransomware In the recent months there has been a new threat in the ransomware and cyber security world. A new group named Black Basta has emerged in strides, contributing to known attacks since April. Recently they were able to overtake a network by leveraging an […]
