Tag: finance
-
Uganda confirms cyberattack on central bank but minimizes extent of breach
First seen on therecord.media Jump to article: therecord.media/uganda-cyberattack-central-bank
-
New Phishing Attack Targeting Corporate Internet Banking Users
A sophisticated phishing scam has surfaced in Japan, targeting corporate internet banking users. This attack, which has rapidly gained attention nationwide, involves fraudsters impersonating bank representatives to deceive victims into providing sensitive banking information. The attack begins with a phone call from individuals pretending to be bank officials. These imposters inform unsuspecting victims that their…
-
A Kansas pig butchering: CEO who defrauded bank, church, friends gets 24 years
First seen on theregister.com Jump to article: www.theregister.com/2024/11/05/fbi_pig_kansas_cryptocurrency/
-
How DSPM Helps Businesses Meet Compliance Requirements
Tags: compliance, cybersecurity, data, finance, government, healthcare, regulation, risk, vulnerabilityData Security Posture Management (DSPM) helps monitor, secure, and ensure compliance for sensitive data, reducing risks across diverse environments. Complying with cybersecurity regulations can be a source of great pain for organizations, especially those that handle and store particularly valuable and vulnerable information. Organizations in sectors like healthcare, finance, legal, and government often process vast…
-
Financial institutions told to get their house in order before the next CrowdStrike strikes
First seen on theregister.com Jump to article: www.theregister.com/2024/11/02/fca_it_resilience/
-
Over 1,000 arrested in massive ‘Serengeti’ anti-cybercrime operation
Law enforcement agencies in Africa arrested as part of ‘Operation Serengeti’ more than a thousand individuals suspected of being involved in major cybercriminal activities that caused close to $193 million in financial losses all over the world. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/over-1-000-arrested-in-massive-serengeti-anti-cybercrime-operation/
-
Ursnif Trojan Campaign Targets U.S. Professionals via Stealthy Spam Attacks
The Ursnif banking Trojan, one of the most notorious forms of malware targeting financial data, has been observed in a sophisticated campaign using advanced techniques to avoid detection and steal sensitive information. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/ursnif-banking-trojan/
-
Resilience in Focus: How Australian Boards Are Preparing for CPS 230
Australian banks, insurers, and superannuation funds must meet higher regulatory resilience standards by as soon as July 2025. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/resilience-australia-cps-230/
-
Android Trojan that intercepts voice calls to banks just got more stealthy
FakeCall malware can reroute calls intended for banks to attacker-controlled numbers. First seen on arstechnica.com Jump to article: arstechnica.com/information-technology/2024/10/android-trojan-that-intercepts-voice-calls-to-banks-just-got-more-stealthy/
-
17 hottest IT security certs for higher pay today
Tags: access, ai, attack, automation, blockchain, business, ceo, cisa, ciso, cloud, communications, conference, container, control, credentials, cryptography, cyber, cybersecurity, data, defense, detection, encryption, exploit, finance, fortinet, google, governance, group, guide, hacker, incident response, infosec, infrastructure, intelligence, Internet, jobs, monitoring, network, penetration-testing, privacy, reverse-engineering, risk, risk-management, skills, software, technology, threat, tool, training, windowsWith the New Year on the horizon, many IT professionals may be looking to improve their careers in 2025 but need direction on the best way. The latest data from Foote Partners may provide helpful signposts.Analyzing more than 638 certifications as part of its 3Q 2024 “IT Skills Demand and Pay Trends Report,” Foote Partners…
-
Finastra investigates breach potentially affecting top global banks
Tags: attack, banking, breach, communications, corporate, credentials, cybersecurity, dark-web, data, finance, fintech, ibm, malware, network, ransomware, service, software, threatPopular financial software and services provider, Finastra, whose clientele includes 45 of the world’s top 50 banks, is reportedly warning these institutes of a potential breach affecting one of its internally hosted file transfer platforms.In an Incident Disclosure letter sent to its customer firms, first obtained and reported by cybersecurity journalist Brian Krebs, Finastra said…
-
CSO30 ASEAN 2024: The top 30 cybersecurity leaders in Southeast Asia and Hong Kong
Tags: business, country, cyber, cybersecurity, finance, group, ibm, intelligence, resilience, risk, technologyThe fourth CSO30 ASEAN Awards programme recognises the top 30 cybersecurity leaders driving business value, demonstrating leadership, and influencing rapid change across Southeast Asia and Hong Kong.In addition to individual recognition, the programme includes: Business Value and Leadership awards.The CSO30 ASEAN Awards programme is aligned to Foundry’s global awards and celebrates the leading individuals and…
-
Threat Actors Exploit Google Docs And Weebly Services For Malware Attacks
Phishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting victims to fake login pages hosted on Weebly, targeting telecommunications and financial sectors in late October 2024. Financially motivated threat actors exploit Weebly’s ease of use and reputation to host phishing pages, bypassing security measures and leveraging the platform’s legitimacy to…
-
ISMG Editors: China-Linked Espionage Targets US Telecoms
Also: Highlights from ISMG’s Financial Services Summit and Key Insights on AI Adoption. On the 200th episode of the ISMG Editors’ Panel, the team discussed the major China-linked cyberespionage campaign targeting U.S. telecommunications, highlighted key insights from ISMG’s Financial Services Summit in New York and unpacked the top findings from ISMG’s annual Generative AI Survey.…
-
Meta Removed 2 Million Account Linked to Malicious Activities
Meta has announced the removal of over 2 million accounts connected to malicious activities, including sophisticated fraud schemes such as >>pig butchering.
-
Massive Credit Card Leak, Database of 1,221,551 Cards Circulating on Dark Web
Tags: breach, credit-card, cyber, cybersecurity, dark-web, data, data-breach, finance, leak, maliciousA massive data breach has sent shockwaves across the globe, as a database containing sensitive financial information for over 1.2 million credit cards has been leaked on the dark web. According to reports from cybersecurity watchers, the database was shared for free, making it accessible to malicious actors worldwide. The alarming revelation was first highlighted…
-
Google Docs and Weebly Weaponized in New Phishing Scheme
A recent phishing campaign, uncovered by EclecticIQ researchers, highlights the lengths attackers will go to exploit trusted platforms and infrastructure. Financially motivated threat actors targeted the telecommunications and financial sectors... First seen on securityonline.info Jump to article: securityonline.info/google-docs-and-weebly-weaponized-in-new-phishing-scheme/
-
Google Exposes GLASSBRIDGE: A Pro-China Influence Network of Fake News Sites
Government agencies and non-governmental organizations in the United States have become the target of a nascent China state threat actor known as Storm-2077.The adversary, believed to be active since at least January 2024, has also conducted cyber attacks against the Defense Industrial Base (DIB), aviation, telecommunications, and financial and legal services across the world, Microsoft…
-
ISMG Editors: China-Linked Espionage Targets U.S. Telecoms
Also: Highlights from ISMG’s Financial Services Summit and Key Insights on AI Adoption. On the 200th episode of the ISMG Editors’ Panel, the team discussed the major China-linked cyberespionage campaign targeting U.S. telecommunications, highlighted key insights from ISMG’s Financial Services Summit in New York, and unpacked the top findings from ISMG’s annual Generative AI Survey.…
-
240+ Domains Used By PhaaS Platform ONNX Seized by Microsoft
Microsoft’s Digital Crimes Unit (DCU) has disrupted a significant phishing-as-a-service (PhaaS) operation run by Egypt-based cybercriminal Abanoub Nady, known online as >>MRxC0DER.>do-it-yourself>ONNX
-
DOJ Takes Down Global Cybercrime Hub PopeyeTools, Seizes Cryptocurrency
The U.S. Department of Justice has announced the seizure of the PopeyeTools website, a notorious cybercrime website that facilitated the trafficking of stolen financial information and tools for committing fraud. Along with this major takedown, criminal charges have been filed against three administrators of the site: Abdul Ghaffar, 25, of Pakistan; Abdul Sami, 35, of…
-
Microsoft seizes websites tied to Egypt-based DIY phishing kit-maker
The kits, which the company said were a sophisticated approach to bypassing multifactor authentication, pose a particular threat to the financial services sector. First seen on cyberscoop.com Jump to article: cyberscoop.com/microsoft-seizes-websites-tied-to-egypt-based-diy-phishing-kit-maker/