Cybersecurity and Risk Insights and Alerts

Cyber risks and threats continue to evolve and firms are under pressure to meet SEC and FCA expectations for operational resilience as well as their own internal and client expectations for cybersecurity and privacy. Stay current on the latest cybersecurity, privacy, and risk threat and regulatory alerts and build your cybersecurity and privacy knowledge with insights from our cybersecurity and technology risk experts. 

ACA Aponix Cybersecurity Checklist

Download and review the following cybersecurity safeguards and evaluate your firm’s cybersecurity program.

Insights and Alerts

abstract blue shapes connected by dots of light

Ransomware 101 Part 2: How to Prevent and Detect a Ransomware Attack

September 22, 2021

Our Ransomware 101 blog series addresses multiple aspects of the ransomware issue, including what you should know and what you should do to protect your firm, your clients, and your finances. In part one, we discussed the evolving and growing threat of ransomware. In this article (part two), we’ll provide a framework for what your organization can do to prevent and detect ransomware attacks.

Article
  • Cybersecurity
ACA Threat Intelligence Alert Blog Image

Apple® Issues Patch to Fix Spyware Vulnerability

September 15, 2021

A vulnerability has been discovered in Apple products that enables the installation of unauthorized software without the user's permission. The vulnerability is actively used to install Pegasus spyware on devices, allowing user activities to be surveilled by an external party.

Cyber Alert
  • Cybersecurity
ACA Threat Intelligence Alert Blog Image

Microsoft® Reports “Zero-Day” Attacks Using Tainted Office® Files

September 09, 2021

Microsoft reports a previously unseen “zero-day” attack that uses Office files tainted with specially crafted Active X controls. Once opened, these controls create a vulnerability that enables perpetrators to perform remote code execution.

Cyber Alert
  • Cybersecurity
Aponix blog background

China Passes Data Privacy Law That Affects Chinese and Foreign Companies

September 02, 2021

The Personal Information Protection Law of the People's Republic of China is scheduled to go into effect on November 1, 2021. This new law affects all companies and other entities, both inside and outside of China, engaged with personal information about individuals residing in China.

Cyber Alert
  • Privacy
  • Cybersecurity
2021 Spring Virtual Conference

ACA’s Spring 2021 Virtual Conference: Key Takeaways and Trends

August 31, 2021

ACA’s Spring 2021 Virtual Conference was an opportunity for the regulatory compliance, performance, and cybersecurity community to come together and discuss the many changes of the past year and what the future of GRC looks like moving forward.

Article
  • Compliance
  • ComplianceAlpha
  • ESG
  • GIPS Standards
  • Regulatory Technology
  • Cybersecurity
  • Performance
  • Privacy
abstract blue shapes connected by dots of light

SEC Sanctions Registered Investment Advisers and Broker-Dealers for Cybersecurity Failures

August 31, 2021

The SEC announced that it sanctioned eight firms for failure to establish and implement cybersecurity policies and procedures. These failures resulted in multiple instances of criminal email account takeovers causing personally identifiable information from thousands of customers and clients to be exposed.

Cyber Alert
  • Cybersecurity
  • Compliance