Quorum Cyber – headquartered in the U.K., with offices across North America – today announced the acquisition of Kivu Consulting Inc., a leading global cybersecurity firm specializing in Incident Response.
The strategic move bolsters Quorum Cyber’s rapid global expansion, as it comes just months after it acquired Difenda, a North American company specializing in Microsoft Security Managed Services.
Founded in 2009, Kivu Consulting Inc, or ‘Kivu’, is a trusted partner in the global insurance, legal, and government sectors. The company is a leader in digital forensics, cyber incident response, business restoration, and ransom negotiations. Since its inception, Kivu has helped define the market for response, managed, and advisory services to protect organizations against compromised data, theft of trade secrets, and unauthorized access to data.
Kivu holds established relationships in over 40 insurance and legal panels across the U.S. and the U.K. This transformative acquisition not only rapidly expands Quorum Cyber’s presence within these industries but also provides a robust foundation to strengthen its alliances and cements its status as a premier global threat management firm, renowned for its exceptional incident response capabilities.
In addition, acquiring Kivu enables Quorum Cyber to deliver its market-leading threat management services from three operations centers in the U.S., the U.K., and Canada to its customers worldwide.
Quorum Cyber’s back-to-back acquisitions of Kivu Consulting and Difenda underscore its aggressive growth strategy across North American and U.K. markets. Bolstered by ongoing support from investors, Charlesbank Capital Partners and Livingbridge, the two acquisitions equip Quorum Cyber with the resources to strategically expand its service offerings and customer reach. The integration of Kivu’s incident response expertise and connections, coupled with Difenda’s managed services capabilities, marks a significant step in Quorum Cyber’s mission of asserting its market presence globally.
Piper Sandler & Co. served as exclusive financial advisor to Kivu, and Mintz and Lowenstein Sandler served as legal advisors to Quorum Cyber.
360,000 Are Impacted By Medical Billing Firm Medusind Breach
Posted in Commentary with tags Hacked on January 10, 2025 by itnerdHealthcare organization Medusind is notifying 360,934 individuals of a data breach that exposed their personal and health information over a year ago.
The Miami-based company operates 12 locations in the US and India, and it also provides revenue cycle management services to over 6,000 healthcare providers.
Medisund says it took systems offline after it spotted suspicious activity on its network in December 2023.
Through its investigation, the company found evidence that a “cybercriminal may have obtained a copy of certain files containing your personal information.”
Documents exposed may include the following data types:
This notification comes after the U.S. Department of Health and Human Services proposed updates to HIPAA in late December 2024 to secure patients’ health data following a surge in significant healthcare breaches such as Ascension impacting 5.6 million people and UnitedHealth impacting 100 million.
Emily Phelps, Director, Cyware had this to say:
“The healthcare sector remains one of the most critical industries to secure, given the sensitivity of the data it holds, and the devastating impact breaches can have on individuals and organizations. Effective threat intelligence management is vital to identifying and mitigating risks before they escalate, helping healthcare organizations strengthen their defenses against increasingly ubiquitous cyber threats. Operationalizing this intelligence can enable faster detection and response to potential breaches. Moreover, fostering collective defense through trusted information-sharing partnerships ensures that organizations can work together to anticipate, address, and mitigate emerging threats.”
Lawrence Pingree, VP, Dispersive follows up with this:
“If the company was using a programmable Universal Zero Trust Network access solution, they could more rapidly isolate key systems through automation and orchestration products in the SOC, reducing the blast radius of attacks. While there is no silver bullet, defense in depth in security still applies, as does centralization risk.”
We’re only 10 days into the new year and we already have a big health care breach. This isn’t good as 2025 appears to be starting off the way that 2024 ended. Which means that we have a long year ahead of us unless substantial changes are made now.
Leave a comment »