Tag: cyber attacks

Life With GDPR – Joe Sullivan Sentence

Post author By admin
Post date June 22, 2023
No Comments on Life With GDPR – Joe Sullivan Sentence

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning Life with GDPR. Matt Kelly and Jonathan Marks join Tom and Jonathan Armstrong on this episode, as they explore the case of former Uber CISO Joe Sullivan and the lessons compliance officers can learn from his lenient sentence. From growing trends of personal accountability to conflict of interests, the hosts provide six tips for chief compliance officers to protect themselves, including rehearsing responses and seeking external advice when necessary. This eye-opening episode also delves into the challenges faced by compliance officers in situations like Etsy’s ransomware scheme and how they must be cautious with threat actors’ demands. Don’t miss out on this insightful episode that will leave you questioning whether Sullivan was unfairly punished and whether executives’ remuneration packages will receive greater scrutiny going forward. Tune in now to Life With GDPR.

Key Takeaways:

· The Joe Sullivan Uber Case and Lessons Learned

· Individual Liability in Corporate Malpractice

· Compensation and Conflicts of Interest

· The Challenges of Compliance Officers in Wrongdoing Incidents

Resources

For more information on the issues raised in this podcast, check out the Cordery Compliance, News Section. For more information on Cordery Compliance, go their website here. Also check out the GDPR Navigator, one of the top resources for GDPR Compliance by clicking here.

Connect with Tom Fox

● LinkedIn

Connect with Jonathan Armstrong

● Twitter

● LinkedIn

Tags cyber attacks, DOJ, GDPR, Joe Sullivan, Uber

Life with GDPR

Russian Cyber Attack Gangs Sanctioned

Post author By admin
Post date March 2, 2023
No Comments on Russian Cyber Attack Gangs Sanctioned

Tom Fox and Jonathan Armstrong, renowned expert in cyber security, co-host the award-winning podcast, Life with GDPR. In the most recent episode, they review the recent sanctions the UK and US have imposed on seven Russia-based individuals linked to ransomware. They explain that there are around 20-30 known vulnerabilities in software that could be responsible for the majority of ransomware attacks, and if these are taken care of, individuals and organizations are less likely to become susceptible. Finally, the host delve into how some ransomware attackers may become public about their actions in order to try and make those affected pay up. Listen to Life with GDPR for the most up-to-date and helpful advice about cyber security and ransomware.

Key Highlights

· Sanctions levied against Russian cyber-attack gangs [00:01:28]

· Steps to take to Protect Against Ransomware Attacks [00:06:12]

· The Dangers of Ransomware Attacks [00:10:49]

Notable Quotes

1. “Sanctioning ransomware gangs is not especially new. The US has done it before, but this is a move that’s a giant move from the UK and the US to sanction 7 Russia based individuals.”

2. “It’s good business sense to payers because x is less than y. So just because GDPR is on the agenda of ransomware gangs, it obviously means that organizations have to take that much more seriously because ransomware gangs trying to push GDPR figures.”

3. “Have a plan to deal with ransomware. It is inevitable a ball that somebody will target you. Maybe create a playbox so that you can work through key considerations in add advance.”

4. “You’re only as strong as your weaker link. And oftentimes, it is suppliers, HR providers, payroll providers, outsourced sales solutions that are a real area of vulnerability.””

Resources

Connect with Tom Fox

● LinkedIn

Connect with Jonathan Armstrong

● Twitter

● LinkedIn

Tags cyber attacks, GDPR, Jonathan Armstrong, Lloyd's Of London

Daily Compliance News

February 10, 2023 – The Going to War Edition

Post author By admin
Post date February 10, 2023
No Comments on February 10, 2023 – The Going to War Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance, brings you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen to the Daily Compliance News. All from the Compliance Podcast Network. Each day we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

Stories we are following in today’s edition of Daily Compliance News:

SW blames the weather, and its pilots blame outdated tech. (Reuters)
5^th circuit says foreigners can be charged under FCPA for work outside the US. (Law360)
Starting the fight against corruption in schools. (Miami Herald)
Merck insurers deny payment for cyber-attack based on war exclusion. (WSJ)

Tags corruption, cyber attacks, FCPA, Southwest Airlines, war exclusion clause

Everything Compliance

Episode 95, the Russia Invades Ukraine Edition

Post author By admin
Post date March 10, 2022
No Comments on Episode 95, the Russia Invades Ukraine Edition

Welcome to the only roundtable podcast in compliance. The entire gang was also recently honored by W3 as a top talk show in podcasting. In this episode, we have the quartet of Jonathan Marks, Karen Woody, Jonathan Armstrong, Tom Fox and Matt Kelly. We dedicate the entire episode to compliance issues arising from the Russia invasion of Ukraine. We conclude with our fan favorite Shout Outs and Rants.

Karen Woody considers the impact of corruption in both Russia and Ukraine going forward. Karen shouts out to the Ukraine’s U.N. Ambassador Sergiy Kyslytsya for his impassioned plea for Russia to stop its invasion of his country this week, at the United Nations.

Matt Kelly looks at the export control issues and sanctions issued by the US and its allies in this arena. Kelly shouts out Jackson Reffitt, who testified against his father in his father’s Capital Insurrection trial.

Jonathan Marks discusses the sanctions which have been levied by the Biden Administration, how to assess this evolving risk and the role of the Board in managing this risk. Marks rants about Bob Blaffert (again) and shouts out to Sonny Johnson, an autistic basketballer who made the game winning shot that helped his team win its final game of the season.

Jonathan Armstrong looks at how the shooting war in the Ukraine has spilled over into a cyber war across the globe. Armstrong shouts out to Paddington Bear for giving comfort to refugees across the globe and to the voice of Paddington Bear, Ukrainian President Zelensky.

Tom Fox shouts out to the Texas GOP for stopping AG Ken Paxton from renomination in the party’s primary and for forcing him into a run-off with George P. Bush.

The members of the Everything Compliance are:

Jay Rosen– Jay is Vice President, Business Development Corporate Monitoring at Affiliated Monitors. Rosen can be reached at JRosen@affiliatedmonitors.com
Karen Woody – One of the top academic experts on the SEC. Woody can be reached at kwoody@wlu.edu
Matt Kelly – Founder and CEO of Radical Compliance. Kelly can be reached at mkelly@radicalcompliance.com
Jonathan Armstrong –is our UK colleague, who is an experienced data privacy/data protection lawyer with Cordery in London. Armstrong can be reached at armstrong@corderycompliance.com
Jonathan Marks is Partner, Firm Practice Leader – Global Forensic, Compliance & Integrity Services at Baker Tilly. Marks can be reached at marks@bakertilly.com

The host and producer, ranter (and sometime panelist) of Everything Compliance is Tom Fox the Voice of Compliance. He can be reached at tfox@tfoxlaw.com. Everything Compliance is a part of the Compliance Podcast Network.

Tags corruption, cyber attacks, cyber security, Russia Invasion of Ukraine, sanctions, trade sanctions, Ukraine

The Hill Country Podcast

Robbie Closson – Bausen Technology

Post author By admin
Post date January 13, 2022
No Comments on Robbie Closson – Bausen Technology

Welcome to The Hill Country Podcast. The Texas Hill Country is one of the most beautiful places on earth. In this podcast, recent Hill Country resident Tom Fox visits with the people and organizations that make this the most unique areas of Texas. Join Tom as he explores the people, places and their activities of the Texas Hill Country. In this episode, I visit with Robbie Closson founder of Bausen Technology LLC.
Some of the highlights include:

Growing up in Kerrville.

Career training in the Marine Corp.
Founding of Bausen Technology and growing a local business.
Why is the Hill Country a ‘tech desert’?
Prevention of hacks on your personal computer.

Resources
Bausen Technology

Tags Bausen Technology, cyber attacks, Robbie Closson

Coffee and Regs

What’s Next for Cybersecurity in 2022?

Post author By Coffee and Regs
Post date November 29, 2021
No Comments on What’s Next for Cybersecurity in 2022?

Digital Assets: Trading & Compliance for Cryptocurrency

In this episode, Director of Registered Investment Company Services, Allison Fraser and Director of Broker-Dealer Services & Private Funds, John Gentile discuss the latest on digital assets and cryptocurrency. Are they considered securities, what does the SEC’s risk alert mean for digital assets, and how should investment managers be thinking about cryptocurrency trading and compliance?

About Our Guest Speakers:

E.J. Yerzak CISA®, CISM®, CRISC™ assists firms in assessing and managing their cybersecurity risk – from network vulnerability scanning and penetration testing to onsite cybersecurity assessments and assistance in implementing the NIST cybersecurity framework. E.J. has authored articles and alerts on emerging regulatory and technology issues, and is regularly requested to speak as a cybersecurity expert at industry conferences.

Mike Farrell is a Certified Information Systems Auditor (CISA®) and Certified Information Security Manager (CISM®), and Cybersecurity Consultant at CSS. He analyzes data and conducts cybersecurity risk assessments, policy gap analyses, vulnerability scanning and social engineering testing. His Information technology experience includes network installations and management, hardware and software configuration, and troubleshooting.

Tags CCO, chief compliance officers, compliance, compliance management, compliance officers, cyber, cyber attacks, cybersecurity, Data Privacy, financial services, fintech, investment management, regtech, regulations, regulatory compliance

Coffee and Regs

Cybersecurity Training, Talent and Diversity

Post author By Coffee and Regs
Post date November 1, 2021
No Comments on Cybersecurity Training, Talent and Diversity

Cybersecurity Training, Talent and Diversity

In this episode, Founder and CEO at CyberVista, Simone Petrella and CSS’s Director of Cyber IT Services, E.J. Yerzak discuss the importance of cybersecurity training, education, how to recruit talent and diversity in cyber and why compliance and cybersecurity are synonymous.

About Our Guest Speakers:

Simone Petrella is CEO and Co-Founder of CyberVista. Previously, Simone was a Senior Associate at Booz Allen Hamilton where she helped build the firm’s cybersecurity practice in the commercial sector focusing on the creation of cyber fusion centers and the integration of cyber threat intelligence, security operations, and cyber defense operations into effective cyber security operations. For a decade she led the firm’s all source cyber threat intelligence business in the national security and Defense sectors, where she built out a threat capability and team with in depth subject matter expertise in all aspects of cyber threat intelligence, including intelligence support to both defensive and offensive operations. Her areas of specialty included predictive cyber intelligence based on an understanding of the threat adversary and developing service offerings to integrate intelligence into exercises to provide realistic cyber scenarios. Simone received her J.D. with honors from Catholic University’s Columbus School of Law and graduated from Georgetown University with a B.A. in Government and a M.A. in International Law and Policy. She is a member of Women in International Security and is admitted to the New York Bar. A native of New Jersey, she has resided in Washington D.C. since 2000.

Tags asset management, BCP, business continuity, compliance, cyber, cyber attacks, cybersecurity, Data Privacy, financial service, fintech, investment management, regtech, regulations, regulatory compliance

Coffee and Regs

Cybersecurity Awareness Month – Reducing Cyber Incidents Through Vendor Due Diligence

Post author By Coffee and Regs
Post date October 4, 2021
No Comments on Cybersecurity Awareness Month – Reducing Cyber Incidents Through Vendor Due Diligence

Cybersecurity Awareness Month – Reducing Cyber Incidents Through Vendor Due Diligence

In this episode, CSS’s team of cybersecurity experts E.J. Yerzak and Mike Farrell kick off Cybersecurity Awareness Month discussing the importance of vendor due diligence and the role that service providers can play in cyber incidents.

About Our Guest Speakers:

Tags BCP, cyber, cyber attacks, cybersecurity, Data Privacy

Coffee and Regs

Ransomware Attacks – Cybersecurity Concerns & Best Practices to Mitigate Risk

Post author By Coffee and Regs
Post date July 12, 2021
No Comments on Ransomware Attacks – Cybersecurity Concerns & Best Practices to Mitigate Risk

Ransomware Attacks – Cybersecurity Concerns & Best Practices to Mitigate Risk

In this episode, our team of cybersecurity experts, E.J. Yerzak and Mike Farrell discuss the latest ransomware attacks in the news, best practices to keep your data secure and hackers out, and what to do first if your firm is hit by an attack.