What is a SOC 1 Report A SOC 1 report, also known as the Statement on Standards for Attestation Engagements (SSAE) 18, focuses on a service organization’s controls that are likely to be relevant to an audit of a user entity’s (customer’s) financial statements. SOC 1 reports cover a…

This article was written and produced by Christopher Salone, CCSFP, MBA, FoxPointe Solutions. Looking to get in touch with Christopher? Reach out today: csalone@foxpointesolutions.com. Since the regulation came into effect in March 2019, the New York State Department of Financial Services (DFS)…

This article was written and produced by Christopher Salone, CCSFP, MBA, FoxPointe Solutions. Looking to get in touch with Christopher? Reach out today: csalone@foxpointesolutions.com. As you were enjoying a cup of coffee the morning of December 18, 2020, you might have been arranging your Holiday…

This article was written and produced by Christopher Salone, CCSFP, MBA, FoxPointe Solutions. Looking to get in touch with Christopher? Reach out today: csalone@foxpointesolutions.com. On April 2, 2021, it was confirmed that a malicious user published the phone numbers and personal data of hundreds…

An updated cybersecurity law that the IT organization (along with other college/university departments) will need to continue to integrate into its compliance programs, policies, and controls is the recent changes to New York’s General Business Law 899-aa and 899-bb (aka SHIELD Act). The…

This article was written and produced by William Veit, SSGBC, Senior Security Consultant, FoxPointe Solutions. Looking to get in touch with William? Reach out today: wveit@foxpointesolutions.com. The year 2020 will be forever remembered for the impacts of how the global pandemic forced the adoption…

This article was written and produced by Kimberly Hunter, CPA, ABV, CVA, Principal at The Bonadio Group. FoxPointe Solutions is The Bonadio Group's dedicated cybersecurity division. Looking to get in touch with Kimberly? Reach out today: khunter@bonadio.com. In our increasingly digital world,…

This article was written and produced by Michael Cross, Security Consultant, FoxPointe Solutions. Looking to get in touch with Michael? Reach out today: mcross@foxpointesolutions.com. With many still reeling from the aftermath of the SolarWinds hack, enough dust has settled that we’ve started…

FoxPointe Solutions has been closely following the major data breach that was recently announced involving Cit0day, as well as the subsequent analyses to accurately identify the true risk levels that could be associated with it. Following the emergence of updated forensic reports, it has been…

This article was written and produced by Brandon Agostinelli, Security Consultant, FoxPointe Solutions. Looking to get in touch with Brandon? Reach out today: bagostinelli@foxpointesolutions.com. Credible information regarding a well-known Russian cybercriminal organization plotting a mass…

This article was written and produced by William Veit, Senior Security Consultant, FoxPointe Solutions. Looking to get in touch with William? Reach out today: wveit@foxpointesolutions.com. From the nation’s shift to a remotely working culture to the upcoming elections we must maintain our…

This article was written and produced by David Scudo, Security Consultant, FoxPointe Solutions. Looking to get in touch with David? Reach out today: dscudo@foxpointesolutions.com. In 2020, protecting an organization from cyber-attacks means that you need a plan to combat ransomware. Ransomware…

COVID-19 has introduced many challenges to personal and professional lives. While we continue to adapt, we must remember to continue to perform sound security and privacy practices, including when it comes to vendor management. We look to vendors as trusted partners for many aspects of our supply…

This blog was written and produced by Michael Cross, Penetration Tester I at FoxPointe Solutions. Looking to get in touch with Michael? Reach out today: mcross@foxpointesolutions.com. The 2020 Global Security Report, issued by cybersecurity and managed service provider, Trustwave, is an annual…

This blog was written and produced by William Veit, MBA, Senior Security Consultant at FoxPointe Solutions. Looking to get in touch with William? Reach out today: wveit@foxpointesolutions.com. The toll on life in the United States and the world left by COVID-19 has been great. The impact on our…

This blog was written and produced by Courtney Nist, Senior Consultant, and Betul Yilmaz, Security Consultant II at FoxPointe Solutions. Both provide expertise to clients related to SOC 1 & 2 and HITRUST compliance. Looking to get in touch with Courtney or Betul? Reach out today: Courtney Nist,…

This article was written and produced by Christopher Salone, CCSFP, MBA, FoxPointe Solutions. Looking to get in touch with Christopher? Reach out today: csalone@foxpointesolutions.com. This past December, the Office of the Comptroller of Currency (OCC) released the fall edition of its Semiannual…

On the heels of New York passing the Stop Hacks and Improve Electronic Data Security (SHIELD) Act in September 2019, the IRS issued a warning to tax preparers and accounting firms to ensure that they appropriately secure their customer data against the “evolving” and…

In the not so distant past, the threat of a person or people stealing money or assets from your business was limited to a lack of physical security or a malicious employee. Businesses utilized safes, video surveillance systems, internal controls and audits to keep their...

Today marks the beginning of National Cybersecurity Awareness Month. From CEOs to college students, cybersecurity is on everyone’s radar; and cyberattacks aren’t going away anytime soon. For businesses, it’s not a matter of if a breach will occur but when – an incident is…