Threat Intelligence, Phishing Testing, and Monitoring

Protect your company from cyber attacks

Cyber threats are constantly evolving, so it’s important to stay on top of new threats and address them as quickly as possible. We provide cyber alerts and ongoing monitoring to help protect your company from cyber attacks. We also offer phishing testing and monitoring services to protect your business.

Our solutions

Phishing Testing

One of the simplest ways a hacker can penetrate your network is via email using a tactic called phishing, or, in a targeted effort, spear-phishing.  Successful phishing, vishing (telephone-based phishing), and spearphishing can lead to ransomware, payment fraud, and other cyber crimes. The FBI has reported that people lost $57 million to phishing schemes in 2019.

We deploy targeted email campaigns that are designed to test your employee’s ability to identify phishing threats. We use the results of our phishing tests as part of our staff security training, which covers phishing identification and other essential skills and tools for identifying threats and preventing data breaches.

We periodically issue timely alerts on cyber events and technology concerns that may be relevant to your business. Our alerts provide strategic guidance to help you protect your company and understand how to best prevent or remediate issues.

Subscribe to receive our cyber alerts

Domain Registration Monitoring & Paste Site Monitoring

Over 100,000 domains are registered every day, many for malicious purposes. We monitor newly registered domain names and alert you when a domain name that resembles your firm’s domain is registered so that your firm can take action to combat attempts to steal sensitive information or infringe on your firm’s intellectual property.

Hackers often post sensitive data about their victims or targets on anonymous paste sites to share with the broader hacker community. We monitor select anonymous paste sites for mentions of your firm’s domain or IP addresses, as these could be indicators of an upcoming or ongoing attack.

1 of
Solution Spotlight

Aponix Protect™ comprehensive cybersecurity and technology risk solution

Aponix Protect helps firms address evolving cyber risks and threats to ensure that their cybersecurity needs are covered year-round. This solution is available in three tiers, each one designed to provide firms with a flexible, robust, responsive, and cost-effective cybersecurity program. 

Latest insights

ACA Threat Intelligence Alert Blog Image

Firms Report Phishing Attempts That Impersonate Microsoft®

Multiple firms (including ACA) have reported recent receipt of phishing emails claiming to be from Microsoft. The emails are clearly spoofed. In this alert, we explain how to spot a phishing attempt.

Cyber Alert
  • Cybersecurity
  • Phishing

Ransomware 101 Part 1: A Growing Threat to Financial Services Firms

Ransomware is an evolving and serious problem, particularly for financial services firms. In the first of a three-part blog series, we answer the question, “Why is ransomware a threat to my business?"

Article
  • Cybersecurity
ACA Threat Intelligence Alert Blog Image

Critical Security Flaw Discovered in Fortinet Security Products Require Upgrade

Remote attackers can exploit a flaw in Fortinet to gain unauthorized access to devices, and then exfiltrate data or perform other criminal activities from within the breached network.

Cyber Alert
  • Cybersecurity
abstract blue shapes connected by dots of light

The Department of Homeland Security Requires Pipeline Operators to Set Cybersecurity Safeguards

The U.S. TSA and DHS have issued a directive to operators of fuel and gas pipelines that requires them to improve their cybersecurity defenses.

Cyber Alert
  • Cybersecurity
  • Portfolio Company Risk Management
Roads and roundabouts

Protecting Your Business as Offices Reopen: A Seven Step Cybersecurity Action Plan for Physical and Hybrid Work Environments

ACA Aponix’s cybersecurity experts have developed the following action plan to help your firm review, revise, and implement a strong cyber program that will help protect your firm against reputational and financial damage as well as meet regulatory obligations, no matter what type of work model you’re employing.

Article
  • Cybersecurity
  • Cybersecurity Resources

SEC to Investment Advisers: Cybersecurity Must Be a Comprehensive, Continually Evolving Program

This was the topic of discussion between the SEC’s Keith Cassidy, Head of the SEC’s Technology and Controls Program, and ACA Aponix® partner Mike Pappacena, during ACA’s spring conference. They discussed why the threat of a cyber-attack is so acute for investment advisers, how they can best protect themselves and their clients, and what the SEC expects from investment advisers’ cyber programs. Here are some highlights from their conversation.

Cyber Alert
  • Cybersecurity

News

ACA Group Named Accounting/Due Diligence Firm of the Year by M&A Advisor

ACA Group announced today that ACA Aponix® is the recipient of the Accounting/Due Diligence Firm of the Year in the 20th Annual M&A Advisor Awards. The M&A Advisor Awards are the benchmark for dealmaking excellence, recognizing the leading M&A Transactions, Restructurings, Deal Financings, Product/ Services, Firms, and Professionals.

ACA Group Selected as a RegTech100 Company for 2022

ACA is delighted to be counted among the 100 most innovative RegTech companies in the financial industry.

ACA Group Named Best Regulatory Consultancy - North America by RegTech Insight

ACA is honored to be voted Best Regulatory Consultancy - North America in the RegTech Insight Awards 2021 USA.

Upcoming events

Money Laundering Reporting Officer: The Role and Responsibilities - 2 February 2022

The role of the Money Laundering Reporting Officer (MLRO) is a mandatory position in all firms in the Financial Services Industry. This reflects the statutory objective that the Regulator(s) have for ensuring that firms behave with “Integrity”, particularly relating to financial crime prevention. The MLRO therefore plays a significant role in assisting Senior management to ensure that systems and controls relating to anti-money laundering (AML) and countering the risk of terrorist financing (CTF) are appropriate and effective. This course provides practical advice and guidance on the responsibilities of the MLRO, what is expected by the Regulators, both of the Senior Management and the MLRO, and how those responsibilities can be achieved. It should be noted that attendance at this course does assume a good knowledge of the UK’s AML/CTF regulations.

Online Training

Annual Update - Senior Managers Obligations - 9 February 2022

The ever-increasing focus by the Regulators on the accountability of senior management, particularly when things go wrong, emphasises how important it is for individuals in senior positions to have a clear understanding of what is expected of them. This succinct course is designed to assist Senior Managers to have a full understanding of what they need to do to achieve compliance with the rules under the obligations created by the Senior Managers and Certification Regime (SMCR).

Online Training

Compliance Officer: The Roles and Responsibilities - 10 February 2022

The role of the Compliance Officer is a mandatory position in all firms in the Financial Services Industry. They play a major role in assisting Senior Management to ensure that appropriate and effective systems and controls are in place to achieve and maintain compliance with the applicable Rules. While the nature of the Compliance Function is likely to differ from one firm to another, this course provides an easy to follow breakdown of what the Regulator expects of a Compliance Officer and explains, in practical terms how the regulatory expectations and those of Senior Management can be achieved.

Online Training