ACA Spotlight Blog

ACA Spotlight Blog

Risk and compliance alerts, insights, and resources for financial services firms
 

Subscribe

Cybersecurity

 

Mimecast E-Mail Security Service Hacked
January 15, 2021
Mimecast® e-mail security company has reported a breach that affects 10% of users in which hackers may be able to access company email and other data as well as infiltrate company networks. Learn how to protect yourself from this breach.
Regulators Probe Firms’ Exposure Following SolarWinds Hack
January 14, 2021
Regulators have taken steps to probe companies’ levels of exposure to the SolarWinds hack. Learn what information and actions have been requested so far.
California Privacy Rights Act FAQs
December 18, 2020
The California Privacy Rights Act of 2020 (CPRA) is a new data privacy law that substantially updates the existing California Consumer Privacy Act (CCPA) to bring California's privacy regulations into closer alignment with the European General Data Protection Regulation (GDPR).
Update: Major SolarWinds Breach Affects Government and Businesses Worldwide
December 18, 2020
Following our Cyber Alert earlier this week about the SolarWinds breach, many extraordinary steps have been taken by industry leaders to respond to what may be the most material global intrusion campaign of the past decade.
December 18, 2020
This year, as we responded to the pandemic, we continued to invest in enhancing our cybersecurity and privacy services to help our clients meet their firm's priorities efficiently and effectively as well as respond to the evolving cybersecurity landscape. Review a summary of 2020 cybersecurity news and insights and other resources and prepare for 2021.
Vulnerability Reported in Microsoft Teams
December 14, 2020
A major breach has compromised confidential data at several U.S. government agencies, including the Treasury Department and the Department of Commerce exposing information from the executive branch, the military, and intelligence services. It has likewise compromised leading telecommunications firms, technology firms, and international governments.
Helping Private Equity Firms Stay Ahead of Risk
December 10, 2020
On October 6, 2020, ACA Aponix held a panel discussion about portfolio company risk management at our Cyber Week Virtual Conference. The session featured panelists from leading Private Equity (PE) firms who have worked with ACA to deploy strategic portfolio company risk management programs and included participants from over 200 firms.
Vulnerability Reported in Microsoft Teams
December 9, 2020
A critical vulnerability affecting Microsoft® Teams® has been reported involving attackers sending a specially crafted chat message to Teams users. Once viewed, the message captures the recipient’s sign-on information and enables remote code execution on the user’s machine.
Zoom Scam Forces Closure of Australian Hedge Fund
November 30, 2020
Learn how hackers used a Zoom scam to execute a cyberattack that ultimately forced an Australian hedge fund to close after approving $8.7M in fraudulent invoices. 
California Approves CPRA, Which Amends CCPA
November 6, 2020
Learn more about the California Privacy Rights Act (CPRA), which amends the existing California Consumer Privacy Act (CCPA).
Rise in Attacks and Losses  Linked to Office 365 Misconfiguration
November 5, 2020
Recent reports from the FBI’s Internet Crime Complaint Center indicate a staggering rise in the rate of business email compromise due to exploitation of Microsoft Office 365 and other cloud-based email services.
aponix cyber week image
October 27, 2020
Each year, ACA reviews the most terrifying cybersecurity breaches of the year. Watch Raj Bakhru and Marc Lotti discuss causes and impacts of major cyber-attacks in our Scariest Cyber Breaches of 2020 webcast, now available on demand