Tag: finance
-
George Murnane’s One-Question Test for Real AI
Ask George Murnane how to separate real artificial intelligence from a marketing slogan, and he gives you one question: what does the model predict, and what is its loss function? George Peter Murnane has spent more than three decades running asset-intensive aviation businesses, 14 of those years as a chief operating officer, a chief financial…
-
Iran-linked MuddyWater espionage campaign targets organisations across four continents
A new threat intelligence report from WatchGuard is warning organisations worldwide to strengthen behavioural detection capabilities after uncovering an espionage campaign by the Iran-linked threat group MuddyWater that successfully targeted high-value organisations across four continents. The report details how the group, also known as Seedworm, targeted organisations across manufacturing, aviation, financial services, education, professional services…
-
Berechtigungen in der Lieferkette werden zum kritischen Einfallstor
Regulierung schützt nicht vor Angriffen mit kompromittierten Identitäten und Zugangsdaten Identitäts-Sicherheit hingegen schon. Exemplarische Vorfälle im Juni, wie bei der V-Bank, bei dem Hacker über einen IT-Dienstleister Zugriff auf Systeme erlangten und einen Datenabfluss verursachten, oder das Datenleck bei Lastpass, das durch eine Schwachstelle bei einem Drittanbieter ausgenutzt wurde, zeigen exemplarisch eine bittere Wahrheit: […]…
-
UK regulator publishes ‘landmark’ AI review
FCA review of the use of artificial intelligence in retail finance follows MPs’ criticism of regulators First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366645457/UK-regulator-publishes-landmark-AI-review
-
Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT
A suspected China-nexus threat activity cluster has been observed targeting Indian taxpayers, tax professionals, and corporate finance teams to deliver a remote access trojan designed to steal sensitive data from compromised hosts.The multi-stage campaign, codenamed Operation DragonReturn by Seqrite Labs, involves sending spear-phishing emails impersonating the Income Tax Department of India. First seen on thehackernews.com…
-
Boost City regulator’s powers to help protect UK consumers from AI, says watchdog
FCA’s review into how tech will reshape financial services warns about amplified risks of cyber-crime and fraud<ul><li><a href=”https://www.theguardian.com/business/live/2026/jul/06/sky-takeover-itv-broadcasting-media-deal-business-live-news”>Business live latest updates</li></ul>Ministers have been urged to toughen the City regulator’s powers to protect consumers against the potential risks of AI, according to a landmark review.The Mills review by the Financial Conduct Authority (FCA), which looked at…
-
US Supreme Court: FTC-Urteil finaler Weckruf für Datensouveränität
Tags: financeFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/us-supreme-court-ftc-urteil-final-weckruf-datensouveraenitaet
-
How to prioritize AI agent security by business impact
Your CEO calls about an AI agent security incident in finance. He wants to know whether money moved, whether financial data was exposed, who owned the agent and why it had … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/07/06/prioritize-ai-agent-security-business-impact/
-
FTC-Urteil vom US-Supreme-Court Weckruf für europäische Datensouveränität
Das Urteil des US-Supreme-Court in der Rechtssache Trump v. Slaughter von diesem Montag erwähnt mit keinem Wort den Datenschutz. Und das, obwohl es den Datenverkehr zwischen EU und USA stärker verändern könnte als jede Datenschutzregulierung der letzten Jahre. Ein Kommentar von Mark Raun Moritzen, Vice President, Strategy and Corporate Development bei Omada Identity. Indem die…
-
Fake Google Play Store Pages Use Trusted Brand Names to Push Gambling PWAs
Scammers are exploiting consumers’ trust in household and financial brands by deploying polished fake Google Play Store pages and social media ads that push Progressive Web Apps (PWAs) linked to online casinos. The fraud begins with paid social creative on platforms including Facebook, Instagram, Threads and TikTok. Ads present either simple “Brand Slots” labels or…
-
Alibaba Reportedly Bans Claude Code Over Alleged Backdoor Risk in AI Coding Tool
Alibaba is reportedly preparing to ban the use of Anthropic’s Claude Code across its internal environments starting July 10. This decision comes in light of allegations that the AI-powered coding assistant has a covert detection mechanism resembling a backdoor. The news, first reported by the Chinese financial outlet Yicai and later confirmed by Reuters, has…
-
Bank of England explores trading ‘kill switches’ to contain AI meltdowns
UK central bank’s deputy governor outlines challenges facing regulators as artificial intelligence reshapes the finance sector First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366645329/Bank-of-England-explores-trading-kill-switches-to-contain-AI-meltdowns
-
FTC-Entscheidung bringt EU-US Data Privacy Framework unter Druck
Mit der aktuellen US-Entscheidung zur Unabhängigkeit der Federal Trade Commission wackelt eine zentrale Grundlage des EU-US Data Privacy Framework: die Annahme, dass Datenschutzverstöße in den USA unabhängig kontrolliert und überprüft werden können [1]. Damit wird aus einer vermeintlichen juristischen Detailfrage ein handfestes Risiko für Unternehmen, Behörden und Betreiber kritischer Infrastrukturen in Europa. Dazu sagt… First…
-
Aflac Japan: Hack Detected Last Week Affects Nearly 4.4M
Incident Is Insurance Giant’s Second Major Data Breach Since June 2025. Aflac is notifying regulators and nearly 4.4 million Aflac Life Insurance Japan customers of a hacking incident detected last week potentially affecting their personal and financial information. The data breach is Aflac’s second hacking incident affecting millions of people over the past year. First…
-
US FTC Eyes AI Model Behavior in New Policy Push
Agency Seeks Comments on Objectivity, Accuracy and AI Governance. The FTC has opened a public comment period on whether AI companies improperly shape model behavior. The proposal could redefine how federal regulators oversee AI systems while challenging state efforts to regulate algorithmic discrimination. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-ftc-eyes-ai-model-behavior-in-new-policy-push-a-32135
-
Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
A Brazilian banking trojan called Ousaban is going after Windows users who bank in Spain and Portugal. Fortinet’s FortiGuard Labs identified the campaign in May 2026.It opens with a phishing PDF disguised as a corrupted file, checks that the visitor is really in Spain or Portugal, and hides its real payload inside an image.The goal…
-
What a financial planner taught me about cybersecurity
When I spoke at a recent cybersecurity awareness event for financial planners and tax advisors, the audience really engaged with the subject. As happens at conferences the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/07/01/raising-cybersecurity-awareness-for-non-experts/
-
Indian bank domain registrar allegedly leaks sensitive data
First seen on scworld.com Jump to article: www.scworld.com/brief/indian-bank-domain-registrar-allegedly-leaks-sensitive-data
-
Aflac Japan Data Breach Exposes Sensitive Customer Information
Aflac disclosed a data breach at its Japan subsidiary that exposed sensitive customer and bank account information. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/aflac-japan-data-breach-exposes-sensitive-customer-information/
-
Lessons from the Underground: How to Combat Business Email Compromise
Business Email Compromise is more than an email scam. It’s a coordinated operation involving compromised accounts, financial research, and cash-out networks. Flare explores how underground forums reveal how BEC attacks are planned and executed. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/lessons-from-the-underground-how-to-combat-business-email-compromise/
-
Insurance giant Aflac discloses data breach after subsidiary hack
American insurance giant Aflac has disclosed a new data breach after attackers breached its Japan subsidiary’s systems and stole personal and bank account information. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/insurance-giant-aflac-discloses-data-breach-after-subsidiary-hack/
-
Warner bill would create federally vetted list for secure, trustworthy AI agents
The bill empowers the FTC to create a registry for sellers of AI agent software certifying their privacy and cybersecurity protections. First seen on cyberscoop.com Jump to article: cyberscoop.com/ai-agent-act-senate-draft-bill-mark-warner/
-
Hackers now exploit critical Oracle E-Business flaw in attacks
Attackers have begun exploiting a critical vulnerability (CVE-2026-46817) in the Oracle E-Business Suite (EBS) financial application, according to threat intelligence company Defused. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-oracle-e-business-suite-flaw-now-exploited-in-attacks/
-
CMC Releases Analysis and Guidance for Education Sector After Canvas Data Breach
The UK Cyber Monitoring Centre reviews the Canvas breach affecting 160 UK universities, highlighting data theft risks and financial impacts of cyber incidents First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cmc-analysis-education-canvas-data/
-
Risk management firm Optro opens Singapore hub
The AI-powered governance, risk and compliance platform aims to disrupt the underserved Asia-Pacific market and help customers such as Singapore’s OCBC Bank modernise their audit functions First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366644968/Risk-management-firm-Optro-opens-Singapore-hub
-
Smashing Security podcast #473: How a hacker could have Rickrolled the entire World Cup
A polite caller from your bank says there is a problem with your account. Don’t worry – they’ll send someone round to help. They’ll even take your cards away to keep them safe. The scam has run rampant, until Dutch police plastered blurred photos of 100 suspects across billboards, supermarkets, and TikTok, with a two-week…
-
Five Quantum Questions Every Bank CISO Should Ask
Quantum Deadlines Loom. Most Banks Can’t Say Where Their Cryptography Is Deployed The standards are written, CERT-In has issued its CBOM guidance and adversaries are already harvesting encrypted data to decrypt later. The gap isn’t quantum hardware. It’s visibility. Here are five questions every bank CISO should answer now, starting with one: Do we have…
-
Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered
Tags: attack, breach, credentials, cybercrime, finance, fraud, infrastructure, law, malware, microsoft, network, ransomwareA coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC.”The main common goal was to disrupt the ‘assembly lines’ cybercriminals use to launch ransomware, financial fraud, and attacks on critical infrastructure,” Europol said in First seen…
-
Algerian national accused of running cybercrime marketplaces extradited to US
An Algerian national accused of running online marketplaces that sold phishing kits and fraud tools has been extradited from Spain to the United States to face bank fraud … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/24/algerian-cybercrime-marketplace-operator-extradited-to-us/

