Tag: finance
-
PayPal discloses data breach that exposed user info for 6 months
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/paypal-discloses-data-breach-exposing-users-personal-information/
-
PayPal discloses data breach that exposed user info for 6 months
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/paypal-discloses-data-breach-exposing-users-personal-information/
-
PayPal discloses data breach that exposed user info for 6 months
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/paypal-discloses-data-breach-exposing-users-personal-information/
-
How Enterprise CISOs Design Their Cyber Risk Management Strategy
Tags: ai, business, ciso, cyber, cybersecurity, finance, regulation, risk, risk-management, strategy<div cla For today’s CISOs, enterprise cyber risk management is no longer a technical exercise. It’s a leadership mandate that sits at the intersection of security, business risk, regulation, and executive accountability. Aligning proactive cybersecurity risk management strategies with the business’s overall risk posture is an ongoing, necessary process. A lack of alignment between cybersecurity…
-
Hackers breach contractor linked to Ukraine’s central bank collectible coin store
The National Bank of Ukraine announced that attackers may have gained access to users’ personal data, including names, phone numbers, email addresses and delivery addresses, in a recent cyberattack. First seen on therecord.media Jump to article: therecord.media/hackers-breach-ukraine-national-bank-contractor
-
FBI Issues Emergency Alert as Ploutus Malware Drains U.S. ATMs Without Cards or Accounts
Ploutus malware is powering a new wave of “jackpotting” attacks that drain U.S. ATMs without needing a bank card, customer account, or bank authorization, prompting the FBI to issue an emergency FLASH alert to financial institutions nationwide.”‹ According to the FBI alert, threat actors are using Ploutus and related ATM jackpotting malware to control cash…
-
PayPal launches latest struggle to get rid of SMS for MFA
Tags: authentication, ceo, ciso, communications, compliance, cybersecurity, email, finance, fraud, government, group, login, mfa, mobile, nfc, passkey, password, phishing, risk, service, strategy, switch, updateMuddled effort, mixed messages Flavio Villanustre, CISO for the LexisNexis Risk Solutions Group, says he’s “always found it odd” that PayPal still supports SMS as its primary secondary authentication factor.”Everyone in financial services and government has abandoned it for not being sufficiently secure and are moving to even phishing-resistant authentication, such as passkeys, Yubikeys,” he…
-
Treasury AI Plan Faces Calls for Enforceable Controls
Analysts Urge Mandatory Guardrails on AI Agents, Identity and Privilege. Security leaders are pressing Treasury to embed enforceable guardrails – covering adversarial testing, AI inventory, identity privilege mapping and real-time monitoring – into its forthcoming financial-sector AI guidance as deepfake fraud, data poisoning and autonomous agent risks escalate. First seen on govinfosecurity.com Jump to article:…
-
How can Agentic AI improve cybersecurity in financial services
Is Your Organization Ready for Agentic AI in Cybersecurity? Where cyber threats are becoming increasingly sophisticated, the use of Agentic AI in cybersecurity is transforming how industries like financial services handle their security protocols. But what exactly does this mean for your organization’s cybersecurity strategy, especially when integrating Non-Human Identities (NHIs) into your security framework?……
-
How can Agentic AI improve cybersecurity in financial services
Is Your Organization Ready for Agentic AI in Cybersecurity? Where cyber threats are becoming increasingly sophisticated, the use of Agentic AI in cybersecurity is transforming how industries like financial services handle their security protocols. But what exactly does this mean for your organization’s cybersecurity strategy, especially when integrating Non-Human Identities (NHIs) into your security framework?……
-
Abu Dhabi Finance Week Exposed VIP Passport Details
Unprotected cloud data sends the wrong signal at a time when the emirate’s trying to attract investors and establish itself as a global financial center. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/abu-dhabi-finance-week-leaked-vip-passport-details
-
Why Banks Need AI-Driven Segmentation Against Ransomware
AI-powered ransomware compresses attacks from weeks to minutes. Michael Villar, director of field security technology at Akamai, says banks need AI-driven segmentation to contain intruders fast, limit lateral movement and protect sensitive data before extortion begins. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/banks-need-ai-driven-segmentation-against-ransomware-i-5524
-
Attackers breach France’s national bank account database
A spokesperson for the French government said potentially 1.2 million accounts were impacted by the incident. First seen on therecord.media Jump to article: therecord.media/attackers-breach-france-national-bank-account-database
-
Bank of Ireland UK fined for late security system implementation
Tags: financeThe payments regulator has fined the bank nearly £4m after it missed a deadline to implement a system to check payees First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366639107/Bank-of-Ireland-UK-fined-for-late-security-system-implementation
-
Data on 1.2 million French bank accounts accessed in registry breach
In late January 2026, a malicious intruder accessed France’s national bank account registry, FICOBA, enabling them to view information tied to 1.2 million accounts, the … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/02/19/ficoba-data-breach-bank-accounts/
-
Hackers target Microsoft Entra accounts in device code vishing attacks
Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device Authorization flow and compromise Microsoft Entra accounts. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-target-microsoft-entra-accounts-in-device-code-vishing-attacks/
-
Fake IPTV Apps Spread Massiv Android Malware Targeting Mobile Banking Users
Cybersecurity researchers have disclosed details of a new Android trojan called Massiv that’s designed to facilitate device takeover (DTO) attacks for financial theft.The malware, according to ThreatFabric, masquerades as seemingly harmless IPTV apps to deceive victims, indicating that the activity is primarily singling out users looking for the online TV applications.”This new threat, while First…
-
Empowering a Global SaaS Workforce: From Identity Security to Financial Access
Explore how identity security and financial access solutions empower a global SaaS workforce with secure authentication and seamless payments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/empowering-a-global-saas-workforce-from-identity-security-to-financial-access/
-
Empowering a Global SaaS Workforce: From Identity Security to Financial Access
Explore how identity security and financial access solutions empower a global SaaS workforce with secure authentication and seamless payments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/empowering-a-global-saas-workforce-from-identity-security-to-financial-access/
-
Empowering a Global SaaS Workforce: From Identity Security to Financial Access
Explore how identity security and financial access solutions empower a global SaaS workforce with secure authentication and seamless payments. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/empowering-a-global-saas-workforce-from-identity-security-to-financial-access/
-
Are cloud environments truly protected by NHIs?
What Makes Non-Human Identities Critical for Cloud Security? Have you considered how essential Non-Human Identities (NHIs) are when it comes to securing cloud environments? From the financial services industry to healthcare, these machine identities play a pivotal role in bolstering an organization’s cloud security infrastructure. While we delve into their significance, let’s explore the strategic……
-
Are cloud environments truly protected by NHIs?
What Makes Non-Human Identities Critical for Cloud Security? Have you considered how essential Non-Human Identities (NHIs) are when it comes to securing cloud environments? From the financial services industry to healthcare, these machine identities play a pivotal role in bolstering an organization’s cloud security infrastructure. While we delve into their significance, let’s explore the strategic……
-
French Ministry confirms data access to 1.2 Million bank accounts
A hacker accessed data from 1.2 million French bank accounts using stolen official credentials, the Economy Ministry said. A hacker gained access to data from 1.2 million French bank accounts using stolen credentials belonging to a government official, according to the French Economy Ministry. French authorities said affected account holders will be notified in the…
-
Betterment data breach might be worse than we thought
This breach now appears far more serious. The leaked data includes rich personal and financial details that phishers could use. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/02/betterment-data-breach-might-be-worse-than-we-thought/
-
MSPs and Supporting Modern Compliance
As regulatory scrutiny is increasing, customers are more demanding, and security failures carry reputational and financial consequences that far outweigh the cost of prevention. In response, Managed Service Providers are redefining their role. Instead of offering compliance as a one-off consulting engagement, they are transforming it into a repeatable, scalable managed service. This is an”¦…
-
Data breach at fintech firm Figure affects nearly 1 million accounts
Hackers have stolen the personal and contact information of nearly 1 million accounts after breaching the systems of Figure Technology Solutions, a self-described blockchain-native financial technology company. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/data-breach-at-fintech-firm-figure-affects-nearly-1-million-accounts/
-
Cryptocurrency Scams in Asia Combine Malvertising and Pig Butchering, Causing Losses Up to ¥10 Million
A rising wave of cryptocurrency scams sweeping across Asia is blending two major fraud techniques malvertising and pig butchering to create a more deceptive and scalable attack model. The scams begin with malvertising, where attackers run ads impersonating well”‘known financial experts or promoting AI”‘powered trading platforms. These ads often seen on Facebook, Instagram, and other social media sites direct users…
-
Banks Need Revocable AI Identities, Continuous Trust Models
Fraud Specialist David Barnhardt on Addressing Authentication Risks of Agentic AI. Financial institutions are racing to deploy AI agents that can initiate payments, approve transactions and freeze accounts. But traditional authentication frameworks assume there’s a human on the other end. As agentic AI use grows, banks are facing an authentication crisis that demands new controls.…
-
Kettering Health Notifying Patients of Interlock Breach
Cybercrime Group First Listed Ohio Health System as a Data Theft Victim Last June. Ohio-based Kettering Health is notifying current and former patients and affiliates that their personal, health and financial information was potentially compromised in a May 2025 ransomware attack and data theft incident claimed by cybercriminal gang Interlock. First seen on govinfosecurity.com Jump…