2010 and Financial Services - Information Management Today

German intelligence agency warns of China-linked APT27 targeting commercial organizations

Security Affairs

JANUARY 26, 2022

The APT27 group (aka Emissary Panda , TG-3390 , Bronze Union , and Lucky Mouse ) has been active since 2010, it targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia. .” reads the advisory published by the German intelligence.

Financial Services

Financial Services Access IT Security

China-linked Budworm APT returns to target a US entity

Security Affairs

OCTOBER 13, 2022

The China-linked APT27 group has been active since 2010, it targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia. This is the first time that Symantec researchers have observed the Budworm group targeting a U.S-based based organization.

File names

File names Financial Services Manufacturing Libraries

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

.” According to a 2016 story from Forbes.ru , Botnet’s opening scene was to depict the plight of Christina Svechinskaya , a Russian student arrested by FBI agents in September 2010. Christina Svechinskaya, a money mule hired by Bentley who was arrested by the FBI in 2010. This is not the U.S.

Ransomware

Ransomware Government Cybersecurity Blockchain

LinkedIn to IPO in 2010? Facebook to Find a Business Model? | ZDNet

Collaboration 2.0

DECEMBER 29, 2009

LinkedIn to IPO in 2010? By Oliver Marks | December 29, 2009, 12:36pm PST Summary Despite the claims from LinkedIn that an IPO isn’t imminent, I wouldn’t be surprised to see that happen in 2010. Hot Topics iPhone iPad Enterprise 2.0 Microsoft Office Green tech Smart phones Collaboration 2.0 All rights reserved.

Paper

Paper Marketing Cloud Financial Services

SAP Security Patch Day for May 2019 fixes many missing authorization checks

Security Affairs

MAY 15, 2019

Five Security Notes included in SAP Security Patch Day for May 2019 addressed missing authorization checks in SAP products, including Treasury and Risk Management, Solution Manager and ABAP managed systems, dbpool administration, and Enterprise Financial Services. . ” reads a blog post published by SAP security firm Onapsis.

Security

Security Financial Services Risk IT

Experts linked ransomware attacks to China-linked APT27

Security Affairs

JANUARY 4, 2021

The APT group has been active since 2010, targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia. If APT27 focuses on cyberespionage, Winnti is known for its financial motivation.

Ransomware

Ransomware Encryption Financial Services Cybersecurity

Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw

Security Affairs

NOVEMBER 8, 2021

The APT group has been active since 2010, targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia.

Communications

Communications Blockchain Passwords Financial Services

MyPayrollHR CEO Arrested, Admits to $70M Fraud

Krebs on Security

SEPTEMBER 27, 2019

In the criminal complaint against Mann (PDF), a New York FBI agent said the CEO admitted that starting in 2010 or 2011 he began borrowing large sums of money from banks and financing companies under false pretenses. ” “Mann estimated that he fraudulently obtained about $70 million that he has not paid back. .”

Financial Services

Financial Services Insurance Cloud IT

Reltio: From Origin Story to Future State

Reltio

DECEMBER 21, 2021

When Informatica acquired Siperian in 2010, Manish left to pursue a startup venture that would solve some of these thorny problems – but instead through a unified, cloud-based solution. He worked on the data problem at Siperian for several years, where he focused on unifying data across platforms for customers in several industries.

Digital transformation

Digital transformation Healthcare Cloud Financial Services

Emissary Panda updated its weapons for attacks in the past 2 years

Security Affairs

MARCH 1, 2019

The Emissary Panda APT (aka LuckyMouse , APT27, Threat Group 3390, and Bronze Union) has been active since 2010, targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia.

IT

IT File names Financial Services Communications

Emissary Panda APT group hit Government Organizations in the Middle East

Security Affairs

MAY 30, 2019

The Emissary Panda APT group has been active since 2010, targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia.

Government

Government Financial Services Security Cybersecurity

Hunton & Williams Uncontested as Top Privacy Adviser in Computerworld Poll

Hunton Privacy

FEBRUARY 7, 2011

For the fourth consecutive time, Hunton & Williams LLP was named the top firm for privacy by Computerworld in its 2010 report on “Best Privacy Advisers.” The survey of more than 4,000 global corporate privacy leaders ranked Hunton & Williams #1 overall, citing the firm’s extensive experience and global presence.

Privacy

Privacy Financial Services IT

Chinese LuckyMouse APT has been using a digitally signed network filtering driver in recent attacks

Security Affairs

SEPTEMBER 10, 2018

The APT group has been active since at least 2010, the crew targeted U.S. defense contractors and financial services firms worldwide. In March 2018, security experts at Kaspersky Lab have observed an attack powered by the Chinese APT group, the experts speculate the campaign was started in the fall of 2017.

Communications

Communications Financial Services Government Phishing

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

The Last Watchdog

FEBRUARY 25, 2019

Not long afterwards, in about the 2010 time frame, IAM vendors first arrived on the scene, including Optimal IdM, Centrify, Okta and CyberArk, followed by many others. These vendors all spun out of the emergence of a new set of protocols, referred to as federated standards, designed to manage and map user identities across multiple systems.

Access

Access Government Authentication Data breaches

HHS Settles with Affinity Health Plan Over Photocopier Security Breach

Hunton Privacy

AUGUST 15, 2013

As we reported in 2010 , CBS News purchased one of the photocopiers that Affinity returned to the leasing company and produced an exposé detailing the information (ranging from “drug prescriptions, to blood test results, to a cancer diagnosis”) found on the copier’s hard drives.

Security

Security Financial Services Risk IT

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

Data Matters

MARCH 12, 2019

Of particular note, the Safeguards Rule NPRM proposes to align the FTC’s requirements with those of the New York Department of Financial Services (“NYDFS”), as found in its cybersecurity regulations, and the National Association of Insurance Commissioners (“NAIC”), as found in its insurance data security model law.

Privacy

Privacy IT Information Security Insurance

UK ICO Fines Private Sector Financial Organization Over Customer Data Mix-Up

Hunton Privacy

NOVEMBER 8, 2012

On October 29, 2012, the UK Information Commissioner’s Office (“ICO”) served private sector financial services company The Prudential Assurance Company Limited (“Prudential”) with a monetary penalty of £50,000 in connection with a serious violation of the Data Protection Act 1998 (“DPA”).

Financial Services

Financial Services Personal data IT Privacy

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

For example, the New York Department of Financial Services (‘NYDFS’) in March 2017 issued its Cybersecurity Regulation (23 NYCRR 500) (‘the NYDFS Cybersecurity Regulation’), a groundbreaking and far-reaching regulatory regime focused on financial institutions licensed in New York, including insurance companies.

Insurance

Insurance Cybersecurity Data breaches Financial Services

Ten Years Later, New Clues in the Target Breach

Krebs on Security

DECEMBER 14, 2023

Much of my reporting on Vrublevsky’s cybercrime empire came from several years worth of internal ChronoPay emails and documents that were leaked online in 2010 and 2011. According to leaked ChronoPay emails from 2010, this domain was registered and paid for by ChronoPay. Pavel Vrublevsky’s former Facebook profile photo.

Computer and Electronics

Computer and Electronics Marketing Sales Healthcare

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

HL Chronicle of Data Protection

MARCH 14, 2019

When the GLBA was enacted in 1999, the FTC was one of several federal regulators with rulemaking authority, and the FTC’s Privacy Rule applied to a broad range of non-bank financial institutions, such as payday lenders, mortgage brokers, check cashers, and debt collectors. The FTC retained authority over certain motor vehicle dealers only.

Privacy

Privacy Risk Cybersecurity Information Security

Who’s Behind the ‘Web Listings’ Mail Scam?

Krebs on Security

MARCH 23, 2020

has posts dating back to 2010, and points to even more Web Listings domains, including weblistingsinc.org. 2010 to a Mark Scott in Blairgowrie, Scotland, using the email address clientnews@reputationmanagementfor.com. finzthegoose.com 2010-08-03 enom, inc. Image: Better Business Bureau. A Twitter account for Web Listings Inc.

Sales

Sales Marketing Financial Services IT

#ModernDataMasters: Bob More, SVP Global Field Operations

Reltio

JULY 10, 2019

As a result of the highly visible and mission critical solutions we were providing and the ongoing industry consolidation, Informatica acquired Siperian in 2010 and it has since become the cornerstone of their MDM capabilities.

MDM

MDM Sales Digital transformation Cloud

The Best Memberships for Information Professionals

AIIM

MAY 19, 2020

financial services sector is different in practice than RM for a law firm, or a Canadian municipal government, or a multinational energy firm. Founded in Nigeria in 2010, with members today in several additional countries in Africa, Europe, and the United States. Don’t overlook horizontal or vertical associations.

Records Management

Records Management Privacy Government Information governance

Zero Trust: Can It Be Implemented Outside the Cloud?

eSecurity Planet

MAY 11, 2023

The concept of zero trust has been around since 2010, when Forrester Research analyst John Kindervag created the zero trust security model. The only exception, it seems, has been cloud service providers, who boast an enviable record when it comes to cybersecurity, thanks to rigorous security practices like Google’s continuous patching.

Cloud

Cloud IT Insurance Authentication

FTC Proposes Changes to GLB Privacy and Safeguards Rules

Hunton Privacy

MARCH 8, 2019

The proposed changes would add more detailed requirements on how financial institutions must protect customer information. The Privacy Rule, which went into effect in 2000, requires a financial institution to provide privacy notices to customers and the ability to opt out of having their information shared with certain third parties.

Privacy

Privacy Insurance Financial Services Encryption

Iran announced to have foiled a second cyber-attack in a week

Security Affairs

DECEMBER 15, 2019

The APT27 cyber espionage group (aka Emissary Panda , TG-3390 , Bronze Union , and Lucky Mouse ) has been active since 2010, it targeted organizations worldwide, including U.S. defense contractors , financial services firms, and a national data center in Central Asia.

Government

Government Financial Services IT Security

Information Management Today

German intelligence agency warns of China-linked APT27 targeting commercial organizations

China-linked Budworm APT returns to target a US entity

Trending Sources

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

LinkedIn to IPO in 2010? Facebook to Find a Business Model? | ZDNet

SAP Security Patch Day for May 2019 fixes many missing authorization checks

Experts linked ransomware attacks to China-linked APT27

Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw

MyPayrollHR CEO Arrested, Admits to $70M Fraud

Reltio: From Origin Story to Future State

Emissary Panda updated its weapons for attacks in the past 2 years

Emissary Panda APT group hit Government Organizations in the Middle East

Hunton & Williams Uncontested as Top Privacy Adviser in Computerworld Poll

Chinese LuckyMouse APT has been using a digitally signed network filtering driver in recent attacks

MY TAKE: Identity ‘access’ and ‘governance’ tech converge to meet data protection challenges

HHS Settles with Affinity Health Plan Over Photocopier Security Breach

FTC Seeks Comment on Proposed Changes to its GLBA Safeguards and Privacy Rules

UK ICO Fines Private Sector Financial Organization Over Customer Data Mix-Up

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

Ten Years Later, New Clues in the Target Breach

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

Who’s Behind the ‘Web Listings’ Mail Scam?

#ModernDataMasters: Bob More, SVP Global Field Operations

The Best Memberships for Information Professionals

Zero Trust: Can It Be Implemented Outside the Cloud?

FTC Proposes Changes to GLB Privacy and Safeguards Rules

Iran announced to have foiled a second cyber-attack in a week

Stay Connected