Tag: finance
-
Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges
At least 17 affiliate groups have used the DroidBot Android banking Trojan against 77 financial services companies across Europe, with more to come, researchers warn. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/trojan-service-hits-euro-banks-crypto-exchanges
-
Data brokers face FTC ban for sensitive location data collection, sales
First seen on scworld.com Jump to article: www.scworld.com/brief/data-brokers-face-ftc-ban-for-sensitive-location-data-collection-sales
-
US arrests Scattered Spider suspect linked to telecom hacks
U.S. authorities have arrested a 19-year-old teenager linked to the notorious Scattered Spider cybercrime gang who is now charged with breaching a U.S. financial institution and two unnamed telecommunications firms. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/us-arrests-scattered-spider-suspect-linked-to-telecom-hacks/
-
This $3,000 Android Trojan Targeting Banks and Cryptocurrency Exchanges
As many as 77 banking institutions, cryptocurrency exchanges, and national organizations have become the target of a newly discovered Android remote access trojan (RAT) called DroidBot.”DroidBot is a modern RAT that combines hidden VNC and overlay attack techniques with spyware-like capabilities, such as keylogging and user interface monitoring,” Cleafy researchers Simone Mattia, Alessandro First seen…
-
FBI Warns GenAI is Boosting Financial Fraud
An FBI alert warned that GenAI tools are improving the believability of fraud schemes and enabling large scale attacks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/fbi-genai-financial-fraud/
-
‘DroidBot’ Android Trojan Targets Banking, Cryptocurrency Applications
The newly discovered DroidBot Android trojan targets 77 banks, cryptocurrency exchanges, and national organizations. The post ‘DroidBot’ Android Trojan Targets Banking, Cryptocurrency Applications appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/droidbot-android-trojan-targets-banking-cryptocurrency-applications/
-
US may plan legislation to contain Chinese cyber espionage
US senators were briefed behind closed doors this week on the scale of “Salt Typhoon,” an alleged Chinese cyber-espionage campaign targeting the nation’s telecommunications networks.The FBI, CISA, and other key agencies, who were part of the briefing, revealed that the sophisticated operation compromised at least eight US telecom firms, stealing metadata and call intercepts, including…
-
Dear CEO: It’s time to rethink security leadership and empower your CISO
Tags: access, application-security, breach, business, ceo, ciso, compliance, control, cybersecurity, defense, finance, governance, jobs, resilience, risk, strategy, toolAs a CISO, I’ve spent years navigating the delicate balance of responsibility and authority, accountability, and autonomy. After writing “The CISO Paradox,” I was struck by how deeply the article resonated with others in the cybersecurity field.Many reached out to share their own stories and frustrations, all pointing to the same glaring misalignment: CISOs are…
-
US FTC Cracks Down GeoLocation Data Brokers
Gravy Analytics and Mobilewalla Ordered to Implement Stronger Consent Measures. Two data brokers pledged to stop using geolocation data gleaned from smartphones to sell services that provide a window to the intimate lives of Americans. Surreptitious surveillance by data brokers undermines our civil liberties, an U.S. Federal Trade Commission official said. First seen on govinfosecurity.com…
-
FTC Safeguards US Consumers from Location Data Misuse
In a settlement announced on Tuesday, the FTC banned Gravy Analytics and Mobilewalla from selling sensitive location data First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/ftc-safeguards-us-location-data/
-
FTC scolds two data brokers for allegedly selling your location to the meter
‘Where we go is who we are’ totally isn’t a creepy ad slogan at all First seen on theregister.com Jump to article: www.theregister.com/2024/12/04/ftc_data_brokers/
-
63% of companies plan to pass data breach costs to customers
Tags: breach, business, ceo, ciso, compliance, cybersecurity, data, data-breach, finance, ibm, privacy, risk, serviceConsumers may be more on the hook for paying for the rising costs of data breaches than they realize, as companies increasingly turn to price hikes as part of their post-breach cost-recovery strategies. According to a report from IBM earlier this year, nearly two-thirds of companies plan to pass along data breach costs directly to…
-
Talent overlooked: embracing neurodiversity in cybersecurity
In cybersecurity, diverse perspectives help in addressing complex, emerging threats. Increasingly, there’s a push to recognize that neurodiversity brings significant value to cybersecurity. However, neurodiverse people frequently face systemic barriers that hinder their success in the field.Neurodiversity refers to the way some people’s brains work differently to the neurotypical brain. This includes autism, ADHD (attention…
-
BlackBerry Highlights Rising Software Supply Chain Risks in Malaysia
Tags: access, ai, attack, breach, ceo, ciso, communications, compliance, cyber, cyberattack, cybersecurity, data, detection, espionage, finance, framework, government, infrastructure, intelligence, international, Internet, iot, malware, mobile, monitoring, phishing, ransomware, regulation, resilience, risk, skills, software, strategy, supply-chain, threat, tool, training, vulnerabilityIn 2024, BlackBerry unveiled new proprietary research, underscoring the vulnerability of software supply chains in Malaysia and around the world.According to the study, 79% of Malaysian organizations reported cyberattacks or vulnerabilities in their software supply chains during the past 12 months, slightly exceeding the global average of 76%. Alarmingly, 81% of respondents revealed they had…
-
FTC scolds two data brokers for allegedly selling your location to the metre
‘Where we go is who we are’ totally isn’t a creepy ad slogan at all First seen on theregister.com Jump to article: www.theregister.com/2024/12/04/ftc_data_brokers/
-
FTC settles with facial recognition technology company for deceptive marketing
First seen on therecord.media Jump to article: therecord.media/ftc-settles-facial-recognition-company-deceptive-marketing
-
FTC targets companies that collected and sold sensitive location data
First seen on therecord.media Jump to article: therecord.media/ftc-location-data-brokers-gravy-venntel-mobilewalla
-
GoodRx Agrees to Pay $25M to Settle Web Tracker Lawsuit
Telehealth Firm Previously Paid $1.5M Fine to FTC for Similar Privacy Issues. GoodRx has reached a $25 million preliminary settlement of proposed class action litigation alleging the telehealth company violated privacy and an assortment other laws and statues when it previously collected and shared consumers’ information with third-parties through online tracking tools. First seen on…
-
FTC Says Data Brokers Unlawfully Tracked Protesters and US Military Personnel
The FTC is targeting data brokers that monitored people’s movements during protests and around US military installations. But signs suggest the Trump administration will be far more lenient. First seen on wired.com Jump to article: www.wired.com/story/ftc-mobilewalla-gravy-analytics-orders/
-
FTC goes after three data brokers with enforcement actions
The FTC has accused three data brokers, including Gravy Analytics and Venntel, of illegally tracking and selling non-anonymized consumer location data. First seen on cyberscoop.com Jump to article: cyberscoop.com/ftc-data-broker-action-gravy-analytics-venntel-mobilewalla/
-
FTC bans data brokers from selling Americans’ sensitive location data
Today, the FTC banned data brokers Mobilewalla and Gravy Analytics from harvesting and selling Americans’ location tracking data linked to sensitive locations, like churches, healthcare facilities, military installations, and schools. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/ftc-bans-data-brokers-from-selling-americans-sensitive-location-data/
-
FTC bans two data brokers from collecting and selling Americans’ sensitive location data
US-based Gravy Analytics and Mobilewalla must also delete historic data collected on millions of Americans. First seen on techcrunch.com Jump to article: techcrunch.com/2024/12/03/ftc-bans-two-data-brokers-from-collecting-and-selling-americans-sensitive-location-data/
-
Top US Consumer Watchdog Has a Plan to Fight Predatory Data Brokers
A new proposal by the Consumer Financial Protection Bureau would use a 54-year-old privacy law to impose new oversight of the data broker industry. But first, the agency must survive Elon Musk. First seen on wired.com Jump to article: www.wired.com/story/cfpb-fcra-data-broker-oversight/
-
760,000 Employee Records From Several Major Firms Leaked Online
A hacker has posted online over 760,000 records belonging to employees of Bank of America, Koch, Nokia, JLL, Xerox, Morgan Stanley, and Bridgewater. The post 760,000 Employee Records From Several Major Firms Leaked Online appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/760000-employee-records-from-several-major-firms-leaked-online/
-
CFPB proposes new rule to regulate expansive data broker industry
In an era where personal data is increasingly commodified, the Consumer Financial Protection Bureau (CFPB) is attempting to regulate the sprawling industry of data brokers. A newly proposed rule released Tuesday aims to put data brokers in line with the Fair Credit Reporting Act (FCRA), ensuring accountability and consumer privacy amid widespread security issues. Initially…
-
Why identity security is your best companion for uncharted compliance challenges
Tags: access, ai, attack, authentication, automation, business, cloud, compliance, control, cyberattack, cybersecurity, data, detection, exploit, finance, framework, GDPR, governance, government, healthcare, HIPAA, identity, india, law, least-privilege, mitigation, monitoring, privacy, regulation, risk, risk-management, service, strategy, supply-chain, technology, threat, tool, zero-trustIn today’s rapidly evolving global regulatory landscape, new technologies, environments, and threats are heightening cybersecurity and data privacy concerns. In the last year, governing bodies have taken significant steps to enact stricter compliance measures”, and more than ever, they are focusing on identity-related threats.Some notable changes include: The National Institute of Standards and Technology (NIST)…