360 Advanced

A global tech outage hit banks, airlines, and emergency services due to a software update from CrowdStrike, affecting millions of Microsoft Windows devices worldwide. Major airlines like Delta, American, and United Airlines have grounded hundred of flights. CrowdStrike addressed it as a technical issue, not a cyberattack, but the incident underscores our reliance on interconnected digital systems. Cybersecurity vigilance is crucial in the face of such widespread digital disruption. During times like this, it is important to safeguard your business with the right cyber defense and compliance programs in place, as cyber criminals take advantage of vulnerabilities like this tech outage happening today. If you have questions on how you can better prepare your business for events like this one, contact us here: https://hubs.ly/Q02Hjqlm0 Read the full article from the @The Wall Street Journal here: https://hubs.ly/Q02HjmLD0

The SEC's updated Regulation S-P mandates enhanced cybersecurity measures for financial institutions, including robust incident response plans, customer notifications within 30 days of breaches, and stricter oversight of service providers. The amendments, effective within 18 months for larger entities and 24 months for smaller ones, also introduce new recordkeeping requirements and an exception to annual privacy notices. Financial institutions must update policies, train staff, deploy advanced monitoring systems, and maintain comprehensive records to ensure compliance and bolster cybersecurity resilience. Dive into our recent blog post to learn more: https://hubs.ly/Q02HdN3J0

Third-party risk, once seen as mere compliance, has become crucial due to increased reliance on external vendors for critical functions and the rise of supply chain breaches. These risks are significant because third parties often access an organization's systems, networks, data, and digital assets, potentially leading to outages, data loss, or exploitation. This webinar will explore how to proactively and pragmatically build a third-party risk management program! Agenda: -Why Third-Party Risk Management just isn't working right now (and historically). -What are the key activities that need to be happening in TPRM? -Where should technology ideally fit compared to its current role? -What are the main challenges security leaders will encounter in trying to revamp their TPRM program. Join Carlos Guerrero, Shawnte Singletary, Aurobindo Sundaram, and Robert Wood on August 21st, register now with the link below! https://hubs.ly/Q02H5dqC0

The Sales & Marketing Team at 360 Advanced recently held their Mid-Year Sales Summit in Key West, FL! During this meeting, the team reflected on their successes in the first half of the year, and work together to create a plan to continue making better businesses through cybersecurity and compliance! It is also an opportunity for our team to get together, strengthen the team's relationship, and have a good time! We have come a long way, and are looking forward to serving our industry as best as we can for the rest of 2024 and beyond! Connect with the team! Ron Frechette, CPC, Matthew McNulty, Michael Skidmore, Jim Brennan, Carlos Guerrero, Conrad Jonas, Keith Frechette, Paul Z., Michael Ens, Eric Ratcliffe, Kristopher Francis

Join our webinar, The Importance of Auditor & Consultant Relationships, today at 2:00 PM EDT!

Join our webinar, The Importance of Auditor & Consultant Relationships, today at 2:00 PM EDT!

As cyber threats grow more complex, small and medium-sized businesses (SMBs) face increasing risks, including ransomware, phishing, and supply chain attacks. With 94% of global organizations experiencing cyberattacks in the past year, according to a ConnectWise study, SMBs must prioritize robust cybersecurity measures. Challenges in mitigating cyber threats include limited in-house expertise, budget constraints, and outdated practices. To combat these threats, SMBs are boosting cybersecurity investments, adopting managed security services, and leveraging AI. Visit the link below to read the full blog on The State of Cybersecurity for SMBs! https://hubs.ly/Q02GLLCW0

Parchment, An Instructure Company, a top academic credential platform, has enhanced its security and compliance processes with 360 Advanced. We've integrated PCI DSS and SOC 2 compliance, as well as expanded to ISO 27001. “The integrative approach that 360 provides allows us to expand to other standards or audits when we need to. Because of the control mapping we have already established, it makes it easy to fold new things into our compliance frameworks and continue to grow our business.” - Erin E. Director of Information Security, Parchment Our partnership ensures timely evidence for audits and cost-effective compliance communication. Check out the full case study for more! https://hubs.ly/Q02Gv7800

360 Advanced Practice Director, Ryan Winkler, shares his thoughts on which compliance program he most often recommends to businesses!

AT&T has disclosed a significant data breach that compromised phone call and text message records for approximately 110 million customers. The breach, which occurred on a third-party cloud platform, involved records from May 1st, 2022, through October 31st, 2022, and on January 2nd, 2023. The stolen data includes call and text metadata but not the content of communications, Social Security numbers, or dates of birth. However, some data could potentially reveal the approximate locations of calls and messages. AT&T delayed the disclosure of the breach due to national security and public safety concerns, as advised by federal investigators. The FBI confirmed its request to delay the notification. The breach is linked to ongoing security issues with Snowflake, the cloud data provider involved, which has also been targeted in similar incidents affecting other major companies. Security experts expressed concern over the exposure of call and text metadata, questioning its potential uses. Despite the breach, AT&T does not expect a significant financial impact, with the company recently reporting over $30 billion in quarterly revenues. Read the full story here: https://hubs.ly/Q02GrY1n0