White Tuque Newsletter | May 2024

Top News in Cyber Defence

White Tuque Newsletter | May 2024

CyberSafe Chronicles

Newsletter Content

Tuque's Take on the News

LastPass: Hackers targeted employee in failed deepfake CEO call

LastPass revealed recently that threat actors targeted one of its employees in a voice phishing attack, using deepfake audio to impersonate Karim Toubba, the company’s Chief Executive Officer.

However, while 25% of people have been on the receiving end of an AI voice impersonation scam or know someone who has, according to a recent global study, the LastPass employee didn’t fall for it because the attacker used WhatsApp, which is a very uncommon business channel.

Read More… 

White Tuque’s TakeAs social engineering becomes more sophisticated, it is important to ensure employees know how to engage their leadership to verify asks and such to avoid successful deepfake attempts. Having clear protocols to verify CEO communications will become important as time passes and deepfakes become more common.

-Henry

Don’t think you have time for more training? Our approach is streamlined and refined to be relevant and tangibly useful for promoting best practices. Visit www.whitetuque.com/help to learn more.

Bank of America warns customers of data breach after vendor hack

Bank of America is warning customers of a data breach exposing their personal information after Infosys McCamish Systems (IMS), one of its service providers, was hacked last year.

Customer personally identifiable information (PII) exposed in the security breach includes the affected individuals’ names, addresses, social security numbers, dates of birth, and financial information, including account and credit card numbers, according to details shared with the Attorney General of Texas.

Read More…

White Tuque’s TakeUnderstanding your third party’s cybersecurity posture of helps in understanding potential risks and vulnerabilities. This allows organizations to take proactive measures to mitigate these risks and ensure the security of their own systems and data.  It also helps with the following:

  • Protecting client data and IP
  • Regulatory Compliance
  • Reputatiion Management
  • Contracts and Legal Protection
-Kevin
 

Does your organization perform due diligence before onboarding a vendor? Let us help you develop a strategy that works for your business to assess your vendor security! Tell us more about your business: www.whitetuque.com/help.

Hear from Our Experts

MoneySense - Phishing scams targeting young Canadians | Ft. Insights from White Tuque's Laura Payne

Young Canadians aged 18 to 34 report that, despite being raised in the digital era—where smartphones were toys before they could even talk—they are now the target of online fraudsters. And, nearly one-third of have taken the bait. 

With 41% of scams happening on dating and social apps, why are social-media-savvy Canadians falling victim to them? We’re looking at the top six phishing scams aimed at young Canadians and sharing expert advice from cybersecurity experts on how not to fall for them. 

Young people—who spend most of their waking hours online—are being scammed, and it’s happening via email and text messages (74%), phone calls (64%), social media (43%), online ads (29%), job or service applications (25%), and online dating apps (10%). 

Read More…

White Tuque - ZEO Takeover

White Tuque recently took over Betsy Ziegler‘s (CEO, 1871) socials to spread cybersecurity awareness.  White Tuque took the collaboration opportunity to post about the cybersecurity concerns your business should consider, and different approaches to mitigate your risk, remain resilient, and defend your organization from today’s cyber threats.

It’s clear that investing in cyber resilience isn’t optional—it’s essential. Boosting your cybersecurity measures does more than protect data; it safeguards your reputation, maintains customer trust, and secures the foundational operations of your business.

White Tuque’s team of experts are ready to become your trusted partner in cyber defense and resiliency. 

Learn More about the services we offer.

Why would a cybersecurity founder go to SxSW?
by Rob Stewart

When I applied to be a part of the Ontario trade mission to South by Southwest (SXSW), many stakeholders were a bit puzzled.  “It isn’t a cybersecurity conference; I’m surprised you’re interested.”  I was surprised that they were surprised.  I have always followed SXSW as a fan and when I look at this conference, I see a unique and invaluable opportunity to propel your business forward.  SXSW is renowned for its celebration of creativity and innovation across disciplines and is a confluence of innovation, creativity, industry expertise, and decision makers. 

SXSW attracts a diverse array of professionals from various sectors, including technology, entertainment, and venture capital. As a cybersecurity start-up, engaging with these stakeholders in a dynamic and informal setting can pave the way to get them to care about and understand their technology risk and the threat landscape facing all businesses today.  Above all else, it was an opportunity to connect with the industries that are currently under attack.

The tech landscape is rapidly evolving, and staying ahead of the curve is vital for any cybersecurity firm. SXSW features panels, workshops, and keynote sessions that delve into the latest trends and innovations in technology and White Tuque was right in the middle of it all week.  Not only were we on the trade show floor at the Creative Industries Expo, we were engaged at events hosted throughout the city. 

From SFU’s FoodTech Expo, International Women’s Day, and multiple events happening daily, White Tuque was a fixture at Canada House in Austin, Texas throughout the week. If we weren’t at on the expo floor or hanging out at Canada House, we visited events hosted by delegations of multiple countries including Germany, France, and the UK to learn about their start-up ecosystems and what specific threats they face.

Attending SXSW and having White Tuque associated with such a prestigious event under the umbrella of the Ontario Ministry of Economic Development, Job Creation & Trade mission also brings recognition of the quality of our brand and the calibre of our team.  The event’s unparalleled networking opportunities, exposure to the latest trends, platform for showcasing innovation, and the creative energy make it an essential destination for any founder looking to make a significant impact in their field.  I am immensely grateful we were a part of it and look forward to SXSW 2025.

RBC's Anti-Fraud & Cybersecurity Seminar

We love the opportunity to collaborate with community partners and support local businesses, and we felt privileged to be included in RBC’s Anti-Fraud & Cybersecurity Seminar, hosted by the Barrie Police Service, Barrie Chamber of Commerce, and RBC. White Tuque’s CNO & VP Security Consulting, Laura Payne, joined fellow speakers Detective Constable Kristopher Nicholson of the Barrie Police’s Fraud Unit and Cherie Nykoliachuk, Investigative Support Manager at RBC. 

Attendees learned how fraud and cybersecurity events can impact their business, and how accessing the right resources and trusted partners can make a big difference in the operational resiliency of their business’s critical functions on very bad days.

White Tuque's Corner

Cyber for Start-Ups
[ How do I keep my customer data safe?] [What do I do if clicks on a spam link?] [How can I keep my cyber insurance premiums low?] If you have asked yourself questions like these, join cybersecurity expert Laura Payne for an interactive hour to help you protect your business. Thursday, June 13th (1-2PM). Space is limited! Register for this free event!
Register Here
SafeHouse Initiative Podcast | Never Let A Good Crisis Go to Waste
White Tuque's Rob Stewart (CEO) and Kevin Sandschafer (COO) recently participated in a podcast hosted by SafeHouse co-founder Jeff Edwards.
Listen Here
ELCanHack Event | siberX's Canadian Women In Cyber Security
Rob Stewart, CEO, White Tuque, recently represented Emerging Leaders in Canadian Security and White Tuque as a judge at the ELCanHack event at siberX’s Canadian Women in Cyber security event.
Learn More

Would you like more information on this topic?

White Tuque Newsletter | September 2024

CyberSafe Chronicles​ Tuque’s Take on the News Construction firms breached in brute force attacks on accounting software Hackers are brute-forcing passwords for highly privileged accounts on exposed Foundation accounting servers, widely used in the construction

Revealing the Power of Cyber Asset Management

In the fast-paced digital era where organizations heavily rely on technology, managing cyber assets has become a critical aspect of ensuring a secure and resilient digital landscape. Cyber Asset Management (CAM) plays a pivotal role

Work With Us.

  •  

Robert D. Stewart

Founder & Head, Strategic Threat Intelligence

Robert is a technology incident and crisis management specialist with over 3200 hours leading critical recoveries and investigations within regulated industries.

Robert has built cyber incident and global crisis processes for the Fusion Centres of two major North American banks. With an extensive focus on operational resiliency, Robert worked as a Global Crisis Management Specialist, leading the technical migration for the pandemic for a multi-national financial institution.

Robert is a threat intelligence specialist focused on preventing large scale incidents and attacks before they happen, with unparalleled experience in incident response: 650 critical incidents within the global financial sector leading to the recovery of over 250 unique global financial systems, with 6000 executive communications and briefings issued, and over 200 post-incident reviews.