M&A Cyber Due Diligence Redefined

M&A Cyber Due Diligence Redefined

Blog | News

M&A Cyber Due Diligence Redefined

PacketWatch Launches a Progressive 7-Step Program to Help Attorneys and Their Clients Identify and Eradicate Cybersecurity Risk

SCOTTSDALE, Ariz., November 07, 2022 /PRNewswire/ — Today, PacketWatch launched a comprehensive suite of cybersecurity services for midsized enterprises considering a merger or acquisition. The cost-effective PacketWatch M&A solution for buyers and sellers starts with non-invasive steps that increase in intensity as indicators of compromise or risk are uncovered. The progressive approach, blend of human and artificial intelligence, industry-standard cybersecurity frameworks, and concierge-style client experience set this methodology apart from traditional M&A cyber due diligence efforts.

“We set out to proactively redefine the cyber due diligence process with input from our law firm partners,” said Chuck Matthews, CEO of PacketWatch. “Most companies try to use questionnaires and internal people to assess their cyber maturity. The result is inefficient and often inconclusive. Without the proper tools and experience, it is practically impossible to determine whether the organization has already experienced a cybersecurity incident. An advanced persistent threat isn’t something visible to the naked or untrained eye.”

“We set out to proactively redefine the cyber due diligence process with input from our law firm partners.”

Chuck Matthews
CEO

Cost is one of the primary reasons companies try to assess their own security posture. But when it comes to investment risk and liability, stakeholders of $50 million to $1 billion organizations will want an expert opinion and quantitative data. The PacketWatch progressive approach aligns the cost of the cybersecurity analysis with the size and scope of the M&A transaction and the degree of risk discovered.

“The demand for M&A cyber due diligence has grown exponentially over the last few years as companies experience the impact of undiscovered cyber risk from previous transactions,” said Jeff Beall, Vice President of Business Development at PacketWatch. “More and more lawyers are beginning to understand that the ‘blind spot’ exists and need us to quantify or fix it.”

The PacketWatch M&A Cyber Due Diligence Service Suite leverages a unique set of open-source and proprietary tools combined with diverse military, law enforcement, enterprise, and national security experience. The team specializes in detecting and eradicating security vulnerabilities, threats, and risks that others may miss.

The 7-Steps in the M&A Cyber Due Diligence approach are:

  1. Cybersecurity Framework Review
  2. Cyber Risk Assessment
  3. Active Vulnerability Assessment
  4. Compromise Assessment/Threat Hunt
  5. Security Controls Validation
  6. Monitoring and Incident Response
  7. Post-Acquisition Security Services

 

“The services themselves are foundational, but the way our highly-experienced team holistically integrates and executes them makes all the difference,” adds Beall. “Having our cybersecurity experts on your M&A due diligence team will ensure that cyber-related risks are identified, well-documented, and in cases where the target organization is cooperative, eradicated.”

To learn more about the PacketWatch M&A Cyber Due Diligence Service Suite, visit our website or Request an Appointment with Jeff Beall.

+++

About PacketWatch
The PacketWatch team detects and eliminates security risks that others may miss. Our senior cybersecurity experts work directly with our clients to establish an Active Defense with packet-level data and actionable threat intelligence to extend network visibility beyond a traditional perimeter. With daily threat hunting and exceptional collaboration, we help enterprise and midsized clients understand their adversaries and campaign tactics better than they ever imagined. PacketWatch incident response services are endorsed by prominent law firms, private equity groups, and cybersecurity companies, nationally. While the right tools are essential, we believe that people ultimately respond to incidents, remediate security gaps, and restore confidence in an organization’s cybersecurity defenses. Get immediate help with an incident by calling 1-800-864-4667 or learn more about our cybersecurity services at www.packetwatch.com.

Tags:

SEC Rulemaking Necessitates Updating Incident Response Plans

SEC Rulemaking Necessitates Updating Incident Response Plans

Blog | News

SEC Rulemaking Necessitates Updating Incident Response Plans

As part of a recently announced strategic relationship, HKA and PacketWatch released a co-authored article on the impact of proposed Securities and Exchange Commission’s (SEC) cybersecurity rulings. The rulings have entered the final stages of their Comment Period and will soon be released in their final form.

Written by HKA’s Michael Corcione, Partner, and Chuck Matthews, CEO, PacketWatch, the article highlights:

  • The Proposed Rules
  • The Impact on Incident Response Programs

The proposed SEC rulemaking will significantly influence cybersecurity risk management, governance, board oversight, and compliance programs.  This action also signals a change in regulatory tenor and elevates cybersecurity to a new level of accountability and transparency.

The article is available on the HKA Website under News and Insights.

“We estimate that registrants will be dealing with hundreds of hours in modifying processes and hundreds of hours more for each incident.”

Michael and Chuck provide their expert insight into actions your organization should take following the SEC’s recent proposed rule on cybersecurity incident disclosures.

About HKA
HKA is the world’s leading consultancy of choice for multi-disciplinary expert and specialist services in risk mitigation, dispute resolution and litigation support.

HKA’s Cybersecurity and Privacy Risk Management practice is one of five risk mitigation related services lines, focusing on governance, risk and compliance, third-party and vendor risk management, incident response, training and cryptoasset operations advisory.

HKA has in excess of 1,000 consultants, experts and advisors in more than 40 offices across 18 countries.  For more information about HKA, visit www.hka.com and connect with us on LinkedIn, Twitter (@HKAGlobal) and Facebook.

Tags:
HKA and PacketWatch expand collaboration to provide immediate cybersecurity incident response services

HKA and PacketWatch expand collaboration to provide immediate cybersecurity incident response services

Blog | News

HKA and PacketWatch expand collaboration to provide immediate cybersecurity incident response services

NEW YORK, June 21, 2022 /PRNewswire/ — HKA and PacketWatch announce plans to expand their strategic collaboration to provide quick reaction incident response and crisis management capabilities to global businesses impacted by a security incident including data breaches, email compromises, business disruption, or other cyber-related attacks.

Michael Corcione, Partner, Global Cybersecurity & Privacy Risk Management Lead at HKA, commented, “I am excited to expand our relationship with PacketWatch and offer an expert team of incident response and investigations professionals to our clients. Supporting organizations throughout an incident, from detection, investigation, and post-incident response analysis is a critical service. 

For over a year, both firms have been working together on incident investigations. PacketWatch and HKA have successfully collaborated on many complex cyber-related incidents working closely with clients and their legal counsel, across a multitude of industries such as manufacturing, financial services, government organizations, irrigation, information technology and many more. This advanced collaboration will further allow HKA and PacketWatch to offer complementary and enhanced services to HKA’s global client base, spanning many industries.

“Cyber-attacks attacks are becoming increasingly sophisticated. Our partnership with HKA brings clients the expertise, scale, and professionalism necessary to rapidly address these threats on a global basis. Our combined expertise bolsters the capabilities brought to bear on incidents and helps reduce future risks.”

Chris Krueger Vice President PacketWatch

Christopher Krueger, Vice President, PacketWatch, said, “Cyber-attacks are becoming increasingly sophisticated.  Our partnership with HKA brings clients the expertise, scale, and professionalism necessary to rapidly address these threats on a global basis. Our combined  expertise bolsters the capabilities brought to bear on incidents and helps reduce future risks.”

About HKA
HKA is the world’s leading consultancy of choice for multi-disciplinary expert and specialist services in risk mitigation, dispute resolution and litigation support.

HKA’s Cybersecurity and Privacy Risk Management practice is one of five risk mitigation related services lines, focusing on governance, risk and compliance, third-party and vendor risk management, incident response, training and cryptoasset operations advisory.

HKA has in excess of 1,000 consultants, experts and advisors in more than 40 offices across 18 countries.  For more information about HKA, visit www.hka.com and connect with us on LinkedIn, Twitter (@HKAGlobal) and Facebook.

About PacketWatch
PacketWatch is a boutique provider of cybersecurity services with in-depth expertise in complex incident response, digital forensics, managed detection & response (MDR), and active cybersecurity services for mid-sized and enterprise organizations. Our responsive expertise allows us to quickly engage with our clients – rapidly identifying, containing, and eradicating threats in their environment.

For more information about PacketWatch, visit packetwatch.com and connect with them on LinkedIn and Twitter (@packetwatch).

Tags:
PacketWatch Announces Jeff Beall asVice President of Business Development

PacketWatch Announces Jeff Beall as
Vice President of Business Development

Blog | News

PacketWatch Announces Jeff Beall as
Vice President of Business Development

The company looks to expand cybersecurity relationships with more Law Firms, Private Equity Groups, and IT/Security Channel Partners

SCOTTSDALE, Ariz., June 9, 2022 — PacketWatch announced today that tech industry veteran, Jeff Beall, has joined their team as Vice President of Business Development. In this newly created position, Beall is responsible for driving strategic partnerships to support the company’s growth and business strategy. Beall will report to Chief Executive Officer Chuck Matthews.

“PacketWatch has a tremendous opportunity to accelerate our growth through key strategic partnerships, and we’re excited to have Jeff join our leadership team,” said Chuck Matthews, CEO of PacketWatch. “Jeff has extensive experience and invaluable relationships within the technology industry.”

PacketWatch cyber incident response services are endorsed by prominent law firms, private equity groups, and IT/security partners throughout the United States. The PacketWatch technology, expertise, and experience help identify and remediate advanced persistent threats and tighten the clients’ overall security posture. Partners appreciate PacketWatch’s unique ability to collaborate with their end-client and ensure that they understand their cybersecurity risks, adversaries, and regulatory requirements.

“PacketWatch has a tremendous opportunity to accelerate our growth through key strategic partnerships, and we’re excited to have Jeff join our leadership team, Jeff has extensive experience and invaluable relationships within the technology industry.”

Chuck Matthews
Chief Executive Officer
PacketWatch

Jeff Beall
Vice President
Business Development

The PacketWatch cybersecurity services include:

  • Incident Response
    (Triage, Data Collection, Digital Investigation & Forensics, Containment, Remediation, Recovery, and Hardening)
  • Managed Detection and Response (MDR)
    (Monitoring, Analysis, Threat Hunting, Remediation, and Reporting)
  • Active Security
    (Controls Testing, Application Testing, Penetration Testing, Threat Scans, Vulnerability Management, Adversary Emulation, and Table Top Exercises)
  • Security Advisory Services
    (Assessments, Plan Development, Policy Development, and Governance)
“I am excited and honored to join the PacketWatch team and build on the company’s solid roster of existing strategic partnerships,” said Jeff Beall, Vice President of Business Development at PacketWatch. “I look forward to extending the reach of the company’s services and the PacketWatch platform to key segments in North America and Europe. The PacketWatch model is fundamentally built on trusted relationships with its clients and channel partners. I look forward to sharing our collaborative, Active Defense approach and key differentiators within these industry segments.”
Tags:

PacketWatch Log4J Article also Published on Law360

PacketWatch Log4J Article also Published on Law360

Blog | News

PacketWatch Log4J Article also Published on Law360

PacketWatch CTO Michael McAndrews recently collaborated with Squire Patton Boggs to create an article for the law firm’s Consumer Privacy World blog. The blog post focused on the recent Log4J vulnerability that has become a top cybersecurity concern for most organizations.

We learned that Law360, a prominent news service for attorneys operated by Portfolio Media (subsidiary of LexisNexus), picked up the article to share with their paid subscriber base. The article provides technical and operational guidance to companies trying to respond to the Log4J vulnerability concerns.

Law360 subscribers can read the article “A Case Study in Appropriately Responding to the Log4J Cybersecurity Vulnerability” (pdf) on the Law360 website. If you need assistance with any of the recommendations in the article, please contact us for assistance.

“This article illustrates how vulnerabilities create both technical and legal challenges for organizations. Working with Squire Patton Boggs helps PacketWatch ensure our clients get the highest level of attention on both fronts.”

Michael McAndrews Chief Technology Officer PacketWatch
Tags:
PacketWatch Log4J Article Published in National Law Review

PacketWatch Log4J Article Published in National Law Review

Blog | News

PacketWatch Log4J Article Published in National Law Review

PacketWatch CTO Michael McAndrews recently collaborated with Colin Jennings and Ericka Johnson to produce an article for the Squire Patton Boggs law firm Consumer Privacy World blog. The blog post focused on the recent Log4J vulnerability that has become a top cybersecurity concern for most organizations. Within hours, the National Law Review republished the article, and now other news and legal websites are sharing the content too.The article provides technical and operational guidance to companies trying to respond to the Log4J vulnerability concerns. In the article, they cover:
  • Technical recommendations
  • Non-technical questions business leaders should ask
  • Steps to mitigate cyber risk
If you would like to confirm that your organization is taking the appropriate steps to protect your assets, you can read “A Case Study in Appropriately Responding to the Log4J Cybersecurity Vulnerability” on Consumer Privacy World or National Law Review. If you need assistance with any of the recommendations in the article, please contact us for assistance.

“This article illustrates how vulnerabilities create both technical and legal challenges for organizations. Working with Squire Patton Boggs helps PacketWatch ensure our clients get the highest level of attention on both fronts.”

Michael McAndrews Chief Technology Officer PacketWatch
Tags:
PacketWatch Cybersecurity Expertise used in Colonial Pipeline Ransomware Story

PacketWatch Cybersecurity Expertise used in Colonial Pipeline Ransomware Story

Blog | News

PacketWatch Cybersecurity Expertise used in Colonial Pipeline Ransomware Story

Investigative journalist Rich McHugh included PacketWatch’s cybersecurity expertise in his latest NewsNation Now story on the Colonial Pipeline ransomware attack.

In the video, Michael McAndrews, PacketWatch CTO, discusses:

  • The impact of malware and ransomware on organizations
  • How we never encourage paying a ransom
  • How planning will help you get ahead of the game
  • The importance of an Incident Response Plan

The Colonial Pipeline cyberattack has disrupted the gas and diesel supply throughout the southeast, creating a frenzy at the pumps and potentially raising the prices of goods and services reliant on fuel for transportation.

You can view the entire 3-minute story “Top US pipeline operator shuts major fuel line after cyber attack“ with contributions from Stephanie Kelly and Christopher Bing on the NewsNation website.

“Ransomware and malware, in general, is a huge problem for companies right now. It puts jobs at risk. It puts livelihoods at risk. It costs companies millions of dollars.”

Michael McAndrews Chief Technology Officer PacketWatch

Tags:
PacketWatch Discusses Unemployment Payment Fraud and Password Scams on Pix11 News

PacketWatch Discusses Unemployment Payment Fraud and Password Scams on Pix11 News

Blog | News

PacketWatch Discusses Unemployment Payment Fraud and Password Scams on Pix11 News

Emmy-Award-winning reporter Mary Murphy spoke with Michael McAndrews, PacketWatch CTO, about identity theft, passwords, and stolen unemployment payments during a story on Pix11 News (NYC).

Michael explained how the volume of unemployment claims during the pandemic has created an environment for cybercriminals to take advantage of the states and the payment recipients. Using a password manager and unique, strong passwords are the best ways to protect yourself from this type of attack. Cybercriminals are constantly trolling the Internet looking for exposed passwords. There has been a tremendous increase in unemployment check fraud, it’s just a matter of time before the criminals find password that allows them to steal an identity.

You can view the entire story “Brooklyn mom victim of unemployment identity hacker“ as told by Mary on the Pix11 News website.

“Since so many state agencies have been overwhelmed by unemployment claims, they haven’t been able to audit them. So, many times, the claims are simply being paid, and therefore, the money is being sent to the criminals.”

Michael McAndrews
Chief Technology Officer
PacketWatch

Tags:

PacketWatch Featured in an Investigative Story on Ransomware Now Streaming on NewsNation

PacketWatch Featured in an Investigative Story on Ransomware Now Streaming on NewsNation

Blog | News

PacketWatch Featured in an Investigative Story on Ransomware Now Streaming on NewsNation

Emmy-Award-winning investigative journalist Rich McHugh sat down with PacketWatch CTO Michael McAndrews to better understand how and why cyber criminals target their victims.

They discussed the impact of malware and ransomware on companies and how to prepare for a cyberattack. Michael demonstrated how PacketWatch cybersecurity analysts use our proprietary tools to identify anomalous network activities and respond to a cyber incident.

Rich also spoke with a PacketWatch client about her experience with ransomware attacks and how organizations can protect themselves.

You can view the entire 6-minute story “Cyberattack Forces Arizona City Offline for Weeks, Experts Warn of Growing Trend“ hosted by Rob Nelson and Marni Hughes on the NewsNation website.

“Sometimes, the criminals don’t even know who they’ve attacked. They’re simply casting a wide net and opportunity knocked when somebody clicked on a link or went to a bad website and got swept up in ransomware.”

Michael McAndrews Chief Technology Officer PacketWatch

Tags: