Tag: finance
-
Treasury bureau notifies Congress that email hack was a ‘major’ cybersecurity incident
The OCC said the February incident resulted in the theft of “highly sensitive information” tied to the financial conditions of federally regulated institutions. First seen on cyberscoop.com Jump to article: cyberscoop.com/treasury-bureau-notifies-congress-that-email-hack-was-a-major-cybersecurity-incident/
-
Digital Threats Targeting India – Banking Financial Services and Insurance Insurance (BFSI) Sector
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/digital-threats-targeting-india-banking-financial-services-and-insurance-insurance-bfsi-sector
-
Compliance Needs Financial Metrics, Not Just Dashboards
Elliott of Zurich Insurance on Why Business Leaders Need Quantifiable Cyber Risks. Many compliance programs rely on vague risk scores and dashboards. These don’t always help business leaders make decisions. Dan Elliott, head of cyber resiliency, Zurich Resilience Solutions, ANZ, at Zurich Insurance, said organizations should frame compliance through financial metrics. First seen on govinfosecurity.com…
-
Is HR running your employee security training? Here’s why that’s not always the best idea
Tags: attack, awareness, best-practice, breach, business, ciso, communications, compliance, cyber, cybersecurity, data, finance, guide, healthcare, privacy, resilience, risk, security-incident, service, threat, training, vulnerabilityHR doesn’t have specialized security knowledge: Another limitation is that an organization’s security training can be a component in maintaining certain certifications, compliance, contractual agreements, and customer expectations, according to Hughes.”If that’s important to your organization, then security, IT, and compliance teams will know the subjects to cover and help guide in the importance of…
-
BCGE: KundenMails von Schweizer Bank veröffentlicht
Ein Erpresser hat über 30.000 Kunden-E-Mails der Genfer Kantonalbank (BCGE) veröffentlicht, nachdem sich diese geweigert hatte, das geforderte Lösegeld von 10.000 Euro zu bezahlen. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/deutsch/2015/01/15/bcge-hacker-veroeffentlicht-kundendaten/
-
Third-party ransomware attack jeopardizes DBS Group, Bank of China Singapore data
First seen on scworld.com Jump to article: www.scworld.com/brief/third-party-ransomware-attack-jeopardizes-dbs-group-bank-of-china-singapore-data
-
Hackers Conceal NFC Carders Behind Apple Pay and Google Wallet
Tags: apple, cyber, cybercrime, exploit, finance, fraud, google, hacker, mobile, nfc, password, technology, vulnerabilityIn a disturbing evolution of financial fraud, cybercriminals are leveraging advanced techniques to exploit mobile payment systems such as Apple Pay and Google Wallet. Once reliant on magnetic stripe card cloning, fraudsters have adapted to breakthroughs in card security technology like chip cards and one-time passwords, exploiting vulnerabilities in contactless payments and digital wallets. By…
-
Your Go-To Web Application Pentesting Checklist
Web applications are integral to modern business operations, facilitating customer engagement, financial transactions, and internal processes. However, their widespread use and complexity make them prime targets for cyber threats. A… First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/04/your-go-to-web-application-pentesting-checklist/
-
Aurascape Banks Hefty $50 Million to Mitigate ‘Shadow AI’ Risks
Silicon Valley startup secures big investment from Menlo Ventures and Mayfield Fund to solve the “shadow AI” security problem. The post Aurascape Banks Hefty $50 Million to Mitigate ‘Shadow AI’ Risks appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/aurascape-banks-hefty-50-million-to-mitigate-shadow-ai-risks/
-
Over 26,000 Dark Web Discussions Focused on Hacking Financial Organizations
Tags: cyber, cyberattack, cybercrime, cybersecurity, dark-web, finance, hacker, hacking, service, strategy, threat, tool, vulnerabilityRadware’s comprehensive research into the cybersecurity landscape has uncovered significant trends shaping the financial services industry’s vulnerabilities in 2024. The analysis, conducted across 46 deep-web hacker forums, identified over 26,000 threat actors’ discussions that revealed increasingly sophisticated cyberattack methods. The study highlights the adoption of advanced tools and strategies by cybercriminals, underscoring the urgent need…
-
Over £18m stolen from Santander UK customers in first three months of year
Bank’s latest quarterly report on scams said over £18m was stolen from its UK customers by scammers First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366622214/Over-18m-stolen-from-Santander-UK-customers-in-first-three-months-of-year
-
10 things you should include in your AI policy
Tags: access, ai, best-practice, breach, business, ceo, ciso, compliance, cybersecurity, data, data-breach, finance, framework, gartner, GDPR, governance, incident response, insurance, law, monitoring, privacy, regulation, risk, software, strategy, switch, technology, tool, training, updateInput from all stakeholders: At Aflac, the security team took the initial lead on developing the company’s AI policy. But AI is not just a security concern. “And it’s not just a legal concern,” Ladner says. “It’s not just a privacy concern. It’s not just a compliance concern. You need to bring all the stakeholders…
-
Planungskommission in Louisiana, USA verliert 88.000 Dollar durch Identitätsbetrug
Audit of Financial Statements First seen on static1.squarespace.com Jump to article: static1.squarespace.com/static/6526a2cd1822263deb066af4/t/67dc5582be4f6c3c34a0f16c/1742493059325/062024+Capital+Region+Planning+Commission+AFS.pdf
-
Phishing, fraud, and the financial sector’s crisis of trust
The financial sector is under growing pressure from advanced phishing attacks and fraud, causing major financial losses and eroding customer trust. Escalation of phishing … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/08/financial-sector-customer-trust/
-
The Convergence of IAM, Cybersecurity, Fraud and Compliance
Gartner’s Pete Redshaw on Why the CISO or CRO Should Take the Lead. Cybersecurity, IAM, fraud and compliance will converge across financial institutions in the next five to six years. This transformation will follow a phased path, beginning with data integration, followed by tool alignment and eventually team restructuring. First seen on govinfosecurity.com Jump to…
-
Dental Practice Support Firm Notifying 173,400 of Email Hack
Breach Affects Pediatric, Orthodontic and Dental Surgery Practices in 6 States. A Nashville, Tennessee firm that provides HR and finance services to dozens of specialty dental practices across six states is notifying more than 173,400 people of a 2024 email hacking incident affecting children and other patients. The company already faces several lawsuits related to…
-
How Trump’s tariffs are shaking up the cybersecurity sector
Tags: antivirus, ceo, china, cisa, country, cyber, cyberattack, cybersecurity, defense, finance, government, Hardware, infrastructure, microsoft, network, service, supply-chain, technology, threat, vulnerabilityCustomer cutbacks and increased costs are major concerns: In addition to the macroeconomic fears and worries over retaliatory measures, US cybersecurity companies are vulnerable to losing revenue under the new tariffs as customers reduce their cybersecurity budgets to cope with their own tariff-induced financial pressures.”What’s happening is that people are looking at cybersecurity through the…
-
Lazarus Adds New Malicious npm Using Hexadecimal String Encoding to Evade Detection Systems
North Korean state-sponsored threat actors associated with the Lazarus Group have intensified their Contagious Interview campaign by deploying novel malicious npm packages leveraging hexadecimal string encoding to bypass detection mechanisms. These packages deliver BeaverTail infostealers and remote access trojan (RAT) loaders, targeting developers to exfiltrate credentials, financial data, and cryptocurrency wallets. SecurityScorecard researchers identified 11…
-
Ransomware bei einer Bank im Senegal
Cyberattaque à la BHS : Une rançon d’un million de dollars et des failles critiques dans d’autres banques, Guy M. Sagna alerte le ministre des Finances First seen on senenews.com Jump to article: www.senenews.com/actualites/cyberattaque-a-la-bhs-une-rancon-dun-million-de-dollars-et-des-failles-critiques-dans-dautres-banques-guy-m-sagna-alerte-le-ministre-des-finances_535228.html
-
Smart Strategies for Managing Machine Identities
Why is Smart Machine Identity Management Crucial? What comes to your mind when you think about cybersecurity? Most often, we conceptualize cybersecurity as a measure to protect user data, financial information, and other forms of human-associated identities. While these are certainly significant, there is an underlying and often underestimated area of cybersecurity the management… First…
-
CaaStle CEO Commits a Major Fraud Faux Pas
CEO Accused of Providing Misleading Revenue, Liquidity Numbers to Key Stakeholders. Financial statement fraud is once again making headlines. Fashion startup CaaStle has accused its co-founder and CEO, Christine Hunsicker, of serious financial misconduct, leading to her resignation. The incident could be one of the biggest cases of start-up fraud in recent years. First seen…
-
Norway and Nordic financial sector ramps up cyber security
Finans Norge sets up cyber security unit CTSU to support the finance sector in Norway amid increasing threats First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366621703/Norway-and-Nordic-financial-sector-ramps-up-cyber-security
-
Senators re-up bill to expand Secret Service’s financial cybercrime authorities
The bipartisan legislation would strengthen the agency’s authorities to investigate criminal activity tied to digital assets. First seen on cyberscoop.com Jump to article: cyberscoop.com/secret-service-financial-cybercrimes-senate-bill/
-
ISMG Editors: Who Will Shore Up Trump’s Federal Cyber Cuts?
Also: 23andMe’s Privacy Meltdown, Investors’ $500M AI Bet on ReliaQuest. In this week’s update, ISMG editors discussed the Trump administration’s cybersecurity funding cuts and potential impact on state and local ransomware defense. 23andMe’s bankruptcy and the FTC’s stance on genetic data privacy, ReliaQuest’s $500 million raise and what it means for AI-led SecOps. First seen…
-
Banks to share fraud data with tech firms in cross-sector collaboration
UK banks join tech firms in fraud data-sharing initiative to enable collaboration on action to stop online scams First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366622133/Banks-to-share-fraud-data-with-tech-firms-in-cross-sector-collaboration