Thursday, September 23 2021

Weekly round-up of cybersecurity news, updates, and. highlights that matter to senior financial executives and decision-makers.

New Powers for CISA

Biden’s recent executive order provides the Cybersecurity and Infrastructure Security Agency (CISA) with the authority to counter cyberattacks and create procedures for cyber incident response, according to CISA Executive Assistant Director Eric Goldstein. Goldstein also stated standardized courses of action will allow for better joint incident responses. CISA’s new authority builds on the power they received from the National Defense Authorization Act last year to create the Joint Cyber Planning Office (JCPO).

Banking Regulators Release Proposed Guidance on Third-Party Risk

EU to Launch Joint Cyber Unit

In response to large-scale cyber incidents that have impacted businesses and citizens across Europe, the European Commission has proposed the formation of the Joint Cyber Unit, that aims to ensure an EU coordinated response to cybersecurity threats, improve public awareness, and guarantee going preparedness for potential cyber incidents.

The Joint Cyber Unit leads up to the second step to the EU’s 4-step process to build a European framework for solidarity and assistance to counter cyberattacks, that is, to “prepare national incident and crisis response plans and roll out joint preparedness activities”. The unit will support participants in producing integrated EU cybersecurity reports, delivering the EU Cybersecurity Incident and Crisis Response Plan, mobilizing EU Cybersecurity Rapid Reaction Teams, and more.

Federal IT Modernization

US officials discussed federal IT modernization priorities during a virtual event led by MITRE. Presenters included Congressman Gerry Connolly (D-VA), Deputy Federal CIO of the OMB Maria Roat, and Director of Technology Transformation Services and Deputy Commissioner of the Federal Acquisitions Service in GSA Dave Zvenyach.

The discussion focused on the Performance Enhancement Reform Act, a pending bill meant to increase collaboration across agencies and ensure all crucial stakeholders have a say in performance plans; the FITARA Scorecard, used to grade federal IT modernization; and the US government’s Technology Modernization Fund, which provides departments with necessary funds to secure systems and data.

Ukrainian Cyber Gang Comeback

The Ukrainian ransomware gang Cl0P published confidential data on its dark website this week. The gang claims the data is from two new victims, which include a farm equipment retailer and an architect’s office. The operation comes after the Ukrainian national police announced a series of arrests of alleged ransomware gang members and claimed the group’s server infrastructure was successfully shut down last week.

Previous

Ransom Attacks Fewer, More Targeted

Next

Report Identifies 392k Exposed Corporate Servers

Check Also

Widget

Don’t Miss

Cyber Deal Update: Upstream Security, Hunters, build.security

Khushi Arora

Upstream Security and Hunters complete Series C and Series A funding rounds, respectively. Elastic NV acquires build.security. Funding Upstream Security, an Israeli provider of automotive cybersecurity and a data analytics platform for connected vehicles, has closed a $62 million Series C funding round led by Mitsui Sumitomo Insurance, along with new investors I.D.I. Insurance, NextGen […]

Cyber Deal Update: Loop Secure, Intelligent Automation, Blumira

Khushi Arora

Tesserent acquires Loop Secure to complement its own services, and BlueHalo merges with Intelligent Automation. Blumira completes a Series A funding round. Mergers and Acquisitions Tesserent, an Australian network security company, has announced its intent to acquire Loop Secure, a provider of managed security services, governance risk and compliance, and offensive security services also based […]

Cyber Deal Update: FHIRBlocks, InfoSum

Khushi Arora

Healthcare cybersecurity company ConsenSys Health acquires FHIRBlocks. InfoSum and Monte Carlo close a Series B and Series C funding round, respectively. Mergers and Acquisitions Otava, a Michigan-headquartered cloud solutions provider, has announced its acquisition of NewCloud Networks, a Colorado-based cloud computing services provider. The acquisition provides Otava a product portfolio that includes security services, cloud […]

Cyber Deal Update: Carve Systems, Baffle, Certik

Khushi Arora

iVision acquires Carve Systems, Baffle closes a Series B funding round, and CertiK closes adds to its Series B funding round announced last month. Mergers and Acquisitions iVision, a Georgia-based provider of IT infrastructure and application solutions, has acquired Carve Systems, a New York-based cybersecurity company that provides security testing, security engineering, and security strategy […]

Cyber Executive Moves: Aegon Asset Management, Tego Cyber

Khushi Arora

Aegon Asset Management hires former COO of MN and Tego Cyber gains a new CISO. Aegon Asset Management, based in The Netherlands, has appointed Nicole Grootveld-Sandig as its chief technology officer. Grootveld-Sandig joins Aegon from the Dutch specialist pensions management company MN NV. Tego Cyber, a Nevada-based developer of cyber threat intelligence solutions, has hired […]

Cyber Deal Update: Appriss Insights, Espagon

Khushi Arora

Equifast acquires data analytics company Appriss Insights, while Cisco acquires observability provider Espagon. Mergers and Acquisitions Equifax, an Atlanta-based global data, analytics and technology company, has announced its acquisition of Appriss Insights, a Kentucky-based information technology company providing customized solutions to enhance security and financial processes for businesses, for $1.825 billion. “We are extending the […]