Tag Archives: ransomware

OCIE Warns Public Companies, SEC Registrants, Financial Institutions at Risk of Ransomware Attacks

The Office of Compliance Inspections and Examinations (OCIE) Cybersecurity Risk Alert reported increased ransomware attacks to SEC registrants (broker-dealers, investment advisers, and investment companies) and potentially service providers – especially if they maintain client assets or registrant records. Companies should be aware of the potential risks they face.

VULNERABILITY N+1

VULNERABILITY N+1. AUTHOR: Terry Kurzynski, CISSP, CISA, PCI QSA, ISO 27001 AUDITOR As Americans, we love lists.  That fact is self-evident when browsing our favorite blog sites, as many blogs start out with catchy headlines like, “The Top 5 ______ (fill in the blank).”  The love of lists is rooted deeply in our culture. We loved the […]

Cleverly Disguised Ransomware Infecting Chrome Users

Cleverly Disguised Ransomware Infecting Chrome Users. A new variant of ransomware is spreading via poorly secured websites and the Chrome Web Browser. Users are fooled into downloading what they think is a missing font pack in order to resolve the error. This attack technique is not uncommon, and has been recently reported delivering click-fraud malware, […]

BEC Phishing is a Bigger Threat than Ransomware

BEC Phishing is a Bigger Threat than Ransomware. AUTHOR: Terry Kurzynski, CISSP, CISA, PCI QSA, ISO 27001 AUDITOR Ransomware stole a lot of headlines in 2016 as organizations across the world fell victim to it. From hospitals to city transit systems, the infectious malware invaded enterprises, encrypting files and generally wreaking havoc. For most of those afflicted, ransomware […]