Vulnerability management
-
The SEC Has Announced Charges Against Deficient Cybersecurity Procedures
On this day, August 30, the Securities and Exchange Commission (SEC) has sanctioned multiple firms in three actions for failures in both cybersecurity policies and procedures. These failures resulted in large data breaches, causing thousands of email account takeovers for clients and customers. These sanctioned firms have agreed to settle the charges. In one instance,…
-
Service Spotlight: Regulatory Readiness
Financial regulators often hold high standards to the cybersecurity practices of hedge funds and registered investment advisors. In order for firms to meet regulatory requirements, effective and well-maintained cybersecurity programs are necessary. Often, the goal is not only to shore up cybersecurity within your firm, but to bring your firm into the fold of countless…
-
Service Spotlight: Penetration Testing with Drawbridge
It is imperative that a firm knows what they are up against in the event of a breach. To help with this, Drawbridge’s dedicated cybersecurity team emphasizes the testing of your preventative technologies. To accomplish this, Drawbridge makes use of penetration testing to best gauge a firms’ vulnerabilities. A penetration test is a simulated cyber-attack on your…
-
Protect your Family Office with Drawbridge Cybersecurity
With recent developments in cyber threats, it can be hard for single and multifamily office investors to continuously ensure the security of themselves and their counterparts. They are faced with complex cybersecurity threats within their firms and the investments in which they provide their information and capital. Without the right solutions to monitor cyber risk,…
-
Service Spotlight: Office 365 Assessment and Security from Drawbridge
Microsoft Office 365 can be an imperative tool to your business and the efficiency at which you run it. Many businesses rely on its features, such as its OneDrive cloud storage, easy installation on numerous devices, and the latest versions of Office apps. If you’re one of the businesses that use Office 365, you might…
-
Market Spotlight: Securing Hedge Funds with Drawbridge
If your business offers any type of financial service, you face the threat of potential cyber attacks and other digital threats. Hedge funds are one of those services at risk. Hedge funds can be attacked through a variety of ways, such as phishing, spear-phishing, ransomware, and more. Hedge fund managers are prime targets for cyber…
-
Service Spotlight: Protect your Firm with Drawbridge Vulnerability Management
Leaving your business even slightly vulnerable can give way to cyber attackers to wreak havoc on your company. Ensuring your company’s protection and security by seeking out and closing up vulnerable points of your business is pivotal to the long-term success of your business. At Drawbridge, we dedicate ourselves to helping firms defend against and address…
-
Preparing your hedge fund for the modern cybercriminal
Originally Published in Alternatives Watch. The familiar adage that “every organization is a target” when it comes to cyberattacks, solidifies its place as an undeniable truth for companies in all industries each year. Spring has barely begun and we have already seen what could be one of the biggest cyberattacks of 2021. When thousands of companies…
-
Microsoft’s Big Email Hack – Why it Matters and How to Protect Against these Attacks
The recent attack on Microsoft Exchange is further evidence of the risks businesses face with systems connected to the internet. The mantra that it is not “if” a business gets attacked but “when” could not be more evident in systems like Exchange. This cyber event also brought to light how quickly an attack can escalate.…
-
U.S. Treasury, Commerce Departments hacked through SolarWinds compromise
Hackers broke into the networks of the Treasury and Commerce departments as part of a global cyberespionage campaign revealed Sunday. In response to what may be a large-scale penetration of U.S. government agencies, the Department of Homeland Security’s cybersecurity arm issued an emergency directive calling on all federal civilian agencies to scour their networks for…
-
Remote Working: Securing Devices and Protecting Valuable Data
More than 7 months ago, the World Health Organization declared COVID-19 a pandemic. Since then, many of us have made changes to our lifestyle, the way we live and work. As we all try to curb the spread of the COVID-19 virus, remote working has become normalised, and a necessity for many businesses. However, with…
-
Critical Microsoft Alert and Patching Update
As part of the July “Patch Tuesday”, Microsoft released a total of 123 CVEs (or “Common Vulnerabilities or Exposures”). That comes on the back of a record-breaking number of June CVEs totaling 129. The year-on-year volume of CVEs from Microsoft is increasing rapidly, with 2020 totaling 657 so far. We are not far from eclipsing…
