What a Modern Firewall Does for Cloud-Based RIAs
What a Modern Firewall Does for Cloud-Based RIAs For many Registered Investment Advisers (RIAs), the word “firewall” still brings to mind an appliance guarding a physical office network. But as firms have shifted to Microsoft 365, cloud CRMs, and fully remote teams,...
Why RIAs Need Robust Incident Response (and Digital Forensics) to Meet SEC Cybersecurity Expectations
Why RIAs Need Robust Incident Response (and Digital Forensics) to Meet SEC Cybersecurity Expectations Registered Investment Advisors (RIAs) and their compliance officers face mounting cybersecurity risks and regulatory pressure to be prepared for incidents. Recent SEC...
Join Our Quest: Helpdesk Tech at FinGarde
Join Our Quest: Helpdesk Tech at FinGarde Who We Are: At FinGarde, we don't just manage IT services; we embark on quests. Located in Heath, Ohio, we serve as the trusted IT allies of financial advisors in twelve states. We are a band of tech adventurers, growing...
Colonial Pipeline Attack and How it Relates to Financial Services
It seems that anyone with an online voice is writing about the pipeline attack. But, in case you missed it, on May 7, 2021 a major pipeline that carries fuel from Texas to the South-East United States was taken offline by a cyber-attack. This attack is known as...
HAFNIUM Targeting Exchange Servers with Zero-day Exploits
THREAT UPDATE Microsoft has released several security updates due to targeted attacks against vulnerabilities found in Microsoft Exchange Server (versions 2013, 2016, and 2019). Though the attacks are said to have been limited, Microsoft is urging the immediate...
Threat Advisory – Apple Releases High-Priority Updates
Threat Update After a browser fingerprinting and fraud detection detected an actively exploited vulnerability (which can be tracked as CVE-2022-22587) in Apple’s Safari 15 browser, Apple has released updates that fix the bug (iOS 15.3 and macOS Monterey 12.2). This...
Malicious PowerPoint Files Used to Take Over PCs
Threat Update Threat actors are creating socially engineered emails containing PowerPoint file attachments with the extension “.ppam” to hide malicious executables which can rewrite Windows registry settings to gain control over end user’s computers. It is one of many...
Malware and Ransomware Attacks Against Ukrainian Organizations
Threat Update In the ongoing conflict between Russia and Ukraine, security experts have been observing cyberattacks targeting Ukrainian government departments with overwhelming levels of Internet traffic and data-wiping malware. Upon further analysis, the Ukrainian...
WordPress Themes and Plugins Injected with Backdoor
Threat Update AccessPress, a popular WordPress theme and plugin provider, was compromised in early September 2021 and several of their themes and plugins were injected with a backdoor. This gave the attackers full access to websites that installed these plugins. While...
BlackByte Ransomware Group Gaining Traction
Threat Update The BlackByte Ransomware-as-a-Service group is quickly gaining traction by infecting and cryptolocking multiple companies. Reports regarding this ransomware in the wild have existed since July 2021. In response, the FBI and USSS (United States Secret...