Cybersecurity and Risk Insights and Alerts
Cyber risks and threats continue to evolve, and firms are under pressure to meet SEC and FCA expectations for operational resilience as well as their own internal and client expectations for cybersecurity and privacy. Stay current on the latest cybersecurity, privacy, and risk threat and regulatory alerts, and build your cybersecurity and privacy knowledge with insights from our cybersecurity and technology risk experts.
ACA Aponix Cybersecurity Checklist
Cyber alerts and insights
Six Million Records Potentially Compromised in Oracle Cloud Breach
A threat actor is selling authentication records exfiltrated from Oracle Cloud, suggesting a breach of Oracle Cloud’s Single Sign On and Lightweight Directory Access Protocol systems.
- Cybersecurity
Critical Security Flaw in Veeam Backup & Replication
The risk of data loss, privilege escalation, and ransomware attacks makes immediate remediation essential.
- Cybersecurity
Apache Tomcat Vulnerability Under Active Exploitation
Apache Tomcat powers countless web applications across industries, and is actively being exploited to take control of servers or steal sensitive data.
- Cybersecurity
Fraudsters Actively Impersonating Financial Services Executives: Firms Should be on High Alert for Similar Attacks
Firm employees and executives are being actively impersonated in WhatsApp messaging scams causing significant financial harm to investors.
- Cybersecurity
Urgent Patching Required to Address 7-Zip Mark-of-the-Web Bypass Vulnerability
Attackers are exploiting a 7-Zip flaw to spread SmokeLoader malware, bypassing Windows security warnings via phishing. Users must manually update to version 24.09+ to stay protected.
- Cybersecurity
Vulnerability Exploited in Aviatrix Controller
A critical vulnerability has been discovered in Aviatrix Controller, a popular cloud networking platform often used in Amazon Web Services.
- Cybersecurity