Join Us On LinkedIn

On top of that, there are just too many methods that bad actors can deploy to gain access to a firm’s system or database, said John Reed Stark, a former U.S. Securities and Exchange Commission internet enforcement chief and the president of data breach response and digital compliance firm John Reed Stark Consulting LLC. Just […]
In July 2020, Kroll observed a 22% increase in attacks targeting the financial services sector based on its incident response case intakes. Business email compromise (BEC), fraud and ransomware were the top three threats impacting the industry, and Kroll has seen the number of incidents steadily rise amidst the COVID-19 crisis. From a network topography […]
With cybercrime on the rise, two U.S. Treasury Department components, the Office of Foreign Assets Control (“OFAC”) and the Financial Crimes Enforcement Network (“FinCEN”), issued advisories on one of the most insidious forms of cyberattack – ransomware. via Ransomware Payments can lead to Sanctions and Reporting Obligations for Financial Institutions | The Anticorruption Blog.
Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today In its advisory (PDF), the Treasury’s Office of Foreign Assets Control (OFAC) said “companies that facilitate […]
Incident Response Forum Europe 2020 panelists offer their “One Big Thing” to take away from this year’s event.
Instead, judges could find that these extraordinarily helpful, handy and beneficial cyber-service offerings arguably serve more of a business purpose than a legal purpose. Hence, a forensic firm’s findings, communications, heat-maps, remedial laundry lists and any other inculpatory communications can become discoverable in legal proceedings. It’s of course all quite maddening. Indeed, when a company […]
Palo Alto Networks (NYSE: PANW), the global cybersecurity leader, announced that it has entered into a definitive agreement to acquire The Crypsis Group, a leading incident response, risk management and digital forensics consulting firm. Under the terms of the agreement, Palo Alto Networks will acquire The Crypsis Group for a total purchase price of $265 million, […]
On Friday, August 14, 2020, California Attorney General Xavier Becerra announced that the regulations implementing the California Consumer Privacy Act (CCPA) have been approved by the California Office of Administrative Law (OAL) and are effective immediately. The attorney general had already begun enforcing the CCPA itself on July 1. But now that the regulations have […]
Garmin has been forced to shut down its call centres, website and some other online services after a ransomware attack encrypted the smartwatch maker’s internal network and some production systems. The US company shut down services including the official Garmin website and all customer services, including phone lines, online chat and email. via Smartwatch maker […]
When U.S. Magistrate Judge John Anderson ordered[1] Capital One Financial Corp. to turn over a post-breach digital forensics report to the consumer plaintiffs in the multidistrict litigation relating to the bank’s July 29, 2019, data breach,[2] the decision sent shock waves through the community of legal and forensic firms that help companies respond to cyberattacks. […]
A leading medical-research institution working on a cure for Covid-19 has admitted it paid hackers a $1.14m (£910,000) ransom after a covert negotiation witnessed by BBC News. The Netwalker criminal gang attacked University of California San Francisco (UCSF) on 1 June. via How hackers extorted $1.14m from University of California, San Francisco – BBC News.
The judge’s ruling essentially functions as a reprimand of the way many incident response firms now interact with their clients, according to Edward McNicholas, co-leader of the privacy and cybersecurity practice at Ropes & Gray. If a security company consistently is selling a client other services while working on retainer, and the differences aren’t clear […]
Listen in as Stark details why the cybersecurity challenges are exacerbated by the COVID-19 work-from-home environment, with ransomware attacks, phishing and business email schemes also on the rise. “There are legions of soldiers waking up every morning with the sole desire to attack U.S. systems and exfiltrate important data,” Stark says. via Human Capital: John […]
Imagine that you have a history of heart disease in your family, so you hire a cardiologist each quarter to supervise various testing and to discuss the best exercise, diet and other steps to stay healthy. Naturally, the relationship with your cardiologist grows in familiarity, importance and confidence. Now imagine that you suddenly suffer a […]
The key selling point for cyber insurance has evolved over recent years as cyberattacks have become more prominent. Several years ago, cyber insurance was important because of data breach concerns and protecting organizations’ liability if private data was exposed. Today, the focus is on the potentially huge losses stemming from cybercrime. In fact, over the […]