Cyber Risk Governance Insights | August 12, 2024
WEEK IN HEADLINES
FINANCIAL SERVICES - Massive Data Breach Exposes 4.3M HSAs
A security breach at HealthEquity [NASDAQ: HQY], a Utah-based fintech firm, has compromised the sensitive data of 4.3 million customers. The stolen data includes names, addresses, Social Security numbers, and more. HealthEquity is offering affected customers two years of complimentary credit monitoring and urges vigilance in reviewing financial statements for suspicious activity.
INSIGHT: Your data should be protected by advanced encryption methods to protect your data.? You should also regularly update and patch systems, implement stringent access controls, and regularly audit Technical and Governance Controls through a Security And Risk Assessment, as it can help identify potential security and compliance weaknesses.
INFO SERVICES - 2.7B PII Records with Social Security Numbers Exposed
Nearly 2.7 billion records containing personal information, including names, social security numbers, and addresses, were leaked on a hacking forum. The data, originating from the National Public Data April 2024 breach, was exposed by a threat actor named “Fenice.” This breach has led to multiple class action lawsuits and highlights the urgent need for improved data protection measures.
INSIGHT: None of us need another "We're sorry.? Here's Free Credit Monitoring for 12 Months" from these companies.? We await the weight of the multiple class action lawsuits and the fines and penalties from regulators like State Regulators (CCPA), FTC, Data Protection Authorities.
ELECTIONS - State Operations To Influence 2024 US Presidential Election
Microsoft reports increased Iranian efforts to influence the 2024 US presidential election. Activities include covert news sites, spear phishing, and intelligence gathering. These operations aim to stir controversy, incite chaos, and undermine election integrity.
INSIGHT: Prevent these types of cyber-attacks by engaging with a Security Awareness and Education (SAE) Platform. It should include educating employees to recognize and avoid phishing attempts, and identify questionable video content that may have been generated through AI.
EDUCATION - School Boards Assoc Hit by Cyberattack Amid Back-to-School Prep
The Ohio School Boards Association (OSBA) experienced a cyberattack on Thursday, disrupting their website and email services. While no sensitive information was compromised, the breach has hindered communication with its 3,500 members and 700 school districts.
INSIGHT: Another example/evidence of misaligned resources allocated to school districts to potentially help diminish these types of cyberattacks. While increased funding can enhance a school’s cyber resilience posture, it’s not a guaranteed solution. Cyber Risk Management is a complex field that requires a multi-faceted and collaborative approach among the Stakeholders - Administrators, Technologists, and Internal Audit & Compliance.
ENTERTAINMENT - Crisis After Data Breach Leaks Unreleased Shows
Netflix [NASDAQ: NFLX] is grappling with a significant data breach that has led to the leak of unreleased episodes from popular series like “Arcane” Season 2 and “Heartstopper” Season 3. The breach, caused by a compromised post-production partner, has prompted Netflix to take aggressive action to remove the leaked content and protect its intellectual property. This incident marks one of the most severe security challenges in the company’s history.
INSIGHT: This is another supply chain attack where one of the company's post-production partners was compromised.? This is another reminder that cyber risk management is only as good as the weakest link.? We encourage companies to identify their current cyber resilience maturity score as this can provide a competitive edge and attract new customers.
GOOD NEWS - North Korean ‘Laptop Farm’ Funding WMDs Dismantled by US DoJ
The U.S. Justice Department arrested Matthew Isaac Knoot for aiding North Korean IT workers in obtaining remote jobs at American companies. Knoot operated a “laptop farm” that allowed North Koreans to pose as U.S. citizens, funneling earnings to North Korea’s nuclear weapons program.
INSIGHT: This case highlights the ongoing threat of North Korean (state and state-sponsored) cyber activities and the importance of cybersecurity vigilance.? DPKR is only one of many nation-states (and surrogates) actively targeting US companies and citizens and the primary purpose is money.? Ransomware prevention should be top of mind for all organizations.
CONSUMER SERVICES - Hackers Access Customer Data, Company Assures Systems Safe
ADT [NYSE: ADT] disclosed a security breach where hackers accessed customer order information, including emails, phone numbers, and addresses. The company assures that home security systems and sensitive financial data are not compromised. ADT has notified affected customers and activated enhanced cybersecurity protocols to protect their information.
INSIGHT: Be mindful of unusual activity among any of your online or financial accounts - even if ADT assures you its mismanagement of your now compromised data did not include sensitive financial info. Password management is important for all of your online activities.
INSIGHTS & EXPERT PERSPECTIVES
RISK MANAGEMENT
REDUCTION - Ransomware 2024: Insights to Evolving Threats
The first half of 2024 has seen significant changes in the ransomware ecosystem, with over 2,570 incidents tracked by researchers. This report highlights the emergence of new ransomware groups, evolving attack methodologies, and the increasing sophistication of encryption techniques. Key findings include the rise of new groups like RansomHub, the targeting of mid-sized companies, and the continued use of advanced encryption algorithms. The report underscores the need for robust cybersecurity defenses to combat these evolving threats.
Key Insights:
领英推荐
INSIGHTS: Assessing your organization’s cyber resilience and cyber risk posture is a valuable first step in defending against existing and new ransomware groups and variants. Here’s why:
?An equally valuable activity is conducting a DIY Business Impact Analysis. A BIA should be a part of your organization’s business continuity plan to help manage cyber risk. Here’s how:
A BIA is key for any organization that wants to take cyber resilience seriously. The more you understand your risks and the potential impact on your business, the better prepared you’ll be.?
If you'd like our free BIA Template, send a message to Sean Mahoney or Stanley Li.
TRANSFER - Report Reveals Stark Disparity in Insurance Coverage
The 2024 Intangible versus Tangible Risks Comparison Report from Aon, highlights a significant gap in insurance coverage between intangible and tangible assets. Despite the higher value and risk associated with intangible assets, only 19% are insured compared to 60% of tangible assets.
Intangible assets often include data, intellectual property, and digital infrastructure, which are highly vulnerable to cyber threats.
The report underscores the urgent need for businesses to reassess their risk management strategies, especially in light of evolving threats from generative AI and cyber security.
Key Insights:
INSIGHTS: We still see a bit of uncertainty among underwriters for cyber liability insurance, and the dynamic cyber risk landscape and AI make it challenging to accurately assess and price these risks for appropriate coverage and affordable premiums.? Therefore, you should focus on investing in advanced defense-in-depth technologies, enhancing internal controls and governance to enhance your cyber resilience rather than solely relying on insurance.
If you take the initiative to elevate your cyber resilience and provide evidence of such investments, you may be able to get better insurance coverage and mitigate potential financial losses from cyber incidents.
A Security and Risk Assessment (SARA) can be effective in understanding where resource allocation can be more effective, especially in light of the findings from the Aon report. Here’s how:
SARA provides an in-depth analysis of your current security posture, allowing you to distribute resources more effectively in a way that aligns?with your business objectives. This proactive approach to managing cyber risk helps you protect your most valuable assets in an increasingly risky cyber world.?
Thank you to Judy Selby for bringing this report to our attention.
Netswitch Sharpen Your Cyber Edge with Netswitch
Master Compliance & Minimize Risks:
Deepen Your Knowledge:
Don't wait.
Contact Netswitch Technology Management today to take control of your cyber risk.
Disclaimer: The information and links provided in this newsletter are for informational purposes only. Netswitch does not warrant the accuracy or completeness of such information and is not liable for any damages arising from its use.
Software + IA
2 个月Stanley, the compilation of headlines you shared is impressive and reveals the importance of being informed about security challenges in the financial sector. Congratulations on the great job keeping us up to date! Greetings from Cielysium, where we developed W-CRéDITOS, an advanced solution that uses AI to automate credit management.
Fractional CTO. Collaborate ? Deliver ? Iterate. ??
2 个月hi Stanley, please help me spread the word about a widespread security issue affecting election security. https://securethevote.substack.com/p/secure-the-vote