Cyberattacks and cybersecurity-related incidents are becoming the norm as more and more businesses report cyberattacks.

In December, FuboTV, a live-TV bundle streaming service, reported a cyberattack that affected customers that were trying to access the World Cup semifinals between France and Morocco. The company said that it took immediate action to contain the cybersecurity incident and was able to restore service for its customers.

FuboTV reported the cyberattack to law enforcement and hired Mandiant—a cybersecurity firm, to help with the investigation and response.¹

In addition, The Guardian, a British daily newspaper, recently revealed that it was hit with a suspected ransomware hack that impacted parts of its digital infrastructure in December as well. The news outlet deemed the attack a serious IT incident.

Ransomware hacks essentially make networks/applications unworkable. The hackers then demand payment to let go of the system. Over the years, ransomware attacks have gotten faster and more sophisticated. Even the Biden Administration warned about these attacks a few months ago.²

Looking ahead to 2023, analysts at Gartner recently shared their top cybersecurity predictions for the year, which included:

1. Supply chain and geopolitical risk will dominate cybersecurity
2. Emerging architectural patterns will streamline security
3. Zero trust will play a key role in risk management
4. DevSecOps will become business-critical
5. Security operations with automation will enhance proactive and detective capabilities
6. Data-centric cybersecurity will be key to a “data everywhere” world
7. Endpoints and workloads will need adaptable protection against emerging and established threats
8. Human-operated ransomware will become a bigger threat.

According to analysts, with the Russia-Ukraine war still raging and possible economic uncertainty ahead, organizations need to be prepared for an increase in cyberthreats.³

 

 

UPDATES ON TWO CYBERSECURITY COMPANIES

Okta’s security incident

Okta, an identity solutions provider, revealed recently that the code for Okta Workforce Identity Cloud service was copied after cybercriminals had gained access to the company’s private repository on GitHub.

According to the statement from the company, there was no unauthorized access to the Okta service, or to customer data. It also reiterated that the service remains fully operational and secure.⁴

Varonis Systems’s recent launch

Varonis Systems provides data security and analytics solutions. The company announced that it recently launched the Varonis Vulnerability Disclosure Program (VDP) through HackerOne. This will allow the HackerOne community to alert Varonis about potential cybersecurity issues around the company’s cloud environment and SaaS products.

HackerOne is a vulnerability coordination and bug bounty platform. Its main focus is to connect businesses with penetration testers and cybersecurity researchers.

Regarding the launch of VDP through HackerOne, Varonis Systems revealed that the company has had great success with its private bug disclosure program, and this was the next logical step for the company.⁵

Investing in the Cybersecurity Industry with CYBR ETF

A cybersecurity ETF offers a great alternative to gaining exposure to this industry without being locked into any single security, and without the hassle of hand-picking individual stocks. ETFs allow you to diversify by investing in multiple companies in multiple markets, ensuring that a single market shock won’t tank your portfolio.

If you’re interested in investing in a cybersecurity ETF, consider Canada’s first cybersecurity ETF, Evolve Cyber Security Index Fund (TSX Ticker: CYBR). CYBR ETF invests in global companies involved in the cyber security industry. For more information, visit the fund page here: https://evolveetfs.com/cybr/.

CYBR ETF PORTFOLIO STRATEGY AND ACTIVITY

For the month, Okta Inc. made the largest contribution to the Fund, followed by GDS Holdings Ltd. and Varonis Systems Inc. The largest detractors to performance for the month were Palo Alto Networks Inc., followed by Zscaler Inc. and Blackberry Ltd.

For the latest information on cybersecurity investing and industry updates on related investment products, sign up for our weekly newsletter here

 

Sources:

1. Rizzo, L. “FuboTV hit with cyberattack during World Cup semifinal match,” CNBC, December 15, 2022; https://www.cnbc.com/2022/12/15/fubotv-hit-with-cyber-attack-during-world-cup-semifinal-match.html.
2. Stone, J., “Guardian Newspaper Is Hit With Suspected Ransomware Attack,” BNN Bloomberg, December 21, 2022; https://www.bnnbloomberg.ca/guardian-newspaper-is-hit-with-suspected-ransomware-attack-1.1862192.
3. Keary, T., “Gartner analysts reveal 8 cybersecurity predictions for 2023,” VentureBeat, December 2, 2022; https://venturebeat.com/security/cybersecurity-predictions-gartner/amp/.
4. Goodin, D., “Okta says source code for Workforce Identity Cloud service was copied,” arsTechnica, December 21, 2022; https://arstechnica.com/information-technology/2022/12/okta-says-source-code-for-workforce-identity-cloud-service-was-copied/.
5. “Varonis Launches HackerOne Vulnerability Disclosure Program,” Yahoo! Finance, November 29, 2022; https://finance.yahoo.com/news/varonis-launches-hackerone-vulnerability-disclosure-140500859.html.

 

 

The contents of this blog are not to be used or construed as investment advice or as an endorsement or recommendation of any entity or security discussed. These contents are not an offer or solicitation of an offer or a recommendation to buy or sell any securities or financial instrument, nor shall it be deemed to provide investment, tax or accounting advice. The information contained herein is intended for informational purposes only.

Commissions, management fees and expenses all may be associated with exchange traded funds (ETFs) and mutual funds (funds). Please read the prospectus before investing. ETFs and mutual funds are not guaranteed, their values change frequently, and past performance may not be repeated. There are risks involved with investing in ETFs and mutual funds. Please read the prospectus for a complete description of risks relevant to ETFs and mutual funds. Investors may incur customary brokerage commissions in buying or selling ETF and mutual fund units.

Certain statements contained in this blog may constitute forward-looking information within the meaning of Canadian securities laws. Forward-looking information may relate to a future outlook and anticipated distributions, events or results and may include statements regarding future financial performance. In some cases, forward-looking information can be identified by terms such as “may”, “will”, “should”, “expect”, “anticipate”, “believe”, “intend” or other similar expressions concerning matters that are not historical facts. Actual results may vary from such forward-looking information. Evolve Funds undertakes no obligation to update publicly or otherwise revise any forward-looking statement whether as a result of new information, future events or other such factors which affect this information, except as required by law.