Knowledge is the best attack deterrent, so check out our cyber security updates
24By7Security, Inc.

Cybersecurity Biweekly Newsletter - September 27, 2017

Credit-reporting Co. Equifax CEO’s departure puts the spotlight on the C-Suite

Equifax Inc. CEO, Richard Smith stepped down abruptly Tuesday following a data breach leaving the credit-reporting company in the wake of an uproar over the theft of private data on 143 million Americans. The electronic intrusion occurred from mid-May through July 2017 and primarily involved names, Social Security numbers, birth dates, addresses and, in some cases, driver's license numbers. The breach has sparked multiple investigations at the state and federal level, including the Department of Justice in Atlanta, where Equifax is based, and the Federal Trade Commission. He is to appear at a hearing of the Senate Banking Committee on Oct. 4 and is the only person scheduled to testify. He is also scheduled to testify at a hearing of the House Energy and Commerce Committee.

Read More...

LinkedIn Phishing Scam Steals Gmail Credentials Through Google Docs

LinkedIn, a business and employment-oriented social networking website contain personal information of more than 500 million users from around the world making it a jackpot for cybercriminals and those looking for identity theft. Recently, a new phishing scam has been detected in which Premium LinkedIn accounts are being used to trick users into giving away their login credentials and phone numbers in the hands of cybercriminals. Upon clicking the link, users are taken on a compromised website hosting a Gmail phishing page that asks them to log in with their Gmail id and passwords. It further asks for a phone number, and secondary email then displays a decoy Wells Fargo document hosted on Google Docs. 

Read More...

Former Systems Administrator Gets Prison Time

A former systems administrator who was on the job at a Pennsylvania-based Centerville Clinics Inc. for only about three weeks has been sentenced to 27 months in federal prison after he was convicted in a case involving wire fraud and hacking computers. He used clinic credentials to delete computer settings and data - including patient information - as well as to make fraudulent technology purchases. Brandon Coughlin, a 29-year-old resident of Texas, intentionally hacked and damaged 13 servers operated by Clinic and engaged in a scheme to defraud the clinics group by using the organization's purchase card to order merchandise from Staples.

The case highlights the importance of managing administrative credentials, especially when employees leave an organization.

Read More...

SEC discloses cybersecurity breach

The Securities and Exchange Commission, the top U.S. markets regulator, disclosed on Wednesday evening that hackers had infiltrated its database that stores public company financial filings, potentially allowing intruders to trade on inside information. To gain entry, the hackers exploited a software vulnerability in the agency's EDGAR system—short for "electronic data gathering, analysis, and retrieval" system—where companies submit their financial filings online. While much of EDGAR is publicly accessible, it also contains private financial records that only regulators can see. Stealing, acting or trading on that information can violate federal privacy and insider trading laws. SEC Chairman Jay Clayton is scheduled to testify before the Senate Banking Committee on Tuesday. 

Read More...

Accounting firm Deloitte reports extensive cybersecurity breach

One of the world’s “big four” accountancy firms - Deloitte, which is registered in London and has its global headquarters in New York has been targeted by a sophisticated hack that compromised the confidential emails and plans of some of its blue-chip clients. The attack went unnoticed for months. The hacker compromised the firm’s global email server through an “administrator’s account” that, in theory, gave them privileged, unrestricted “access to all areas”. The account required only a single password and did not have “two-step“ verification. Emails to and from Deloitte’s 244,000 staff were stored in the Azure cloud service, which was provided by Microsoft. Though all major companies are targeted by hackers, the breach is a deep embarrassment for Deloitte, which offers potential clients advice on how to manage the risks posed by sophisticated cybersecurity attacks. In 2012, Deloitte, which has offices all over the world, was ranked the best cybersecurity consultant in the world.

Read More...

24By7Security Risk Assessment

In this world of rising cyber crime, have you assessed your security levels? Are you safe if or when you suffer a breach? Call 24By7Security, Inc for a security risk assessment today at (844)-55-CYBER or visit our website at https://24By7Security.com !

Upcoming Events!

2017 HIMSS 7th Annual Integrate Conference - Oct 4, 2017 @ 7:30 am - 5:00 pm

Sanjay Deo, President and Founder of 24By7Security, will be speaking on the Cyber Security Panel at Integrate, powered by HIMSS South Florida Chapter at Signature Grand, Davie.

More Information....

ISSA 2017 International Conference - Oct 9 - 11, 2017

Michael Brown of 24By7Security, Inc. will be speaking on Cyber Resilience at the ISSA 2017 International Conference being hosted at the Sheraton Hotel and Marina in San Diego, California.

More Information....

SWTG Tech Conference and Expo - October 11 @ 10:00 am - 5:00 pm

24By7Security will be sponsoring and exhibiting at the Sinnott Wolach Technology Group (SWTG) Tech Conference and Expo on October 11, 2017.  

More Information....

Cybersecurity Day at NSU - October 19 @ 8:00 am - 1:00 pm

24By7Security is pleased to sponsor and present at Cybersecurity Day annual event at Nova Southeastern University – with a day of Cybersecurity discussions with talented high school students.

More Information....

Georgia ISSA Atlanta Conference - Nov 15, 2017 @ 8:00 am

24By7Security is pleased to sponsor Atlanta’s premier security conference, “Paradigm of Dependable Security” and will be exhibiting and networking there.

More Information....

Data Connectors Fort Lauderdale Tech-Security Conference - Dec 14, 2017

24By7Security is pleased to sponsor the Data Connectors Fort Lauderdale Tech-Security Conference at Fort Lauderdale, Florida.

More Information....

Facebook Twitter Linkedin Youtube Google Instagram

About us

24By7Security, Inc. is a full service Cybersecurity strategy, implementation, operations and training firm.  We provide Cybersecurity and compliance related services across all functions of the enterprise. Our services include CFPB/DFA, FIPA, FERPA, GLBA, HIPAA, PCI, SOX, and others.

Visit Our Website
Facebook Twitter Linkedin Youtube Google Instagram

24By7Security, Inc.

4613 N. University Drive, Suite #267

Coral Springs, Fl - 33067

(844) 55-CYBER

www.24By7Security.com