If and when you have to report a ‘material cybersecurity incident’ to the SEC, or you simply want to know how to respond to a cybersecurity incident, you must have a plan
RIAs and private fund advisers alike need to be prepared when the SEC finalizes its impending cybersecurity rules for asset management industry
QR phishing, or “Quishing” as it’s now called, is the latest of a new type of phishing attack that is proving extremely successful (for criminals)
You may know what a QR code is, but are you aware that there is now a new wave of QR Code cyber-attacks that are extremely successful?
SIM swapping is the latest in a trend of attacks in which criminal are able to break into your online accounts despite Multi-Factor Authentication (MFA) protections
Cyber criminals are increasingly focusing – quite successfully – on ‘MFA Fatigue’ attacks, which send relentless MFA push requests to a mobile device while masquerading as the IT department or other trusted entities
It’s critical that asset and wealth management firms develop strict GenAI Acceptable Usage policies in their employee handbook
While vulnerability scanning is often referred to as a Penetration Test, it is technically not a pentest
It is critical to ensure that Disaster Recovery Testing includes all data – especially data that is considered to be immutable, like emails