Cybersecurity and Risk Insights and Alerts

Cyber risks and threats continue to evolve and firms are under pressure to meet SEC and FCA expectations for operational resilience as well as their own internal and client expectations for cybersecurity and privacy. Stay current on the latest cybersecurity, privacy, and risk threat and regulatory alerts and build your cybersecurity and privacy knowledge with insights from our cybersecurity and technology risk experts. 

ACA Aponix Cybersecurity Checklist

Download and review the following cybersecurity safeguards and evaluate your firm’s cybersecurity program.

Insights and Alerts

The Evolution of Ransomware

July 23, 2021

This series addresses multiple aspects of the ransomware issue, including what you should know and what you should do to protect your organization, your clients, and your finances. This article describes the evolution of ransomware and describes recent developments. It answers the question “what is ransomware and do I need to worry about it?”

Article
  • Cybersecurity
ACA Threat Intelligence Alert Blog Image

Critical Security Flaw Discovered in Fortinet Security Products Require Upgrade

July 22, 2021

Remote attackers can exploit a flaw in Fortinet to gain unauthorized access to devices, and then exfiltrate data or perform other criminal activities from within the breached network.

Cyber Alert
  • Cybersecurity
abstract blue shapes connected by dots of light

The Department of Homeland Security Requires Pipeline Operators to Set Cybersecurity Safeguards

July 21, 2021

The U.S. TSA and DHS have issued a directive to operators of fuel and gas pipelines that requires them to improve their cybersecurity defenses.

Cyber Alert
  • Cybersecurity
  • Portfolio Company Risk Management
Roads and roundabouts

Protecting Your Business as Offices Reopen: A Seven Step Cybersecurity Action Plan for Physical and Hybrid Work Environments

July 17, 2021

ACA Aponix’s cybersecurity experts have developed the following action plan to help your firm review, revise, and implement a strong cyber program that will help protect your firm against reputational and financial damage as well as meet regulatory obligations, no matter what type of work model you’re employing.

Article
  • Cybersecurity

SEC to Investment Advisers: Cybersecurity Must Be a Comprehensive, Continually Evolving Program

July 15, 2021

This was the topic of discussion between the SEC’s Keith Cassidy, Head of the SEC’s Technology and Controls Program, and ACA Aponix® partner Mike Pappacena, during ACA’s spring conference. They discussed why the threat of a cyber-attack is so acute for investment advisers, how they can best protect themselves and their clients, and what the SEC expects from investment advisers’ cyber programs. Here are some highlights from their conversation.

Cyber Alert
  • Cybersecurity
abstract blue shapes connected by dots of light

Active Supply-Chain Ransomware Attack Against Kaseya VSA

July 02, 2021

Kaseya has warned of an active attack against a number of its customers using Kaseya’s VSA remote monitoring and management (RMM) platform. The attackers are using the platform to deliver REvil ransomware to systems, demanding $44,999 in funds to reclaim access to data.

Cyber Alert
  • Cybersecurity