2020, Financial Services and Government - Information Management Today

Russia-linked GRU Unit 29155 targeted critical infrastructure globally

Security Affairs

SEPTEMBER 6, 2024

The FBI, CISA, and NSA linked threat actors from Russia’s GRU Unit 29155 to global cyber operations since at least 2020. The government expert pointed out that Unit 29155 operates independently from other GRU-affiliated groups like Unit 26165 and Unit 74455. These operations include espionage, sabotage, and reputational damage.

Financial Services

Financial Services Government IoT Communications

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

“The adversary is particularly interested in exploits related to VPNs and network appliances , including CVE-2019-11510, CVE-2019-19781, and most recently CVE-2020-5902; reliance on exploits such as these lends to an opportunistic operational model.” .” reads the report published by Crowdstrike.

Access

Access Financial Services Retail Insurance

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

France and Germany will block Facebook’s Libra cryptocurrency

Security Affairs

SEPTEMBER 16, 2019

France and Germany governments announced that they will block Facebook’s Libra cryptocurrency , the news was reported by French finance ministry Bruno Le Maire. “We reads a joint statement issued by the two governments, “I want to be absolutely clear: in these conditions, we cannot authorise the development of Libra on European soil.”

Financial Services

Financial Services Government IT Security

Researchers shared the lists of victims of SolarWinds hack

Security Affairs

DECEMBER 22, 2020

By decoding the #DGA domain names, we discovered nearly a hundred domains suspected to be attacked by #UNC2452 #SolarWinds , including universities, governments and high tech companies such as @Intel and @Cisco. link] pic.twitter.com/40VfXuR6JI — RedDrip Team (@RedDrip7) December 16, 2020. NetBios HTTP Backdoor 2020-07-03 barrie.ca

Communications

Communications Manufacturing Financial Services Security

Google TAG report Q1 details about nation-state hacking and disinformation

Security Affairs

MAY 28, 2020

Google also discloses seven coordinated political influence campaigns that took place on its platforms during Q1 2020. Google TAG has published today its first TAG quarterly report, the Q1 2020 TAG Bulletin , that provides insights on the campaigns monitored in the first quarter of 2020.

Financial Services

Financial Services Government Phishing Marketing

15 billion credentials available in the cybercrime marketplaces

Security Affairs

JULY 9, 2020

The credentials are sold for an average of $15.43, the most expensive pairs relate to banking and financial services accounts, with an average price of nearly $71. Using the recently launched model of ATO “as-a-service”, a criminal can rent an identity for less than $10. ” reads the report published by the experts.

Marketing

Marketing Passwords Financial Services Access

Maze ransomware gang discloses data from drug testing firm HMR

Security Affairs

APRIL 8, 2020

“On Saturday 14 March 2020, HMR was subjected to a targeted and sophisticated attack by cyber criminals. “We’re sorry to report that, during 21–23 March 2020, the criminals published on their website records from some of our volunteers’ screening visits. A criminal group called Maze has claimed responsibility.”

Ransomware

Ransomware Data breaches Encryption Financial Services

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

government offers rewards of up to $15 million for information that could lead to the identification or location of LockBit ransomware gang members and affiliates. According to the press release published by the Department of State , the Lockbit ransomware operators carried out over 2,000 attacks against victims worldwide since January 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

organizations since 2020. organizations since 2020. The operation targeted many organizations in critical infrastructure sectors, including financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. law enforcement).

Ransomware

Ransomware Cybersecurity Agriculture Education

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

Dollars (USD) and received more than $60 million in ransom payments from over 100 victims worldwide as of August 2022, the US government states. entities Financial Services, Government Facilities, Healthcare and Public Health, Critical Manufacturing, and Information Technology.

Ransomware

Ransomware Financial Services Manufacturing Phishing

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Security Affairs

JUNE 6, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Encryption

A Russian national charged for committing LockBit Ransomware attacks

Security Affairs

JUNE 16, 2023

The US authorities arrested the man in Arizona last month DoJ states that from at least as early as August 2020 to March 2023, Astamirov and other members of the LockBit ransomware gang committed wire fraud and compromised many computer systems worldwide attempting to extort the victims of ransomware attacks. organizations since 2020.

Ransomware

Ransomware Agriculture Education Government

Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital

Security Affairs

SEPTEMBER 9, 2023

The ransomware operation has been active since late December 2019, this is the second time that the FBI first shares IoC related to RagnarLocker operation, the FBI first became aware of this threat in April 2020. “As

Ransomware

Ransomware Phishing Encryption Privacy

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

Security Affairs

MARCH 8, 2022

The ransomware operation has been active since late December 2019, this is the second time that the FBI first shares IoC related to RagnarLocker operation, the FBI first became aware of this threat in April 2020.

Ransomware

Ransomware Passwords Financial Services Manufacturing

Embracing new ways of working in financial services

CGI

APRIL 17, 2020

Embracing new ways of working in financial services. Although the approaches to dealing with the COVID-19 pandemic vary by country, as governments and businesses come to grips with it, one thing is imperative: we will get through this. . Fri, 04/17/2020 - 05:24. How will banks respond, rebound and reinvent?

Financial Services

Financial Services Artificial Intelligence Computer and Electronics Cybersecurity

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Today, additional criminal charges against Kondratyev were unsealed in the Northern District of California related to his deployment in 2020 of ransomware against a victim located in California.” on January 5, 2020. In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

Lazarus malware delivered to South Korean users via supply chain attacks

Security Affairs

NOVEMBER 16, 2020

According to a report published by Kaspersky Lab in January 2020, in the two years the North Korea-linked APT group has continued to target cryptocurrency exchanges evolving its TTPs. that is requested to visit particular government and banking domains. browser plug-ins, security software, identity verification software, etc.)

Financial Services

Financial Services Security Government Phishing

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

.” Mark Rasch , also former federal prosecutor in Washington, said the SEC is signaling with this action that it intends to take on more cases in which companies flub security governance in some big way. “It’s a win for the SEC, and for First America, but it’s hardly justice,” Rasch said.

Insurance

Insurance Risk Financial Services Mining

Embracing new ways of working in financial services

CGI

APRIL 17, 2020

Embracing new ways of working in financial services. Although the approaches to dealing with the COVID-19 pandemic vary by country, as governments and businesses come to grips with it, one thing is imperative: we will get through this. Fri, 04/17/2020 - 05:24. How will banks respond, rebound and reinvent?

Financial Services

Financial Services Government IT

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Lacewell stated that cybersecurity is the biggest risk for government and private organizations and described how the Framework is based on “extensive dialogue with industry and experts.”. The Framework. 1 See W.B.

Insurance

Insurance Financial Services Cybersecurity Risk

Microsoft partnered with other security firms to takedown TrickBot botnet

Security Affairs

OCTOBER 12, 2020

link] — Microsoft Security Intelligence (@MsftSecIntel) October 12, 2020. This action will result in protection for a wide range of organizations, including financial services institutions, government, healthcare, and other verticals from malware and human-operated campaigns delivered via the Trickbot infrastructure.”

Security

Security Financial Services Ransomware Access

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Department of the Treasury says the Trickbot group is associated with Russian intelligence services, and that this alliance led to the targeting of many U.S. companies and government entities. A spam email from 2020 containing a Trickbot-infected attachment. government’s first swipe at the Trickbot group.

Ransomware

Ransomware Government Cybersecurity Blockchain

Hindsight is 2020. Looking back so we can move forward

Thales Cloud Protection & Licensing

FEBRUARY 11, 2020

2020 ends a decade, and the new year prompted me to think “Wow it’s been two decades since we started Vormetric.” However, technology and governance have. So, in 2020 we’re looking at frontiers like the cloud and cloud native technologies (including microservices). Governance. The post Hindsight is 2020.

Cloud

Cloud Government Financial Services Access

The Best Memberships for Information Professionals

AIIM

MAY 19, 2020

“It’s 2020,” you might be thinking, “Who needs associations?” Are you a records manager that wants to move into information governance? financial services sector is different in practice than RM for a law firm, or a Canadian municipal government, or a multinational energy firm. Or maybe into privacy? You should!)

Records Management

Records Management Privacy Government Information governance

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

ARMA International

DECEMBER 26, 2019

Government topped the list of vertical industries at 23%. in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams. in 2017), with the remainder reporting into senior administrative roles, compliance, corporate services, or finance teams.

Content services

Content services Cloud Records Management Privacy

Market Leading Cybersecurity and National Security Lawyers David Lashway and John Woods Join Sidley in Washington, D.C.

Data Matters

MAY 4, 2022

He has significant experience in addressing election security and misinformation related issues, and was deeply involved in the investigations into the 2016 and 2020 elections targeting various U.S. He is one of the few lawyers who has led multiple global responses to data integrity attacks involving the financial services industry.

Cybersecurity

Cybersecurity Marketing Security Privacy

The Hidden Benefits of the Digital Mailroom

AIIM

MAY 6, 2020

Another strong factor that is particularly relevant to the digital mailroom application is improved customer service due to the immediate accessibility of incoming correspondence. This is particularly important in government, financial services, utility, and legal sectors.

Paper

Paper Digital transformation Financial Services Records Management

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

Data Protection Report

DECEMBER 17, 2020

On 25 November 2020, the European Commission ( EC ) published its proposed Data Governance Regulation (the DGR ), which will create a new legal framework to encourage the development of a European single market for data. What are the objectives of the Data Governance Regulation?

Government

Government Personal data Marketing Agriculture

KnowledgeLake Growth in 2020 Driven by Increasing Demand for Cloud-based Intelligent Capture and Document Processing Automation

Info Source

FEBRUARY 2, 2021

Product Innovation, Expansion of Channel Program, and Robust Pipeline of Legacy ECM Migration Projects Result in Strong 2020 . Our success in 2020 illustrates that an increasing number of companies are looking to quickly set up and scale automated document processing in the cloud,” said Ron Cameron, CEO of KnowledgeLake.

Cloud

Cloud ECM Financial Services Manufacturing

Enterprise Architecture and Business Process Modeling Tools Have Evolved

erwin

FEBRUARY 20, 2020

A North American banking group is using erwin Evolve to integrate information across the organization and provide better governance to boost business agility. Professional Services: Tap into the knowledge of our veteran EA and BP consultants for help with customizations and integrations, including support for ArchiMate.

Compliance

Compliance Financial Services Healthcare Digital transformation

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity

Cybersecurity Insurance Phishing Ransomware

Regulatory Update: NAIC Fall 2020 National Meeting

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. As a result of the continuing COVID-19 pandemic, the NAIC once again met in a virtual format. Revisions to SSAP No. Revisions to SSAP No.

Insurance

Insurance Paper Risk Government

Top 10 Governance, Risk and Compliance (GRC) Vendors

eSecurity Planet

JANUARY 21, 2021

Governance, risk, and compliance (GRC) software helps businesses manage all of the necessary documentation and processes for ensuring maximum productivity and preparedness. Third-party governance. Archer was named a Leader in Gartner’s 2020 Magic Quadrant for IT risk management and IT vendor risk management tools.

Compliance

Compliance Risk Government Retail

Top Data Management Trends for Chief Data Officers (CDOs)

erwin

MARCH 18, 2021

The role of chief data officer (CDO) is becoming essential at forward-thinking organizations — especially those in financial services — according to “ The Evolving Role of the CDO at Financial Organizations: 2021 Chief Data Officer (CDO) Study ” just released by FIMA and sponsored by erwin.

Compliance

Compliance Government Metadata Financial Services

Keeping Up with New Data Protection Regulations

erwin

APRIL 11, 2019

Some suggest the California Consumer Privacy Act (CCPA), which takes effect January 1, 2020, sets a precedent other states will follow by empowering consumers to set limits on how companies can use their personal information. The Regulatory Rationale for Integrating Data Management & Data Governance. employees).

GDPR

GDPR Compliance e-Discovery Metadata

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

erwin

JANUARY 7, 2021

Unexpected, unprecedented and disruptive, 2020 required radical transformation – within global organizations and our day-to-day lives. AI-Fueled Data Governance: Artificial intelligence (AI) has been narrowly tied to the internet of things (IoT) with smart features like Alexa, Nest and self-driving cars.

Metadata

Metadata Government Compliance Artificial Intelligence

Modernizing payments without disrupting legacy checks systems

IBM Big Data Hub

FEBRUARY 5, 2024

The Australian government is officially phasing out checks by 2030 as part of a wider range of payment reforms for the digital era. In circumstances like this, financial institutions still need to process checks quickly and securely during the transition period, as checks remain a legacy payment system for the time being.

Financial Services

Financial Services Cloud Risk Compliance

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

See the Top Governance, Risk and Compliance (GRC) Tools. Other industry standards too can have the force of “pseudo-law” – notably, the NIST Cybersecurity Framework, which federal regulators often apply to financial-services firms and government contractors. GDPR-style data privacy laws came to the U.S.

Data Privacy

Data Privacy Compliance Privacy Security

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

The SEC is considering enhancing its disclosure rules concerning cybersecurity risk governance and has indicated a target release date of October 2021. 2 See Cybersecurity Risk Governance, 3235-AM89, Securities and Exchange Commission (Spring 2021). 27, 2020). 15, 2020). 15, 2020). 20, 2017). 5 83 FR 8166 (Feb.

Cybersecurity

Cybersecurity Financial Services Risk Compliance

Congratulations to Sidley’s Newest Partners!

Data Matters

DECEMBER 16, 2019

Congratulations to our 30 colleagues, including Kate Heinzelman and Tomoki Ishiara , for their election to the Sidley Austin partnership , effective January 1, 2020. Tomoki works out of Sidley’s Tokyo office and supports our global privacy practice in the Asian market.

Energy and Utilities

Energy and Utilities Privacy Financial Services Data Privacy

Congratulations to Sidley’s Newest Partners!

Data Matters

DECEMBER 16, 2019

Congratulations to our 30 colleagues, including Kate Heinzelman and Tomoki Ishiara , for their election to the Sidley Austin partnership , effective January 1, 2020. Tomoki works out of Sidley’s Tokyo office and supports our global privacy practice in the Asian market.

Energy and Utilities

Energy and Utilities Privacy Financial Services Data Privacy

Top Data Management Trends for Chief Data Officers (CDOs)

erwin

MARCH 18, 2021

The role of chief data officer (CDO) is becoming essential at forward-thinking organizations — especially those in financial services — according to “ The Evolving Role of the CDO at Financial Organizations: 2021 Chief Data Officer (CDO) Study ” just released by FIMA and sponsored by erwin.

Compliance

Compliance Government Metadata Financial Services

Russia-linked GRU Unit 29155 targeted critical infrastructure globally

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Webinars

Trending Sources

Operation Cronos: law enforcement disrupted the LockBit operation

Webinars

France and Germany will block Facebook’s Libra cryptocurrency

Researchers shared the lists of victims of SolarWinds hack

Google TAG report Q1 details about nation-state hacking and disinformation

15 billion credentials available in the cybercrime marketplaces

Maze ransomware gang discloses data from drug testing firm HMR

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Cybersecurity agencies published a joint LockBit ransomware advisory

Cuba Ransomware received over $60M in Ransom payments as of August 2022

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

A Russian national charged for committing LockBit Ransomware attacks

Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

Embracing new ways of working in financial services

More details about Operation Cronos that disrupted Lockbit operation

Lazarus malware delivered to South Korean users via supply chain attacks

First American Financial Pays Farcical $500K Fine

Embracing new ways of working in financial services

New York Department of Financial Services Issues First Guidance by a U.S. Regulator Concerning Cyber Insurance

Microsoft partnered with other security firms to takedown TrickBot botnet

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Hindsight is 2020. Looking back so we can move forward

The Best Memberships for Information Professionals

Cloud, Intelligent Content Services, and Digital Fragility: What’s on the RIM Horizon for 2020

Market Leading Cybersecurity and National Security Lawyers David Lashway and John Woods Join Sidley in Washington, D.C.

The Hidden Benefits of the Digital Mailroom

EU data governance regulation – a wave of digital, regulatory and antitrust reform begins – Part 1

KnowledgeLake Growth in 2020 Driven by Increasing Demand for Cloud-based Intelligent Capture and Document Processing Automation

Enterprise Architecture and Business Process Modeling Tools Have Evolved

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Regulatory Update: NAIC Fall 2020 National Meeting

Top 10 Governance, Risk and Compliance (GRC) Vendors

Top Data Management Trends for Chief Data Officers (CDOs)

Keeping Up with New Data Protection Regulations

erwin’s Predictions for 2021: Data Relevance Shines at the End of the Tunnel

Modernizing payments without disrupting legacy checks systems

Security Compliance & Data Privacy Regulations

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Congratulations to Sidley’s Newest Partners!

Congratulations to Sidley’s Newest Partners!

Top Data Management Trends for Chief Data Officers (CDOs)

Stay Connected