Tag: finance

New Nitrogen Ransomware Targets Financial Firms in the US, UK and Canada

May 20, 2025 12:54 PM

Tags: finance, ransomware, threat

Nitrogen, a ransomware strain, has emerged as a major threat to organizations worldwide, with a particular focus on… First seen on hackread.com Jump to article: hackread.com/nitrogen-ransomware-targets-financial-firms-us-uk-canada/
Getting Better at Preventing Identity Theft

May 20, 2025 12:54 AM

Tags: breach, finance, identity, theft

Why is Identity Theft Prevention a Vital Component of Good Security? Have you ever considered the potential cost of a security breach and the resulting identity theft? According to the Federal Trade Commission (FTC), identity theft affected 4.8 million people in 2020, resulting in a financial loss of a staggering $56 billion. This striking statistic……
Breaches at Serviceaide, Nationwide Recovery Services expose medical info of more than 500,000 people

May 19, 2025 11:54 PM

Tags: breach, finance, healthcare, insurance, service

Hospitals tied to the two companies announced breaches over the last week involving Social Security numbers, financial information and sensitive health insurance data. First seen on therecord.media Jump to article: therecord.media/breaches-serviceaide-nationwide-medical-info
AI is stirring mixed feelings among CFOs, survey finds

May 19, 2025 4:54 PM

Tags: ai, finance, privacy, risk, software

The research highlights a “trust gap between the untested promise of AI and the wariness of security and privacy risks,” finance software company;Kyriba;said. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/ai-is-stirring-mixed-feelings-among-cfos-survey-finds/748438/
Millions at risk after attackers steal UK legal aid data dating back 15 years

May 19, 2025 1:54 PM

Tags: cybercrime, data, finance, risk

Cybercriminals lifted info including addresses, ID numbers, and financial records from agency systems First seen on theregister.com Jump to article: www.theregister.com/2025/05/19/legal_aid_agency_data_theft/
New ModiLoader Malware Campaign Targets Windows PCs, Harvesting User Credentials

May 19, 2025 11:54 AM

Tags: credentials, cyber, email, finance, intelligence, malicious, malware, phishing, windows

AhnLab Security Intelligence Center (ASEC) has recently uncovered a malicious campaign distributing ModiLoader (also known as DBatLoader) malware through phishing emails. These emails, crafted in Turkish and impersonating a Turkish bank, urge recipients to open a malicious attachment under the guise of checking their transaction history. Inside the compressed RAR file lies a BAT script…
Legal aid hack: data from hundreds of thousands of people accessed, says MoJ

May 19, 2025 10:54 AM

Tags: attack, breach, cyber, data, data-breach, finance

Data including criminal records downloaded in ‘significant’ cyber-attack at Legal Aid Agency in April, ministry confirmsThe personal data of hundreds of thousands of legal aid applicants in England and Wales dating back to 2010, including criminal records and financial details, has been accessed and downloaded in a “significant” cyber-attack.Officials admit that the data may have…
Investors and shoppers await clues on fallout from M&S cyber-attack

May 18, 2025 6:56 PM

Tags: attack, cyber, finance

Retailer due to report annual results, with many focused on financial impact of hack and when online orders will restart Shoppers and shareholders will look this week to <a href=”https://www.theguardian.com/business/marksspencer”>Marks & Spencer to share more information about the impact of a damaging cyber-attack and whether the retailer can give clues on when it will be…
Coinbase Hacked and Turns the Tables on the Cybercriminals!

May 17, 2025 12:54 AM

Tags: attack, ceo, ciso, cyber, cybercrime, cybersecurity, data, data-breach, defense, extortion, finance, ransom, ransomware, risk, social-engineering, technology, threat, tool

This is how you handle cybercrime digital extortion! Coinbase was compromised by trusted 3rd party partners, which exposed customer data”Š”, “Šbut customer keys to their assets were still safe. The cyber criminals then attempted to extort $20 million from Coinbase, to keep the attack secret. Coinbase’s answer: NO! Instead, they are creating a $20 million…
AI regulation to commence once issues arise, says FTC chair

May 16, 2025 10:54 PM

Tags: ai, finance, regulation

First seen on scworld.com Jump to article: www.scworld.com/brief/ai-regulation-to-commence-once-issues-arise-says-ftc-chair
Breaking barriers: Solving AppSec challenges in financial services

May 16, 2025 10:54 PM

Tags: application-security, finance, service

First seen on scworld.com Jump to article: www.scworld.com/resource/breaking-barriers-solving-appsec-challenges-in-financial-services
‘Would rather pay bounty than ransom’: Coinbase on $20M extortion attempt

May 16, 2025 9:54 PM

Tags: breach, email, extortion, finance, hacker, offense, ransom, threat

Hackers are demanding a ransom of the same amount: According to the filing, the email communication by the threat actor demanded $20 million in exchange for not publicly disclosing the information. It remains to be seen how threat actors respond to Coinbase refusing to pay the ransom.”Coinbase’s decision to publicly counter-extort with a $20 million…
FTC wants a new, segregated software system to police deepfake porn

May 16, 2025 9:54 PM

Tags: deep-fake, finance, software

The Republican chair told Congress that the agency will need specialized software, personnel and expertise to enforce the newly passed Take It Down Act. First seen on cyberscoop.com Jump to article: cyberscoop.com/ftc-take-it-down-act-deepfake-data-software-congress/
Deepfake attacks could cost you more than money

May 16, 2025 8:54 AM

Tags: attack, ceo, deep-fake, finance, fraud

In this Help Net Security interview, Camellia Chan, CEO at X-PHY, discusses the dangers of deepfakes in real-world incidents, including their use in financial fraud and … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/05/16/camellia-chan-x-phy-defending-against-deepfakes/
Proofpoint Buys Hornetsecurity, A Microsoft 365 Security Specialist For $1 Billion

May 16, 2025 8:54 AM

Tags: ai, cyber, cybersecurity, finance, group, microsoft

Cybersecurity giant Proofpoint has announced its agreement to acquire Hornetsecurity Group, a leading European provider of AI-powered Microsoft 365 security solutions. The deal, reportedly valued at $1 billion, is expected to close in the second half of 2025, although exact financial terms were not publicly disclosed in the announcement. This strategic move significantly strengthens Proofpoint’s…
Building Confidence in Your Cybersecurity Strategy

May 16, 2025 12:54 AM

Tags: cybersecurity, data, finance, healthcare, service, strategy, threat

Why is a Comprehensive Cybersecurity Strategy Essential? A robust cybersecurity strategy is no longer a luxury but a necessity. Whether it is financial services, healthcare, or travel, organizations are making significant shifts to the digital domain. It has become critical to safeguard sensitive data from threats and risks. But how can businesses build confidence in……
Backdoor implant discovered on PyPI posing as debugging utility

May 16, 2025 12:54 AM

Tags: attack, backdoor, country, crypto, finance, malicious, open-source, pypi, russia, software, supply-chain, threat, ukraine
Streamlining PCI DSS 4.0 Compliance for IBM Z Series Customers

May 15, 2025 9:54 PM

Tags: compliance, data, finance, ibm, PCI, service
FTC’s Ferguson tells lawmakers agency won’t regulate AI until after problems occur

May 15, 2025 8:54 PM

Tags: ai, conference, finance, privacy

His remarks echo recent comments Commissioner Melissa Holyoak made in her personal capacity during a speech at a privacy conference, but are a more significant indicator of the agency’s new position on the issue given that he was speaking to lawmakers on behalf of the agency. First seen on therecord.media Jump to article: therecord.media/ftc-ferguson-wont-regulate-ai-until-problems-arise
Hackers Steal Customers Banking Details in Nova Scotia Cyber Attack

May 15, 2025 5:54 PM

Tags: attack, banking, cyber, cyberattack, data, finance, hacker, infrastructure, unauthorized

Nova Scotia Power has confirmed that hackers infiltrated its IT infrastructure and exfiltrated sensitive customer data, including banking details from pre-authorized payment systems, in a cyberattack first detected on March 19, 2025. The energy provider revealed on May 14 that unauthorized actors accessed servers containing personal identifiers, financial records, and operational data, with forensic analysis…
Customer Data Compromised in Dior Cyber Attack

May 15, 2025 4:54 PM

Tags: attack, breach, cyber, cybersecurity, data, data-breach, finance, security-incident, unauthorized

Luxury fashion house Dior experienced a significant security incident when unauthorized external actors breached their customer database. According to the official notification, Dior immediately implemented containment protocols and engaged cybersecurity experts to investigate the intrusion. The breach exposed various categories of personal information, though Dior maintains that financial details remained secure despite the breach. This…
Data on sale: Trump administration withdraws data broker oversight proposal

May 15, 2025 1:54 PM

Tags: breach, compliance, data, data-breach, exploit, finance, framework, group, identity, infrastructure, law, military, privacy, regulation, theft, vulnerability

Privacy concerns escalate : Without these protections, data brokers can continue collecting and selling Americans’ sensitive personal information with minimal oversight. This data often includes Social Security numbers, financial records, location histories, and purchase patterns, leaving consumers vulnerable to identity theft and fraud. “Demographic groups already underserved by mainstream financial services”, low-income earners, elderly individuals, and racial…
CFPB Quietly Kills Rule to Shield Americans From Data Brokers

May 14, 2025 7:38 PM

Tags: data, finance

Russell Vought, acting director of the Consumer Financial Protection Bureau, has canceled plans to more tightly regulate the sale of Americans’ sensitive personal data. First seen on wired.com Jump to article: www.wired.com/story/cfpb-quietly-kills-rule-to-shield-americans-from-data-brokers/
Kollateralschaden im Cyberspace

May 14, 2025 3:38 PM

Tags: cyberattack, cyersecurity, ddos, finance, risk

Unerwartete Cyberbedrohungen können die Budgets für Cybersicherheit schnell aufbrauchen und sorgfältig geplante Strategien zum Scheitern bringen. Unter diesen Herausforderungen sind DDoS-Angriffe (Distributed Denial of Service) ein Paradebeispiel dafür, wie unerwartete Risiken selbst die sichersten Systeme stören können. Um den Ablauf eines solchen Angriffs zu erörtern, stellen wir uns als fiktives Beispiel eine Bank vor. Es…
Horabot Malware Targets 6 Latin American Nations Using Invoice-Themed Phishing Emails

May 14, 2025 1:38 PM

Tags: cybersecurity, email, finance, malicious, malware, phishing, windows

Cybersecurity researchers have discovered a new phishing campaign that’s being used to distribute malware called Horabot targeting Windows users in Latin American countries like Mexico, Guatemala, Colombia, Peru, Chile, and Argentina.The campaign is “using crafted emails that impersonate invoices or financial documents to trick victims into opening malicious attachments and can steal email First seen…
Secrets Management That Fits Your Budget

May 14, 2025 5:41 AM

Tags: finance, strategy

Is Your Secrets Management Strategy Straining Your Budget? Organizations are on the lookout for budget-friendly secrets management solutions that provide robust security without causing financial strain. I believe that a comprehensive Non-Human Identities (NHIs) management approach could be the answer. Understanding NHIs and the Need for Budget-Friendly Security Management Non-Human Identities (NHIs) are the machine……
Google adds suite of security features to Android 16

May 13, 2025 11:38 PM

Tags: android, attack, finance, google, risk, scam, theft, update

Google is rolling out new security features for Android devices as part of its latest operating system update, Android 16, reinforcing its ongoing efforts to guard users against ever-changing threats. The measures target a spectrum of risks, from financial scams and impersonation attacks to theft protection and malware. One of the central advancements highlighted Tuesday…
The Security Gap JPMorgan Chase’s CISO Didn’t Mention”Š”, “ŠAnd Why It’s in Your Browser

May 13, 2025 10:38 PM

Tags: access, adobe, api, apple, attack, browser, business, chrome, ciso, cloud, compliance, conference, control, credentials, crypto, cyber, data, detection, dora, endpoint, exploit, finance, gartner, google, grc, identity, infrastructure, microsoft, monitoring, nis-2, open-source, password, phishing, ransomware, regulation, resilience, risk, risk-assessment, saas, sbom, software, technology, theft, threat, tool, unauthorized, update, vulnerability

The Security Gap JPMorgan Chase’s CISO Didn’t Mention”Š”, “ŠAnd Why It’s in Your Browser When the CISO of JPMorgan Chase issues a public letter to all technology vendors, the industry pays attention”Š”, “Šand rightfully so. In his open letter, Rohan Amin lays out a firm, urgent call: prioritize secure-by-design practices, patch faster, and take full accountability…
How Can Fintech Companies Balance Innovation with Customer Protection?

May 13, 2025 8:38 PM

Tags: finance, fintech, phone

Picture a world where your phone isn’t just a device, but a gateway to a financial revolution. The fintech industry is rewriting the rules of…Read More First seen on securityboulevard.com Jump to article: https://securityboulevard.com/2025/05/how-can-fintech-companies-balance-innovation-with-customer-protection/
Swan Vector APT Targets Organizations with Malicious LNK and DLL Implants

May 13, 2025 7:38 PM

Tags: apt, cyber, finance, infection, malicious, social-engineering, tactics, threat

A newly identified advanced persistent threat (APT) campaign, dubbed >>Swan Vector