Cybersecurity Alerts

February 13, 2019

On February 12, Microsoft issued a series of software fixes that address over 70 security issues, several of which are critical vulnerabilities.

February 12, 2019

On February 8, Krebs on Security reported that a number of AML compliance professionals at credit unions and other financial institutions have recently been t

January 29, 2019

On January 28, the computer emergency response team (CERT) coordination center (CC) for the Software Engineering Institute at Carnegie Mellon University reported a new zero-day vulnerability affecting Microsoft® Exchange

January 8, 2019

On January 7, the National Futures Association (NFA) announced amendments to its existing rules regarding Information Systems Security Programs (ISSPs) that members under its regulatory jurisdiction must follow.

December 20, 2018

On December 19, Microsoft announced the release of a security patch to combat a security hole in its Internet Explorer browser.

December 14, 2018

On December 13, dozens of bomb threats were received at multiple locations across the United States and in several other countries, including Canada, Australia, and New Zealand. The bomb threats were sent by email to universities, courthouses, newspapers and multiple business sites.

November 30, 2018

In a speech made this week, Megan Butler from the Financial Conduct Authority (FCA) outlined the regulator’s cyber expectations for registered firms.

November 21, 2018

On November 19, the National Cybersecurity and Communications Integration Center (NCCIC) of the U.S.

November 1, 2018

On October 31, Cisco announced that it has discovered a vulnerability affecting devices running its Adaptive Security Appliance (ASA) and Firepower Threat Defense (

October 2, 2018

On September 28, Facebook announced that it had discovered a breach affecting nearly 50 million Facebook users.

September 28, 2018

On September 25, the UK Information Commissioner’s Office (ICO) issued an enforcement action against a Canadian data analytics firm.

September 19, 2018

This alert contains information about multiple vulnerabilities in Apple products, and about an increase in social engineering “gift card” scams.

August 16, 2018

This alert contains information about L1TF Intel vulnerabilities, a recurrence of ransom-driven distributed denial of service (RDDoS) attacks, a Microsoft AD FS multi-factor bypass vulnerability, and FBI warnings of a coordinated attack seeking massive ATM withdrawals.