Insights
The cyber landscape never stops shifting – and neither should your perspective. Our Insights bring you expert commentary, thought leadership and practical guidance on the issues shaping the alternative investments sector. Stay ahead of regulators, satisfy investors, and strengthen your resilience with analysis from the team that knows your world best.
-
What can the ION Markets ransomware attack teach the industry about cyber-threats?
When ION Markets was hit by a ransomware attack last week, it reverberated across the trading landscape and disrupted derivatives trading. Many UK, European and U.S. firms were forced to revert to manual settlement processes. While ION was clear to communicate that the incident was contained, it was just the latest example of cyber criminals…
-
The Value of Ethical Hacking
The words “a hacker has infiltrated our systems” sound like a disastrous scenario for any firm – but what if the hacker were welcome? Invited, even? While many firms have invested in cybersecurity technology and training, the true strength and weaknesses of a company’s defenses will only be revealed when put to the test. Enter…
-
Top Events That Shaped Cybersecurity and Resilience in 2022
There are thousands of breaches and cyber events each year, across geographies and industries – some that garner intense media coverage, and many that fly under the radar. Global regulators are continuing to ramp up the pressure on companies to improve cybersecurity resilience and implement safe data practices. As we enter 2023, it’s important to…
-
Do you know anything about your company’s Business Continuity and Operational Resilience? Well, in this day and age you should
Much has been written about business continuity (BC) and operational resilience (OR) over the last few years. The speed and impact of the pandemic meant all those carefully laid plans were tested to the limit, with some organizations faring better than others. Anyone hoping for a let-up would have been sorely disappointed. As Duncan Mackinnon,…
-
Lessons learned from EyeMed’s costly $4.5 million failed risk assessment
In October 2022, the New York State Department of Financial Services (NYDFS) ordered EyeMed Vision Care, a Cincinnati, Ohio-based vision benefits company, to pay a $4.5 million fine for failing to conduct a necessary risk assessment and violating NYDFS cyber rules. So, what was EyeMed’s mistake? The insurance firm fell short on implementing a multifactor authentication process…
-
How Hedge Funds Can Stay Ahead of Ransomware with the Right Incident Response Plans
There can be no hedging your bets when it comes to defending against ransomware. Funds don’t need to look far for high profile examples of devastating attacks, from Conti’s strike on Costa Rica in April to last year’s infamous Colonial Pipeline breach. And ransomware is on the rise, thanks to the growth of trends like ransomware-as-a-service. Verizon’s 2022…
-
Are Hackers Phishing in Your Waters? Top Tips to Protect Your Firm
When cybercriminals go phishing, it’s financial firms they want to land. According to research published last month by the Anti-Phishing Working Group, the financial sector (including banks) was the most frequently victimized by phishing in Q2 2022, accounting for 27.6% of all phishing attacks. And there’s a good reason why. As a highly lucrative industry predicted to grow…
-
Typo-Squatting: 5 Steps to Avoid Falling Victim
Today’s hackers constantly look for additional ways to capitalize on cyber security shortfalls and compromise sensitive data and information. Our clients report that social engineering attacks involving typo-squatting techniques are on the increase. Many businesses fail to realize how easily they can fall victim to this type of attack – but as real world instances…
-
How Government Regulations Can Aid Cybersecurity Defenses
Drawbridge CISO Simon Eyre authored this piece, originally featured in Security Boulevard. “In cybersecurity […] we all have a responsibility to ensure that our threat defenses are up-to-date, that our teams are educated and aware of common threats, and that we gather, store and use sensitive data appropriately. But we must also be conscious of…
-
Cyber Security Intelligence: Ransom – Prepare For The Worst
In this contributed article, Drawbridge CISO Simon Eyre highlights the continuing – and growing – threat of ransomware. He also offers four steps to combat ransomware, which are summarized below. Four steps to combat ransomware Preparation and testing (“It’s critical to be able to access [the incident response] plan at a moment’s notice, so make sure…
-
The SEC Gets Real with Investment Advisers and Funds About Their Cyber Hygiene
Acknowledging the severity of cyber risks, the SEC in early February proposed new cybersecurity risk management rules and amendments for registered investment advisers, registered investment companies, and funds. Thanks to law firms, management consultants, and other SEC watchers, in-depth analyses of the proposed changes are readily accessible online. These reports do a good job of walking readers through…
-
Securing Company Devices from Spyware
Malware has become a critical issue regarding cybersecurity throughout numerous industries. Those firms who work within an online space, securing company devices that handle the personal information and assets of clients, are particularly at risk. Malware can take many forms, but one of the most prevalent is that of spyware. Tips for Security Company Devices…
