White Tuque Newsletter | November 2023

Top News in Cyber Defence

White Tuque Newsletter | November 2023

CyberSafe Chronicles

Newsletter Content

Tuque's Take on the News

CISA working on updated National Cyber Incident Response Plan

The Cybersecurity and Infrastructure Security Agency (CISA) is working with industry stakeholders and government agencies on a new version of the National Cyber Incident Response Plan (NCIRP) — the framework that outlines the country’s response to significant cyber incidents. The updated plan was mandated in the 2023 National Cybersecurity Strategy, and CISA is now working with the Office of the National Cyber Director (ONCD) to coordinate input from regulators, critical infrastructure organizations and more.  Read More…

White Tuque’s Take: Together, industry and government must continue to drive collaboration to minimize the harms from cyber incidents to society and defend our shared digital ecosystem.  That said, businesses of all sizes need to understand their own vulnerabilities and associated risk.

-Kevin

Don’t know where to start? White Tuque can help you develop a roadmap to mitigate your cyber risk, no matter the size of your business. Learn more at www.whitetuque.com/help.

1Password discloses security incident linked to Okta breach

1Password, a popular password management platform used by over 100,000 businesses, suffered a security incident after hackers gained access to its Okta ID management tenant. In a report released Monday afternoon, 1Password says threat actors breached its Okta tenant using a stolen session cookie for an IT employee. Okta first learned of the breach from BeyondTrust, who shared forensics data with Okta, showing that their support organization was compromised. However, it took Okta over two weeks to confirm the breach. Read More…

White Tuque’s Take: Securely managing credentials is key to ensuring that external threat actors cannot gain access to the organization’s critical systems. With organizations leveraging more vendor products to service their needs, it becomes imperative that gaps at both internal and external points are well covered.

-Sree

We have subscription-based services that can help you find and auto-close vulnerabilities, monitor threats with managed detection and response (MDR), and more! Tell us more about your concerns at www.whitetuque.com/help

Staff training far most cost-effective than going through a cyber compromise

Let’s face the elephant in the room: Employee awareness training is expensive and time-consuming.

Rajiv Gupta, associate head of the government’s Canadian Centre for Cyber Security, states that,  “Prevention is definitely the key to cyber defence. Getting your employees trained up front is far more cost-effective than the ramifications of a cyber compromise.” Ransomware, to cite one example, “is incredibly costly and painful to live through. Many organizations realize that after they’ve suffered the incident.”  

Read More…

White Tuque’s Take: Training staff is an essential exercise in managing today’s cyber threat landscape. Creating a culture where security awareness and training are embedded into the organization will help the staff not only identify the cyber threats but also gives staff the capabilities to manage them

-Laura

How often and how much time should you spend training your staff? Let us help you develop a strategy that makes sense for your business, supports your goals for the future, and is meaningful to your team! Tell us more about your business: www.whitetuque.com/help.

Microsoft Authenticator now blocks suspicious MFA alerts by default

Microsoft has introduced a new protective feature in the Authenticator app to block notifications that appear suspicious based on specific checks performed during the account login stage.

Microsoft Authenticator is an app that provides multi-factor authentication, password auto-fill, and password-less sign-in to Microsoft accounts. When a user tries to log into an account with protected by multi-factor authentication (MFA), the Authenticator app sends a push notification to the user’s device to grant or deny access.

 Read More..

White Tuque’s Take: As more companies adapt MFA, attackers will shift to MFA fatigue attacks, essentially generating frequent multiple requests to frustrate users. Microsoft new additional feature should help to reduce the annoying notifications. It will mean users of Microsoft Authenticator should take the extra time to verify their authentication requests as attackers look for new ways to break in.

-Henry

Think managing access control has too many processes? Our approach is streamlined and refined to be relevant and tangibly useful for leveraging best practices. Visit www.whitetuque.com/help to learn more.

White Tuque's Expert Opinions & Stories

Cyber Awareness & Cyber Readiness | Robert D Stewart, Founder & CEO

Small and medium-sized enterprises (SMEs) play a crucial role in the global economy; as such, they are also prime targets for cyber criminals.  Cybersecurity Awareness Month is a great opportunity for SMEs to start to look internally at their technology, risks, and response planning.

For SMEs, a cyberattack or prolonged outage can be devastating, leading to financial losses, damaged reputations, legal ramifications, and even business closure. This month serves as an educational platform, empowering businesses to recognize potential threats like phishing, ransomware, and data breaches. By fostering a culture of cybersecurity, SMEs can safeguard sensitive information, customer trust, and overall business integrity.  In an interconnected world where a digital presence is essential, cyber awareness is not just a necessity but a lifeline for SMEs, ensuring their resilience, growth, and prosperity in the face of evolving cyber threats.

Read More…

White Tuque Presented with Business Growth Award at Barrie Chamber Business Awards 2023

White Tuque was recently recognized with the Business Growth Award at the Barrie Chamber of Commerce Business Awards. White Tuque was among three finalists to be nominated for this award, which was presented by the category sponsor Scotiabank. 

We are proud to be recognized by Hon. John Brassard, MP Barrie-Innisfil, and by Hon. Andrea Khanjin, MPP Barrie-Innisfil. In her letter, she further commended White Tuque’s achievements. “Thank you for protecting our community against cyber attacks. Your team’s passion for problem-solving and efforts to promote cyber resiliency is a testament to your team’s strength.”

This award celebrates our unwavering commitment to our clients’ satisfaction. We are immensely proud of our dedicated team whose hard work and passion have fueled our remarkable growth journey. This recognition not only celebrates our success but also underscores our ongoing dedication to serving our community with the utmost dedication.

White Tuque's Corner

Laura Payne's Keynote: 2024 Predictions in Future-Hindsight View!
Laura Payne, Chief Enablement Officer (CNO) and VP Security Consulting at White Tuque, recently spoke about the what the year 2024 could hold with respect to the world of cybersecurity on a podcast with the ITSP Magazine.
Listen Here
We're proud that Invest Barrie chose to showcase White Tuque's achievements in 2023
At White Tuque, we know that cybersecurity is important for businesses of all sizes, and we're on a mission to help organizations remain resilient and secure, in an affordable manner. Read Sarah Young's article "Guardians of the Cyber Realm"
Read More

Would you like more information on this topic?

White Tuque Newsletter | September 2024

CyberSafe Chronicles​ Tuque’s Take on the News Construction firms breached in brute force attacks on accounting software Hackers are brute-forcing passwords for highly privileged accounts on exposed Foundation accounting servers, widely used in the construction

White Tuque Newsletter | May 2024

CyberSafe Chronicles Newsletter Content Tuque’s Take on the News LastPass: Hackers targeted employee in failed deepfake CEO call LastPass revealed recently that threat actors targeted one of its employees in a voice phishing attack, using

Revealing the Power of Cyber Asset Management

In the fast-paced digital era where organizations heavily rely on technology, managing cyber assets has become a critical aspect of ensuring a secure and resilient digital landscape. Cyber Asset Management (CAM) plays a pivotal role

Work With Us.

  •  

Robert D. Stewart

Founder & Head, Strategic Threat Intelligence

Robert is a technology incident and crisis management specialist with over 3200 hours leading critical recoveries and investigations within regulated industries.

Robert has built cyber incident and global crisis processes for the Fusion Centres of two major North American banks. With an extensive focus on operational resiliency, Robert worked as a Global Crisis Management Specialist, leading the technical migration for the pandemic for a multi-national financial institution.

Robert is a threat intelligence specialist focused on preventing large scale incidents and attacks before they happen, with unparalleled experience in incident response: 650 critical incidents within the global financial sector leading to the recovery of over 250 unique global financial systems, with 6000 executive communications and briefings issued, and over 200 post-incident reviews.