Cybersecurity Alerts

October 2, 2018

On September 28, Facebook announced that it had discovered a breach affecting nearly 50 million Facebook users.

September 28, 2018

On September 25, the UK Information Commissioner’s Office (ICO) issued an enforcement action against a Canadian data analytics firm.

September 19, 2018

This alert contains information about multiple vulnerabilities in Apple products, and about an increase in social engineering “gift card” scams.

August 16, 2018

This alert contains information about L1TF Intel vulnerabilities, a recurrence of ransom-driven distributed denial of service (RDDoS) attacks, a Microsoft AD FS multi-factor bypass vulnerability, and FBI warnings of a coordinated attack seeking massive ATM withdrawals.

July 25, 2018

This alert contains information about the Emotet modular Trojan, a breach at the ComplyRight human resources company, and repeated breaches at the National Bank of Blacksburg, Virginia.

July 2, 2018

On June 25, 2018, the New York State Department of Financial Services (NYS-DFS) issued a final regulation directed toward New York consumer credit reporting agencies.

June 29, 2018

On June 28, 2018, California passed the California Consumer Privacy Act of 2018 (AB 375) which is set to go into effect on January 1, 2020, though there may be amendments b

May 11, 2018

ACA Aponix has observed that some U.S. private equity fund managers may be unaware of the implications of the European Union’s General Data Protection Regulation (GDPR), which goes into effect on May 25, 2018.

March 23, 2018

This advisory contains information about the Orbitz data breach and the OCR's investigation of a healthcare company's data breach.

March 6, 2018

On March 5, 2018, New York State Department of Financial Services’ (“NYS-DFS”) Superintendent Maria T. Vullo issued notices to firms that failed to file their certification of compliance with Article 23 Part 500 (“NYS-DFS 23 NYCRR 500”).

January 8, 2018

Updated January 8, 2018

Threat Summary

This is an update on a previous alert issued on the chip vulnerabilities known as Spectre and Meltdown.

November 16, 2017
North Korean Trojan Malware (Volgmer)

The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) released a joint technical alert on Monday, November 14 regarding malicious cyber activity by the North Korean government referred to as HIDDEN COBRA.

October 25, 2017
Threat Summary

A new strain of ransomware, nicknamed "Bad Rabbit," has been detected in several countries, including Russia, Ukraine, Turkey, Germany, and others.