Collecting Cyber-News from over 60 sources

Tag: finance

Nearly half a Million mobile customers of Lloyds Banking Group affected by security incident

Mar 31, 2026 5:29 PM

Tags: banking, data, data-breach, finance, group, mobile, security-incident, software, update

Lloyds Banking Group data incident exposed transactions of ~450,000 mobile banking users due to a faulty update. A faulty software update at Lloyds Banking Group exposed transaction details of nearly 450,000 mobile banking users on March 12. The issue caused some customers to see other users’ account activity within the app, prompting the bank to…
Hacker stripped more than $50 million from Uranium crypto exchange, spent it on trading cards

Mar 31, 2026 4:30 PM

Tags: crypto, finance, hacker

US prosecutors have charged a Maryland man in connection with two hacks of the Uranium Finance cryptocurrency exchange that led to losses exceeding $50 million. Jonathan … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/31/uranium-finance-crypto-hack-man-charged/
Dutch Ministry of Finance takes treasury systems offline amid cyber incident investigation

Mar 31, 2026 2:30 PM

Tags: banking, cyber, cyberattack, finance, incident, infrastructure

The Dutch Ministry of Finance took treasury banking portal offline after a cyberattack; core tax systems were not affected. The Dutch Ministry of Finance took parts of its infrastructure offline, including the treasury banking portal, after detecting a cyberattack two weeks earlier. The Dutch Ministry of Finance disclosed a cyberattack detected on March 19 after…
Nach zwei Hacks in einem Monat: Kryptodieb kauft von Millionenbeute Pokémon-Karten

Mar 31, 2026 2:30 PM

Tags: crypto, finance

Ein Mann soll von der Krypto-Börse Uranium Finance über 50 Millionen US-Dollar gestohlen und dann Unsummen für Sammlerobjekte ausgegeben haben. First seen on golem.de Jump to article: www.golem.de/news/nach-zwei-hacks-in-einem-monat-kryptodieb-kauft-von-millionenbeute-pokemon-karten-2603-207104.html
Dutch Finance Ministry Responds to Cyberattack by Taking Systems Offline

Mar 31, 2026 1:30 PM

Tags: access, breach, cyber, cyberattack, cybersecurity, data, finance, technology, unauthorized

The Dutch Ministry of Finance is actively managing a significant cybersecurity incident after discovering unauthorized access to its internal Information and Communication Technology (ICT) systems. The breach has prompted immediate defensive measures, including the deliberate shutdown of critical digital portals to prevent further lateral movement and potential data exfiltration. Cyberattack Timeline and Scope The cyberattack…
8 ways to bolster your security posture on the cheap

Mar 31, 2026 12:29 PM

Tags: access, attack, authentication, awareness, breach, ciso, control, credentials, cyber, cyberattack, cybersecurity, data, data-breach, ddos, dkim, dmarc, dns, email, endpoint, exploit, finance, google, identity, Internet, metric, mfa, microsoft, mitigation, okta, passkey, password, phishing, risk, risk-management, service, strategy, technology, tool, training, update, waf, zero-day

2. Take full advantage of your existing tools: A practical way to strengthen enterprise security without incurring additional significant spend is to ensure you’re fully leveraging the capabilities of solutions already present within your organization, says Gary Brickhouse, CISO at security services firm GuidePoint Security.”Most organizations have invested heavily in security solutions, yet most are…
Hacker charged with stealing $53 million from Uranium crypto exchange

Mar 31, 2026 12:29 PM

Tags: crypto, finance, hacker, hacking

U.S. prosecutors have charged a Maryland man with stealing more than $53 million after hacking the Uranium Finance crypto exchange twice and laundering the proceeds through a cryptocurrency mixer. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hacker-charged-with-stealing-53-million-from-uranium-crypto-exchange/
Dutch Finance Ministry takes treasury banking portal offline after breach

Mar 31, 2026 10:29 AM

Tags: banking, breach, cyberattack, finance

The Dutch Ministry of Finance took some of its systems offline, including the digital portal for treasury banking, while investigating a cyberattack detected two weeks ago. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/dutch-finance-ministry-takes-treasury-banking-portal-offline-after-breach/
AI Agents Are Democratizing Finance but Also Redefining Risk

Mar 31, 2026 5:30 AM

Tags: ai, data, finance, risk

AI agents are transforming finance, enabling automated trading and payments, but introduce new risks around keys, data inputs and secure execution control. First seen on hackread.com Jump to article: hackread.com/ai-agents-democratizing-finance-redefining-risk/
Italian regulator fines financial giant $36 million for data protection failures

Mar 30, 2026 8:30 PM

Tags: data, finance

The Italian Data Protection Authority fined Intesa Sanpaolo SpA for what it called “serious shortcomings in personal data security, due to the inadequacy of the technical and organizational measures adopted.” First seen on therecord.media Jump to article: therecord.media/italian-regulator-fines-financial-giant-36-million
ChatGPT Data Leakage via a Hidden Outbound Channel in the Code Execution Runtime

Mar 30, 2026 4:30 PM

Tags: ai, chatgpt, data, finance, identity

ey Takeaways What Happened AI assistants now handle some of the most sensitive data people own. Users discuss symptoms and medical history. They ask questions about taxes, debts, and personal finances, upload PDFs, contracts, lab results, and identity-rich documents that contain names, addresses, account details, and private records. That trust depends on a simple expectation:…
vDefend’s Built-in Advantage: Enable Closed-Loop Lateral Security for Zero-Trust Private Cloud

Mar 30, 2026 4:30 PM

Tags: cloud, cybersecurity, finance, strategy, zero-trust

Cybersecurity strategy now shapes how enterprises design cloud platforms, application environments, and core infrastructure. The financial stakes are significant. The next step is architectural: turning zero-trust strategy into foundational systems that enforce it by design rather than as an afterthought. In private cloud environments, that shift matters. Segmentation macro as well as micro .. First…
APIs are the new perimeter: Here’s how CISOs are securing them

Mar 30, 2026 1:29 PM

Tags: access, ai, api, attack, authentication, banking, breach, business, ciso, cloud, compliance, computer, control, credentials, cyber, data, data-breach, defense, edr, endpoint, exploit, finance, gartner, governance, group, Hardware, identity, infrastructure, iot, least-privilege, malicious, mobile, monitoring, network, risk, risk-assessment, saas, service, software, strategy, technology, threat, tool, unauthorized, vulnerability, vulnerability-management, waf

Legacy defenses can’t keep up: Traditional perimeter-based defenses are often insufficient against API-layer attacks. Traditional security defenses, such as EDR, XDR, and WAF, “primarily focus on clients, hardware, and software endpoints, looking at IP-based attack vectors,” explains BECU’s Murphy. “APIs bring us into the world of business logic and runtime types of issues.”Others agree that…
Anthropic’s Latest AI Test Pressures Cybersecurity Stocks Lower

Mar 30, 2026 8:30 AM

Tags: ai, cyber, cybersecurity, finance, intelligence, software

Major cybersecurity stocks took a steep dive on Friday after news broke that Anthropic is testing a highly capable new artificial intelligence model. Codenamed >>Mythos<>Capybara<< testing tier, this new AI possesses advanced capabilities for discovering complex software vulnerabilities. The financial market reacted quickly, driven by fears that autonomous AI agents will […] The post Anthropic's…
Can Agentic AI keep you ahead in cybersecurity?

Mar 28, 2026 11:30 PM

Tags: ai, cybersecurity, finance, healthcare, service, strategy

Can Machine Identities Redefine Security? Understanding Non-Human Identities and Their Impact What if the key to future-proofing your cybersecurity strategy lies in managing machine identities effectively? Non-Human Identities (NHIs) have become fundamental to organizational security frameworks. Their significance cannot be overstated, particularly in sectors like financial services, healthcare, and travel, where NHIs support critical operations……
Digital euro goes full sovereignty mode, US cloud giants not on guest list

Mar 28, 2026 9:31 AM

Tags: cloud, finance

Central bank turns to homegrown providers to underpin virtual cash push First seen on theregister.com Jump to article: www.theregister.com/2026/03/26/digital_euro_sovereignty/
Security boffins scoured the web and found hundreds of valid API keys

Mar 27, 2026 10:30 PM

Tags: api, cloud, finance

Global bank’s devs have some cleaning up to do after cloud creds found in website code First seen on theregister.com Jump to article: www.theregister.com/2026/03/27/security_boffins_harvest_bumper_crop/
Silver Fox Cyberattack Targets Japanese Businesses with Tax-Themed Phishing Scams

Mar 27, 2026 10:30 PM

Tags: attack, corporate, country, cyber, cyberattack, finance, phishing, scam, threat

A threat actor known as Silver Fox is targeting Japanese organizations with a new wave of spearphishing attacks timed to coincide with the country’s busy tax-filing and corporate restructuring season. The campaign focuses heavily on manufacturers and enterprises that are currently dealing with high volumes of financial and HR-related communications. This seasonal timing is deliberate.…
Hackers Target South Asian Financial Firm with BRUSHWORM and BRUSHLOGGER Attacks

Mar 27, 2026 10:30 PM

Tags: attack, backdoor, cyber, finance, hacker, malware

A South Asian financial institution has been hit by a custom malware toolkit combining a modular backdoor, dubbed BRUSHWORM, and a DLL side”‘loaded keylogger known as BRUSHLOGGER. The attackers relied on a backdoor initially named paint.exe and a keylogger masquerading as libcurl.dll, both of which lacked advanced packing or obfuscation. BRUSHWORM acts as the primary implant, handling…
Phishing ZIP Files Used to Deploy PXA Stealer Targeting Financial Firms

Mar 27, 2026 10:30 PM

Tags: cyber, finance, malware, phishing

A sharp rise in PXA Stealer campaigns targeting global financial institutions during the first quarter of 2026. The activity marks a notable shift in the infostealer landscape, with PXA Stealer filling the gap left by the takedowns of major malware families such as Lumma, Rhadamanthys, and RedLine in 2025. Researchers estimate that PXA Stealer activity…
Google warns quantum computers could hack encrypted systems by 2029

Mar 26, 2026 4:47 PM

Tags: computer, encryption, finance, google, government, hacker, technology, threat

Banks, governments and tech providers urged to upgrade security because current systems will soon be obsolete Banks, governments and technology providers need to be prepared for quantum computer hackers capable of breaking most existing encryption systems by 2029, <a href=”https://blog.google/innovation-and-ai/technology/safety-security/cryptography-migration-timeline/”>Google has warned.The tech company said in a <a href=”https://blog.google/innovation-and-ai/technology/safety-security/cryptography-migration-timeline/”>blogpost that quantum computers will pose a…
Google warns quantum computers could hack encrypted systems by 2029

Mar 26, 2026 4:47 PM

Tags: computer, encryption, finance, google, government, hacker, technology, threat

Banks, governments and tech providers urged to upgrade security because current systems will soon be obsolete Banks, governments and technology providers need to be prepared for quantum computer hackers capable of breaking most existing encryption systems by 2029, <a href=”https://blog.google/innovation-and-ai/technology/safety-security/cryptography-migration-timeline/”>Google has warned.The tech company said in a <a href=”https://blog.google/innovation-and-ai/technology/safety-security/cryptography-migration-timeline/”>blogpost that quantum computers will pose a…
New PXA Stealer Malware Targets Banks, Uses Telegram to Exfiltrate Data

Mar 26, 2026 3:47 PM

Tags: attack, data, finance, malware

CyberProof researchers have detected a 10% surge in PXA Stealer attacks targeting financial institutions in Q1 2026. Learn… First seen on hackread.com Jump to article: hackread.com/financial-firms-rise-pxa-stealer-attacks/
UK sanctions Chinese crypto marketplace tied to scam compounds

Mar 26, 2026 1:46 PM

Tags: china, crypto, exploit, finance, fraud, government, infrastructure, marketplace, scam

The British government sanctioned Xinbi, a Chinese-language cryptocurrency marketplace accused of enabling large-scale online fraud and human exploitation, in a move targeting the financial infrastructure behind global scam networks. First seen on therecord.media Jump to article: therecord.media/xinbi-crypto-marketplace-sanctioned
Charity Commission warns Alan Turing Institute of its legal duties after complaints

Mar 26, 2026 7:47 AM

Tags: ai, finance, group

Watchdog issues formal guidance to trustees at top AI research institute after staff expressed concernsThe board of the UK’s leading AI research institute has been reminded of its legal duties in areas such as financial oversight and managing organisational change by the charity watchdog after a <a href=”https://www.theguardian.com/technology/2025/aug/10/staff-alan-turing-institute-ai-complain-watchdog”>whistleblower complaint.The Charity Commission has issued formal regulatory…
What the UK Cyber Security Resilience Bill Means for Security Practitioners

Mar 26, 2026 5:46 AM

Tags: cloud, compliance, cyber, data, detection, finance, framework, incident response, msp, network, nis-2, regulation, resilience, risk, saas, service, supply-chain

The UK Cyber Security & Resilience Bill is progressing through Parliament Royal Assent expected later in 2026. The UK’s Cyber Security and Resilience Bill is working its way through Parliament, and if you haven’t started paying serious attention yet, now is the time. Introduced to the House of Commons in November 2025, the Bill represents…
Why CISOs Need to Start Taking AI Third-Party Risk Seriously

Mar 26, 2026 12:47 AM

Tags: ai, ciso, control, finance, governance, identity, LLM, risk

Keyrock CISO David Cass on Managing Agentic AI Risk in Financial Services. As financial institutions accelerate AI adoption, traditional governance models are falling short. David Cass, CISO at Keyrock, explains why organizations must rethink accountability, asset visibility and identity controls to manage emerging risks from LLMs and agentic AI systems. First seen on govinfosecurity.com Jump…
Cloud Phones Linked to Rising Financial Fraud Threat

Mar 25, 2026 5:49 PM

Tags: android, cloud, detection, finance, fraud, phone, threat

Cloud Android phones fuel financial fraud, evading detection and enabling dropper accounts First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/cloud-phones-financial-fraud/
6 key trends reshaping the IAM market

Mar 25, 2026 12:47 PM

Tags: access, ai, attack, authentication, ciso, compliance, corporate, cyber, cybersecurity, data, dora, finance, framework, governance, government, Hardware, iam, identity, mfa, mobile, network, nis-2, passkey, password, PCI, phone, regulation, saas, service, startup, strategy, technology

Passwordless authentication on the rise: Passwords have long been the weakest link in most security architectures.Many mobile phones and laptops already use biometrics for authentication, and the user experience is typically far better than typing a long and complex password into an interface.The growing uptake of passwordless authentication (FIDO2/passkeys, biometrics) is redefining the scope of…
6 key trends reshaping the IAM market

Mar 25, 2026 12:47 PM

Tags: access, ai, attack, authentication, ciso, compliance, corporate, cyber, cybersecurity, data, dora, finance, framework, governance, government, Hardware, iam, identity, mfa, mobile, network, nis-2, passkey, password, PCI, phone, regulation, saas, service, startup, strategy, technology

Passwordless authentication on the rise: Passwords have long been the weakest link in most security architectures.Many mobile phones and laptops already use biometrics for authentication, and the user experience is typically far better than typing a long and complex password into an interface.The growing uptake of passwordless authentication (FIDO2/passkeys, biometrics) is redefining the scope of…