White Tuque Newsletter | December 2023

Top News in Cyber Defence

White Tuque Newsletter | December 2023

CyberSafe Chronicles

Tuque's Take on the News

Feds brace for implementation of SEC cyber disclosure rules

The U.S. government is readying to implement contentious new disclosure rules for digital attacks that could both create headaches for the private sector and law enforcement and shed invaluable light on the state of ransomware and online threats.

On December 18, a rule passed earlier this year by the Securities and Exchange Commission will go into force that in most cases requires public companies to disclose when they have experienced cyber incidents no later than four business days after they determine the intrusion will have a material impact on operations.

Read more…

White Tuque’s TakeAs governments look at ways to mandate more transparency around breaches, companies and organizations should review their processes and prepare for incident reporting. Further, organizations need to consider the difference between being compliant and being secure, and how to improve both.

– Henry

For incident readiness and compliance guidance, look to White Tuque’s Cyber Risk Management services. Reach out today!

Canadian mid-sized firms pay an average $1.13 million to ransomware gangs

The average ransomware payment made by mid-sized Canadian companies this year was just over $1 million, according to a new survey.

The survey of IT professionals at 1,000 organizations with between 100 and 1,000 employees, done for Palo Alto Networks, was released Thursday.

Called the Canadian Ransomware Barometer, it found that while the volume of ransomware attacks here had decreased since the last study two years ago, the average ransom paid was $1.13 million. That’s a 150 per cent increase over 2021.

Read more…

White Tuque’s TakeYear-end recaps are prevalent in the headlines, but this retrospective is incredibly informative. This survey shows the reality of cyberattacks on medium-sized Canadian businesses in 2023. If you’re looking for predictions as we head into 2024, the Canadian Ransomware Barometer offers insights to the future, and evidence that ensuring your business is cyber-resilient means investing in securing your people, your processes, and your technology.

– Meredith

Don’t know where to start? White Tuque can help you develop a roadmap to mitigate your cyber risk, no matter the size of your business. Learn more at www.whitetuque.com/help.

 

A Conversation of InfoSec Technology Predictions | Redefining CyberSecurity Podcast

White Tuque’s CNO and VP Security Consulting, Laura Payne, took part in a panel discussion with Sean Martin and Marco Ciappelli of the ITSPmagazine Podcast Network. Offering reflections on trends and headlines in cybersecurity from 2023, this podcast episode features insights and predictions for the future of cyber, tech, and our daily lives.

Watch their discussion on YouTube.

White Tuque’s Take: The cybersecurity industry is a true community, a theme that comes up throughout this podcast. Even though the world of cyber is full of FUD – fear, uncertainty, and doubt – this conversation offers a hopeful and human perspective from experts and thought leaders who are active in all areas of cybersecurity. Check it out!

– Rob 

We protect your people, processes, and technology with programs you can easily adopt into your existing operations. Let us help you develop a strategy that makes sense for your business, supports your goals for the future, and is meaningful to your team! Tell us more about your business: www.whitetuque.com/help.

White Tuque's Expert Opinions & Stories

Qualys Security Conference (QSC) is an annual highlight for everyone in the Qualys ecosystem. It’s a yearly chance to connect directly with the decision makers, front-line staff, and customers who make the product what it is in terms of an industry-leading security platform. If you work regularly with Qualys and have never been, it’s an incredible opportunity to expand your horizons!

This year was no exception, and attending for our second time as a fully fledged Qualys partner it helped to cement why our experience and relationship with Qualys is so important to our team at White Tuque. The conference gives attendees a unique opportunity to speak directly not only with their TAM, but also the product managers who guide the platform to the next level, the support managers who tackle their frustrations and subject matter experts of all stripes.

Read more…

White Tuque's Corner

White Tuque Nominated at Barrie Mayor's Innovation Awards
It was an honour to be recognized in the Creative Collaboration category, nominated for our partnership with Nottawasaga Futures in connection with the County of Simcoe, to protect rural-based businesses from cyber threats.
Read More
Workshops for SMEs
We host regular, FREE workshops for business leaders of small and medium-sized enterprises. Keep an eye out for more events in 2024!
Connect With Us On LinkedIn
Previous slide
Next slide

Would you like more information on this topic?

White Tuque Newsletter | September 2024

CyberSafe Chronicles​ Tuque’s Take on the News Construction firms breached in brute force attacks on accounting software Hackers are brute-forcing passwords for highly privileged accounts on exposed Foundation accounting servers, widely used in the construction

White Tuque Newsletter | May 2024

CyberSafe Chronicles Newsletter Content Tuque’s Take on the News LastPass: Hackers targeted employee in failed deepfake CEO call LastPass revealed recently that threat actors targeted one of its employees in a voice phishing attack, using

Revealing the Power of Cyber Asset Management

In the fast-paced digital era where organizations heavily rely on technology, managing cyber assets has become a critical aspect of ensuring a secure and resilient digital landscape. Cyber Asset Management (CAM) plays a pivotal role

Work With Us.

  •  

Robert D. Stewart

Founder & Head, Strategic Threat Intelligence

Robert is a technology incident and crisis management specialist with over 3200 hours leading critical recoveries and investigations within regulated industries.

Robert has built cyber incident and global crisis processes for the Fusion Centres of two major North American banks. With an extensive focus on operational resiliency, Robert worked as a Global Crisis Management Specialist, leading the technical migration for the pandemic for a multi-national financial institution.

Robert is a threat intelligence specialist focused on preventing large scale incidents and attacks before they happen, with unparalleled experience in incident response: 650 critical incidents within the global financial sector leading to the recovery of over 250 unique global financial systems, with 6000 executive communications and briefings issued, and over 200 post-incident reviews.