Tag: finance

What’s Powering Enterprise AI in 2025: ThreatLabz Report Sneak Peek

Dec 18, 2025 6:19 AM

Tags: access, ai, api, attack, business, communications, compliance, control, corporate, data, exploit, finance, github, google, intelligence, LLM, malware, mitigation, openai, privacy, programming, risk, saas, service, social-engineering, software, supply-chain, threat, tool, vulnerability

As 2025 comes to a close, artificial intelligence (AI) is a clear throughline across enterprise organizations. Many teams are still in the thick of implementing AI or deciding where and how to use it. Keeping up with usage trends and developments on top of that has become increasingly difficult. AI innovation moves fast and LLMs…
What’s Powering Enterprise AI in 2025: ThreatLabz Report Sneak Peek

Dec 18, 2025 6:19 AM

Tags: access, ai, api, attack, business, communications, compliance, control, corporate, data, exploit, finance, github, google, intelligence, LLM, malware, mitigation, openai, privacy, programming, risk, saas, service, social-engineering, software, supply-chain, threat, tool, vulnerability

As 2025 comes to a close, artificial intelligence (AI) is a clear throughline across enterprise organizations. Many teams are still in the thick of implementing AI or deciding where and how to use it. Keeping up with usage trends and developments on top of that has become increasingly difficult. AI innovation moves fast and LLMs…
What’s Powering Enterprise AI in 2025: ThreatLabz Report Sneak Peek

Dec 18, 2025 6:19 AM

Tags: access, ai, api, attack, business, communications, compliance, control, corporate, data, exploit, finance, github, google, intelligence, LLM, malware, mitigation, openai, privacy, programming, risk, saas, service, social-engineering, software, supply-chain, threat, tool, vulnerability

As 2025 comes to a close, artificial intelligence (AI) is a clear throughline across enterprise organizations. Many teams are still in the thick of implementing AI or deciding where and how to use it. Keeping up with usage trends and developments on top of that has become increasingly difficult. AI innovation moves fast and LLMs…
Complying with the Monetary Authority of Singapore’s Cloud Advisory: How Tenable Can Help

Dec 17, 2025 10:19 PM

Tags: access, advisory, attack, authentication, best-practice, business, cloud, compliance, container, control, country, credentials, cyber, cybersecurity, data, data-breach, finance, fintech, framework, google, governance, government, iam, identity, incident response, infrastructure, intelligence, Internet, kubernetes, least-privilege, malicious, malware, mfa, microsoft, mitigation, monitoring, oracle, regulation, resilience, risk, risk-assessment, risk-management, service, software, strategy, technology, threat, tool, vulnerability, vulnerability-management, zero-trust

The Monetary Authority of Singapore’s cloud advisory, part of its 2021 Technology Risk Management Guidelines, advises financial institutions to move beyond siloed monitoring to adopt a continuous, enterprise-wide approach. These firms must undergo annual audits. Here’s how Tenable can help. Key takeaways: High-stakes compliance: The MAS requires all financial institutions in Singapore to meet mandatory…
FTC orders crypto platform Nomad to distribute $37.5 million after 2022 theft

Dec 17, 2025 9:19 PM

Tags: breach, crypto, exploit, finance, hacker, theft, vulnerability

Under a settlement with the FTC, the Nomad platform will have to redistribute stolen funds that white-hat hackers returned to the company after thieves aggressively exploited a vulnerability in 2022. First seen on therecord.media Jump to article: therecord.media/ftc-settlement-nomad-platform-return-customers-cryptocurrency
Blockchain company Nomad to repay users under FTC deal after $186M cyberattack

Dec 17, 2025 5:19 PM

Tags: blockchain, cyberattack, cybersecurity, finance

Regulator makes various additional demands over alleged cybersecurity failings First seen on theregister.com Jump to article: www.theregister.com/2025/12/17/nomad_ftc_settlement/
Your MFA Is Costing You Millions. It Doesn’t Have To.

Dec 17, 2025 3:19 PM

Tags: attack, authentication, credentials, finance, login, mfa, password, phishing, risk, social-engineering

Passwords and app-based MFA add hidden costs through lost productivity, frequent resets, and risk of phishing and social engineering attacks. Token explains how wireless biometric, passwordless authentication eliminates credential-based attacks and delivers measurable financial returns by reducing login time across the enterprise. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/your-mfa-is-costing-you-millions-it-doesnt-have-to/
Why is secrets management vital for Agentic AI operations

Dec 17, 2025 1:19 PM

Tags: ai, cybersecurity, finance, healthcare, service

Are Your Non-Human Identities (NHIs) and Secrets Truly Secure? Understanding the Importance of Securing Non-Human Identities Have you ever wondered how secure your organization’s machine identities are? Managing Non-Human Identities (NHIs) along with their secrets is crucial to fortifying your cybersecurity strategy. With diverse applications across industries like financial services and healthcare, the management of……
Banks built rules for yesterday’s crime and RegTech is trying to fix that

Dec 17, 2025 8:19 AM

Tags: compliance, crime, finance

Criminals are moving money across borders faster, and financial institutions are feeling the squeeze. Compliance teams feel this strain every day as they try to keep up with … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/17/regulatory-technology-financial-crime-study/
Seceon Announces Strategic Partnership with InterSources Inc. to Expand Delivery of AI-Driven Cybersecurity Across Regulated Industries

Dec 17, 2025 1:19 AM

Tags: ai, compliance, cyber, cybersecurity, finance, threat

As cyber threats against regulated industries continue to escalate in scale, sophistication, and financial impact, organizations are under immense pressure to modernize security operations while meeting strict compliance requirements. Addressing this urgent need, Seceon has announced a strategic partnership with InterSources Inc., expanding the delivery of AI-driven cybersecurity solutions across some of the world’s most…
Illusory Systems settles with FTC over 2022 cryptocurrency hack

Dec 17, 2025 1:19 AM

Tags: crypto, cybersecurity, finance, software

The company was charged with materially misrepresenting the cybersecurity of its Token Bridge software as executives failed to implement reasonable security. First seen on cyberscoop.com Jump to article: cyberscoop.com/ftc-settles-with-illusory-systems-in-2022-cryptocurrency-hack/
How to create a ransomware playbook that works

Dec 16, 2025 9:19 AM

Tags: access, antivirus, attack, authentication, awareness, backup, best-practice, breach, business, communications, corporate, credentials, cyber, cybersecurity, data, defense, detection, edr, email, encryption, exploit, finance, firewall, flaw, identity, incident response, infrastructure, insurance, law, least-privilege, malicious, malware, mfa, mobile, phishing, ransom, ransomware, risk, skills, social-engineering, software, strategy, technology, threat, tool, training, update, vulnerability

Staffing, skills, and training: Many organizations continue to find that cybersecurity experts are in short supply, so staffing up teams is a challenge. That can be problematic for a ransomware strategy. Companies need to have a variety of skills in place, including expertise in incident detection and prevention, incident response, firewall configuration, and other areas.They…
How to create a ransomware playbook that works

Dec 16, 2025 9:19 AM

Tags: access, antivirus, attack, authentication, awareness, backup, best-practice, breach, business, communications, corporate, credentials, cyber, cybersecurity, data, defense, detection, edr, email, encryption, exploit, finance, firewall, flaw, identity, incident response, infrastructure, insurance, law, least-privilege, malicious, malware, mfa, mobile, phishing, ransom, ransomware, risk, skills, social-engineering, software, strategy, technology, threat, tool, training, update, vulnerability

Staffing, skills, and training: Many organizations continue to find that cybersecurity experts are in short supply, so staffing up teams is a challenge. That can be problematic for a ransomware strategy. Companies need to have a variety of skills in place, including expertise in incident detection and prevention, incident response, firewall configuration, and other areas.They…
How to create a ransomware playbook that works

Dec 16, 2025 9:19 AM

Tags: access, antivirus, attack, authentication, awareness, backup, best-practice, breach, business, communications, corporate, credentials, cyber, cybersecurity, data, defense, detection, edr, email, encryption, exploit, finance, firewall, flaw, identity, incident response, infrastructure, insurance, law, least-privilege, malicious, malware, mfa, mobile, phishing, ransom, ransomware, risk, skills, social-engineering, software, strategy, technology, threat, tool, training, update, vulnerability

Staffing, skills, and training: Many organizations continue to find that cybersecurity experts are in short supply, so staffing up teams is a challenge. That can be problematic for a ransomware strategy. Companies need to have a variety of skills in place, including expertise in incident detection and prevention, incident response, firewall configuration, and other areas.They…
How does Agentic AI affect compliance in the cloud

Dec 16, 2025 5:19 AM

Tags: ai, cloud, compliance, cybersecurity, finance, service, strategy

How Do Non-Human Identities Transform Cloud Security Management? Could your cloud security management strategy be missing a vital component? With cybersecurity evolves, the focus has expanded beyond traditional human operatives to encompass Non-Human Identities (NHIs). Understanding NHIs and their role in modern cloud environments is crucial for industries ranging from financial services to healthcare. This……
DORA Compliance Checklist for Cybersecurity

Dec 16, 2025 5:19 AM

Tags: compliance, cyber, cybersecurity, dora, finance, resilience, risk, risk-management

The Digital Operational Resilience Act (DORA) is now in full effect, and financial institutions across the EU face mounting pressure to demonstrate robust ICT risk management and cyber resilience. With… First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/12/dora-compliance-checklist-for-cybersecurity/
DORA Compliance Checklist for Cybersecurity

Dec 16, 2025 5:19 AM

Tags: compliance, cyber, cybersecurity, dora, finance, resilience, risk, risk-management

The Digital Operational Resilience Act (DORA) is now in full effect, and financial institutions across the EU face mounting pressure to demonstrate robust ICT risk management and cyber resilience. With… First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/12/dora-compliance-checklist-for-cybersecurity/
DORA Compliance Checklist for Cybersecurity

Dec 16, 2025 5:19 AM

Tags: compliance, cyber, cybersecurity, dora, finance, resilience, risk, risk-management

The Digital Operational Resilience Act (DORA) is now in full effect, and financial institutions across the EU face mounting pressure to demonstrate robust ICT risk management and cyber resilience. With… First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/12/dora-compliance-checklist-for-cybersecurity/
Android Users at Risk as Malware Poses as mParivahan and e-Challan Apps

Dec 15, 2025 9:19 PM

Tags: android, credentials, cyber, finance, github, government, india, malicious, malware, phishing, risk, service

A sophisticated Android malware campaign dubbed NexusRoute is actively targeting Indian users by impersonating the Indian Government Ministry, mParivahan, and e-Challan services to steal credentials and carry out large-scale financial fraud. The operation combines phishing, malware, and surveillance capabilities. It is being distributed via malicious APKs hosted on GitHub and clusters of phishing domains that…
700Credit data breach impacts 5.8 million vehicle dealership customers

Dec 15, 2025 6:19 PM

Tags: breach, data, data-breach, finance, fintech, service

700Credit, a U.S.-based financial services and fintech company, will start notifying more than 5.8 million people that their personal information has been exposed in a data breach incident. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/700credit-data-breach-impacts-58-million-vehicle-dealership-customers/
Interview: Mariano Albera, CTO, Checkout.com

Dec 15, 2025 5:19 PM

Tags: finance, technology

Checkout.com’s chief technology officer has spent most of his career in the e-commerce industry, and now he is applying what he learned to the finance sector that serves it First seen on computerweekly.com Jump to article: www.computerweekly.com/feature/Interview-Mariano-Albera-CTO-Checkoutcom
Nearly 20 million affected by Prosper, 700Credit data breaches

Dec 15, 2025 4:19 PM

Tags: breach, data, finance, fintech, marketplace, service

Fintech company Prosper Marketplace and car dealership services provider 700Credit are the latest financial institutions to report data breaches affecting millions of Americans. First seen on therecord.media Jump to article: therecord.media/data-breaches-affecting-20-million-prosper-700credit
Nearly 20 million affected by Prosper, 700Credit data breaches

Dec 15, 2025 4:19 PM

Tags: breach, data, finance, fintech, marketplace, service

Fintech company Prosper Marketplace and car dealership services provider 700Credit are the latest financial institutions to report data breaches affecting millions of Americans. First seen on therecord.media Jump to article: therecord.media/data-breaches-affecting-20-million-prosper-700credit
No more orange juice? Why one ship reveals America’s maritime cybersecurity crisis

Dec 15, 2025 3:19 PM

Tags: breach, business, cisa, ciso, corporate, cybersecurity, finance, framework, government, incident response, infrastructure, intelligence, international, jobs, malware, mitigation, regulation, resilience, risk, risk-assessment, service, strategy, supply-chain, technology, threat, training, usa

This is a workforce problem, not a vendor problem: The new regulations require all 3,000 MTSA facilities to designate a cybersecurity officer (why the Coast Guard named them CySOs and couldn’t just call them CISOs, I do not know). Finding hundreds of qualified people who understand both operational technology in maritime environments and cybersecurity is…
No more orange juice? Why one ship reveals America’s maritime cybersecurity crisis

Dec 15, 2025 3:19 PM

Tags: breach, business, cisa, ciso, corporate, cybersecurity, finance, framework, government, incident response, infrastructure, intelligence, international, jobs, malware, mitigation, regulation, resilience, risk, risk-assessment, service, strategy, supply-chain, technology, threat, training, usa

This is a workforce problem, not a vendor problem: The new regulations require all 3,000 MTSA facilities to designate a cybersecurity officer (why the Coast Guard named them CySOs and couldn’t just call them CISOs, I do not know). Finding hundreds of qualified people who understand both operational technology in maritime environments and cybersecurity is…
Compliance-Ready Cybersecurity for Finance and Healthcare: The Seceon Advantage

Dec 15, 2025 2:19 PM

Tags: compliance, cybersecurity, dora, finance, framework, healthcare, HIPAA, PCI, regulation, service

Navigating the Most Complex Regulatory Landscapes in Cybersecurity Financial services and healthcare organizations operate under the most stringent regulatory frameworks in existence. From HIPAA and PCI-DSS to GLBA, SOX, and emerging regulations like DORA, these industries face a constant barrage of compliance requirements that demand not just checkboxes, but comprehensive, continuously monitored security programs. The…
Delay to European Central Bank messaging project cost the Bank of England £23M

Dec 15, 2025 2:19 PM

Tags: finance

Watchdog links schedule change to replanning of UK payments system overhaul First seen on theregister.com Jump to article: www.theregister.com/2025/12/15/ecb_messaging_project/
Delay to European Central Bank messaging project cost the Bank of England £23M

Dec 15, 2025 2:19 PM

Tags: finance

Watchdog links schedule change to replanning of UK payments system overhaul First seen on theregister.com Jump to article: www.theregister.com/2025/12/15/ecb_messaging_project/
Man jailed for teaching criminals how to use malware

Dec 15, 2025 12:19 PM

Tags: android, finance, malware, phone, spyware

A 49-year-old man has received a five-and-a-half year jail sentence after admitting to creating detailed video tutorials that showed members of a criminal gang how to infect Android phones with spyware and drain their bank accounts. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/man-jailed-for-teaching-criminals-how-to-use-malware
Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector

Dec 15, 2025 11:19 AM

Tags: cybersecurity, email, finance, malicious, phishing, russia

Cybersecurity researchers have disclosed details of an active phishing campaign that’s targeting a wide range of sectors in Russia with phishing emails that deliver Phantom Stealer via malicious ISO optical disc images.The activity, codenamed Operation MoneyMount-ISO by Seqrite Labs, has primarily singled out finance and accounting entities, with those in the procurement, legal, payroll First…