Tag: finance
-
BMW Reportedly Hit by Everest Ransomware, Internal Files Stolen
The Everest ransomware group has claimed a major breach at Bayerische Motoren Werke AG (BMW), alleging the theft of 600,000 lines of sensitive internal documents. The group has posted BMW on its leak site, complete with a countdown timer and instructions that threaten to make the stolen audit reports, financial records, and engineering files public…
-
Where CISOs need to see Splunk go next
Tags: ai, api, automation, cisco, ciso, cloud, communications, compliance, conference, crowdstrike, cybersecurity, data, data-breach, detection, finance, framework, google, incident response, intelligence, jobs, metric, microsoft, open-source, RedTeam, resilience, risk, router, siem, soar, strategy, tactics, threat, tool, vulnerabilityResilience resides at the confluence of security and observability: There was also a clear message around resilience, the ability to maintain availability and recover quickly from any IT or security event.From a Cisco/Splunk perspective, this means a more tightly coupled relationship between security and observability.I’m reminded of a chat I had with the chief risk…
-
Getting Better Results from NHI Security
How Can We Achieve Better NHI Security? Cloud environment security is an integral part of cybersecurity strategies for businesses operating across financial services, healthcare, travel, and more. How can organizations unlock improved results and ensure robust Non-Human Identities (NHIs) security? A strategic approach to NHI management can bridge the gap between security and research &……
-
Scattered Spider gang feigns retirement, breaks into bank instead
Tags: financeYou didn’t really trust the crims to keep their word, did you? First seen on theregister.com Jump to article: www.theregister.com/2025/09/17/scattered_spider_bank_attack/
-
Microsoft and Cloudflare execute ‘rugpull’ on massive phishing empire
Tags: access, ai, attack, blockchain, breach, computer, credentials, crime, crimes, crypto, cybercrime, data, detection, exploit, extortion, finance, fraud, infrastructure, international, law, microsoft, phishing, programming, scam, service, strategy, threat, toolLegal victory with limitations: Microsoft’s investigation identified Joshua Ogundipe, based in Nigeria, as the operation’s leader and primary architect. The company filed a lawsuit against Ogundipe and four associates listed as John Does in late August, then obtained a court order from the US District Court for the Southern District of New York in early…
-
Hackerangriff auf HEM expert
Von dem Cyberangriff auf den Elektrohändler HEM expert sind alle zehn Filialen betroffen. HEM expert MössingenHEM expert hat kürzlich ein Rundschreiben an seine Kunden verschickt, in dem über einen Cyberangriff informiert wird. Wie das Unternehmen gegenüber CSO bestätigt, betraf dieser alle zehn Standorte, die sich ausschließlich in Süddeutschland befinden. Die in ganz Deutschland verteilten Filialen…
-
Scattered Spider Resurfaces With Financial Sector Attacks Despite Retirement Claims
Cybersecurity researchers have tied a fresh round of cyber attacks targeting financial services to the notorious cybercrime group known as Scattered Spider, casting doubt on their claims of going “dark.”Threat intelligence firm ReliaQuest said it has observed indications that the threat actor has shifted their focus to the financial sector. This is supported by an…
-
Turning Regulation Into an Industry Advantage
Resilionix’s Heather Lowrie on Embracing GDPR as Tool for Change and Resilience. In a modern regulatory environment, compliance is no longer just an exercise in ticking off boxes. Thanks to GDPR, financial services firms are shifting from a reactive mindset to a more proactive approach to compliance that focuses on risk management, said Heather Lowrie,…
-
Geopolitics Shapes Security Budgets in Financial Services
RUSI’s William Dixon on How Trade Wars Lead to Inflation and Cyber Risks. Geopolitical instability has reshaped the cybersecurity priorities of financial services. William Dixon, senior associate fellow for cyber and international security at RUSI, says inflation, trade wars and sluggish growth are forcing cyber leaders to defend businesses with limited resources. First seen on…
-
Scattered Spider Tied to Fresh Attacks on Financial Services
Recent, Targeted Attacks Suggest Undercut Group’s Claimed ‘Going Dark’ Retirement. Elements of the notorious ransomware collective lately calling itself Scattered Lapsus$ Hunters appear to be targeting fresh victims, including a U.S. banking organization if not the sector at large, despite a member of the group claiming it would be going dark and retiring. First seen…
-
Cyber Essentials certification: What business need to know
Cyber security is essential. Cyber attacks can have devastating consequences for all businesses, regardless of size, including financial losses, reputational damage and loss of customer trust. Cyber Essentials accreditation can help you improve your business’s overall cyber security posture. Developed by the UK Government’s National Cyber Security Centre (NCSC), Cyber Essentials is a certification programme”¦…
-
From prevention to rapid response: The new era of CISO strategy
Tags: access, attack, authentication, automation, awareness, breach, ciso, control, credentials, cybersecurity, data, finance, fintech, infrastructure, Intruder, malicious, monitoring, network, privacy, radius, resilience, service, strategy, threat, zero-trustBreaches will happen, so how do we deal with the fallout?CISOs are now spending less energy trying to keep every threat at bay. They know attackers will get in, but the question is, what’s next? The new mindset is about stopping intruders from moving around and escalating the damage.This shift means investing in sharper visibility,…
-
FinWise Bank Warns of Insider Data Breach
An insider data breach at FinWise may have impacted 689,000 customers First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/finwise-bank-warns-of-insider-data/
-
CISOs grapple with the realities of applying AI to security functions
Tags: ai, automation, breach, business, ceo, ciso, compliance, cybersecurity, data, detection, email, endpoint, finance, governance, incident response, intelligence, law, malicious, malware, microsoft, risk, service, soc, threat, toolThe agentic edge: The financial services is often an early adopter of cutting-edge security technologies.Erin Rogers, SVP and director of cybersecurity risk and compliance at BOK Financial, tells CSO that AI-based upgrades are helping threat detection and response systems to autonomously analyze threats, make real-time decisions, and adapt responses, significantly improving early detection and mitigation.While…
-
CISOs grapple with the realities of applying AI to security functions
Tags: ai, automation, breach, business, ceo, ciso, compliance, cybersecurity, data, detection, email, endpoint, finance, governance, incident response, intelligence, law, malicious, malware, microsoft, risk, service, soc, threat, toolThe agentic edge: The financial services is often an early adopter of cutting-edge security technologies.Erin Rogers, SVP and director of cybersecurity risk and compliance at BOK Financial, tells CSO that AI-based upgrades are helping threat detection and response systems to autonomously analyze threats, make real-time decisions, and adapt responses, significantly improving early detection and mitigation.While…
-
Insider breach at FinWise Bank exposes data of 689,000 AFF customers
An ex-employee caused an insider breach at FinWise Bank, exposing data of 689,000 American First Finance customers. FinWise Bank is a Utah-based community bank, FDIC-insured, that partners with fintechs and lenders to offer consumer loans, small business financing, and deposit services. FinWise Bank notified the Maine AG that a data breach tied to the U.S.-based…
-
Fairmont Federal Credit Union 2023 data breach impacted 187K people
Fairmont Federal Credit Union alerts 187K people that a 2023 breach exposed personal, financial, and medical data. Fairmont Federal Credit Union (FFCU) is a not-for-profit financial cooperative in West Virginia. It offers services like personal and business loans, mortgages, checking accounts, and financial aid, operating nine regional branches to serve its members. Fairmont Federal Credit…
-
FinWise insider breach impacts 689K American First Finance customers
FinWise Bank is warning on behalf of corporate customers that it suffered a data breach after a former employee accessed sensitive files after the end of their employment. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/finwise-insider-breach-impacts-689k-american-first-finance-customers/
-
How the Marine Corps slashed IT delays by shifting to DevOps and agile development
Tags: business, cio, compliance, conference, control, cybersecurity, finance, government, monitoring, risk, service, software, tool, vulnerabilityAll Marine Corps websitesContent delivery systemEvent management and appointment booking systemsE-commerce and point of sale systemsHuman resources system The challenge of tech innovation in a bureaucracy: The biggest barrier during Operation Stormbreaker, according to Raley, was the bureaucratic nature of working inside the government.MCCS faced what Raley called the “frozen middle,” a web of disconnected…
-
Vietnam Probes Breach of Credit Agency Run by Central Bank
Cybercrime Group ShinyHunters Advertises 160 Million Stolen Records. Vietnam’s central bank is probing a hack attack that breached its credit reporting division, exposing personally identifiable information. The cybercrime group ShinyHunters claimed credit for the breach, advertising on a cybercrime forum 160 million stolen records for $175,000. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/vietnam-probes-breach-credit-agency-run-by-central-bank-a-29445
-
Former FinWise employee may have accessed nearly 700K customer records
Tags: financeBank says incident went undetected for over a year before discovery in June First seen on theregister.com Jump to article: www.theregister.com/2025/09/15/finwise_insider_data_breach/
-
Your SOC is the parachute, Will it open?
Tags: ai, automation, breach, cyber, cybersecurity, data, detection, exploit, finance, resilience, risk, soc, threat, tool, updateComplexity is the enemy of resilience: I recently had a fascinating conversation with a friend in Cambridge. We were debating what’s wrong with cybersecurity, and he said something that stuck with me: “The answer is simple if it’s done very well.”It echoes a point I explored in a collaborative essay with Abbas Kudrati: Cyber Security…
-
DarkCloud Stealer Targets Financial Firms via Weaponized RAR Files
August 2025 saw a dramatic surge in targeted attacks by the DarkCloud Stealer against financial institutions worldwide. CyberProof’s MDR analysts and threat hunters identified a wave of phishing emails bearing malicious RAR archives designed to prey on Windows users. Once executed, these archives unleashed a multi”stage payload engineered to siphon login credentials from email clients,…
-
INC ransom group claimed the breach of Panama’s Ministry of Economy and Finance
Panama’s Ministry of Economy and Finance disclosed a security breach impacting a computer in its infrastructure. Panama’s Ministry of Economy and Finance (MEF) announced that threat actors likely compromised one of its computers. The Ministry immediately activated its security protocols to contain the threat. Panama’s Ministry pointed out that critical systems vital to operations remain…
-
Tochter der DZ Bank – Easy Credit dementiert Cyberangriff
First seen on security-insider.de Jump to article: www.security-insider.de/newseasy-credit-ransomware-attacke-oder-taeuschungsversuch-a-d35322a89969ab8859c5ede495cab97b/
-
ShinyHunters Attacked Vietnam’s Financial System – CIC Data Leak
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/shinyhunters-attacked-vietnams-financial-system-cic-data-leak
-
Role of AI in Detecting and Preventing Financial Fraud
The banking sector has always been one of the prime targets for hackers due to the highly sensitive nature of its operations. It holds not only vast amounts of money but also valuable customer data, making it a lucrative target. As users continue to embrace the digital economy, cybersecurity in banking has become a top……