Tag: banking
-
Mobile Malware Targeting Indian Banks Exposes 50,000 Users
Indian banking malware attack exposes 50,000 users, stealing financial data via SMS interception and phishing First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/mobile-malware-indian-banks/
-
Silent Lynx Using PowerShell, Golang, and C++ Loaders in Multi-Stage Cyberattacks
by
in SecurityNewsA previously undocumented threat actor known as Silent Lynx has been linked to cyber attacks targeting various entities in Kyrgyzstan and Turkmenistan.”This threat group has previously targeted entities around Eastern Europe and Central Asian government think tanks involved in economic decision making and banking sector,” Seqrite Labs researcher Subhajeet Singha said in a technical report…
-
Coyote Banking Trojan targets Brazilian users, stealing data from 70+ financial apps and websites
by
in SecurityNewsCoyote Banking Trojan targets Brazilian users, stealing data from over 70 financial applications and websites. FortiGuard Labs researchers detected a campaign using LNK files executing PowerShell commands to deploy the Coyote Banking Trojan. Threat actors target Brazilian users by stealing financial data, the malware can harvest sensitive information from over 70 financial applications and numerous…
-
The Stumbling Blocks of Open Banking
by
in SecurityNewsUK Banks Face Adoption Challenges and Cybersecurity Concerns. Despite its promise of innovation and cost efficiency, banks in the United Kingdom continue to struggle with the adoption of open banking. Consumer awareness, security concerns and a lack of incentives remain hurdles as stakeholders push for broader integration. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/stumbling-blocks-open-banking-a-27433
-
Coyote Malware Launches Stealthy Attack on Windows Systems via LNK Files
by
in SecurityNewsFortiGuard Labs has issued a high-severity alert regarding the Coyote Banking Trojan, a sophisticated malware targeting Microsoft Windows users. Over the past month, researchers have identified malicious LNK files employing PowerShell commands to execute scripts and connect to remote servers, initiating a multi-stage attack. The primary objective of this Trojan is to harvest sensitive information…
-
Coyote Banking Trojan: a Threat to Banking Institutions
by
in SecurityNewsOver the past month, cybersecurity experts at FortiGuard Labs have identified a series of malicious Windows Shortcut (LNK) files containing PowerShell commands. These files serve as the initial stage of a sophisticated cyberattack aimed at delivering the Coyote Banking Trojan,… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/coyote-banking-trojan-a-threat-to-banking-institutions/
-
Coyote Malware Expands Reach: Now Targets 1,030 Sites and 73 Financial Institutions
by
in SecurityNewsBrazilian Windows users are the target of a campaign that delivers a banking malware known as Coyote.”Once deployed, the Coyote Banking Trojan can carry out various malicious activities, including keylogging, capturing screenshots, and displaying phishing overlays to steal sensitive credentials,” Fortinet FortiGuard Labs researcher Cara Lin said in an analysis published last week.The First seen…
-
Banks must keep ahead of risks and reap AI rewards
by
in SecurityNewsAI has transformed banking across APAC. But is this transformation secure? First seen on theregister.com Jump to article: www.theregister.com/2025/01/21/banks_must_keep_ahead_of/
-
Open Banking Shortcomings Threaten UK Global Leadership Position Research Finds
by
in SecurityNewsAPIContext has released its UK Open Banking API Performance 2023-2024 Report, the annual analysis of the performance of the open banking APIs exposed by the large CMA9 UK banks (the nine largest banks required by UK law to provide open banking services), traditional High Street banks, credit card providers, building societies, and new digital banks (neobanks).…
-
How AI and ML are transforming digital banking security
by
in SecurityNewsIn this Help Net Security interview, Nuno Martins da Silveira Teodoro, VP of Group Cybersecurity at Solaris, discusses the latest advancements in digital banking security. He … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/01/14/nuno-martins-da-silveira-teodoro-solaris-ai-digital-banking-security/
-
The SBI fake banking app shows that SMS authentication has had its day
by
in SecurityNewsAs a company fortunate enough to have and maintain our own pentesting team, we often do outreach with other organizations to assist with or provide our expertise in offensive … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/01/10/sms-authentication-weakness/
-
US Treasury Department workstations breached in attack attributed to China
by
in SecurityNews
Tags: access, advisory, apt, attack, banking, ceo, china, cloud, cybersecurity, government, hacking, infrastructure, intelligence, microsoft, russia, saas, service, supply-chain, threat, update, vulnerabilityThe US Department of the Treasury revealed on Monday that an attacker was able to bypass security, access an undisclosed number of Treasury workstations, and steal “certain unclassified documents,” in what it called a “major cybersecurity incident”.In a letter to the US Senate’s Committee on Banking, Housing and Urban Affairs, the Treasury Department said that…
-
Treasury Department Hit by Major Cybersecurity Incident, China Suspected
by
in SecurityNewsThe U.S. Department of the Treasury has disclosed a major cybersecurity incident, potentially compromising sensitive government information. In a letter to the Senate Committee on Banking, Housing, and Urban Affairs,... First seen on securityonline.info Jump to article: securityonline.info/treasury-department-hit-by-major-cybersecurity-incident-china-suspected/
-
IAM Predictions for 2025: Identity as the Linchpin of Business Resilience
by
in SecurityNews
Tags: access, ai, apple, attack, authentication, banking, breach, business, cloud, compliance, corporate, credentials, crime, data, deep-fake, detection, finance, iam, identity, malicious, microsoft, mobile, office, passkey, password, privacy, regulation, resilience, risk, service, supply-chain, theft, threat, tool, vulnerabilityIAM Predictions for 2025: Identity as the Linchpin of Business Resilience madhav Thu, 12/19/2024 – 05:33 As we look toward 2025, the lessons of 2024 serve as a stark reminder of the rapidly evolving identity and access management (IAM) landscape. The numbers tell the story: The latest Identity Theft Resource Center report indicates that consumers…
-
India Sees Surge in API Attacks, Especially in Banking, Utilities
The number of DDoS-related incidents targeting APIs have jumped by 30x compared with traditional Web assets, suggesting that attackers see the growing API landscape as the more attractive target. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/india-surge-api-attacks-banking-utilities
-
Key strategies to enhance cyber resilience
by
in SecurityNews
Tags: attack, awareness, backup, banking, breach, business, ceo, compliance, control, crowdstrike, cyber, cybersecurity, data, finance, government, group, healthcare, incident, incident response, infrastructure, insurance, metric, network, phishing, programming, ransom, ransomware, resilience, risk, security-incident, service, skills, software, strategy, supply-chain, technology, threat, training, update, vulnerability, windowsThe faulty CrowdStrike software update that triggered IT outages on a global scale in July was a sobering reminder of the importance of incident response and business continuity plans.The update caused more than eight million Windows devices to crash and take down with them airline reservation systems, hospital and government services, financial and banking applications…
-
Balancing security and user experience to improve fraud prevention strategies
by
in SecurityNewsIn this Help Net Security interview, Jennifer White, Senior Director for Banking and Payments Intelligence at J.D. Power, discusses how financial institutions can improve … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/17/jennifer-white-j-d-power-fraud-protection/
-
Hackers seek ransom after getting SSNs, banking info from state gov’t portal
by
in SecurityNewsRhode Island said it’s being extorted after hack of Deloitte-run benefits system. First seen on arstechnica.com Jump to article: arstechnica.com/tech-policy/2024/12/hackers-infiltrate-rhode-island-benefits-portal-forcing-state-to-shut-it-down/
-
New Android Banking Malware Attacking Indian Banks To Steal Login Credentials
by
in SecurityNewsResearchers have discovered a new Android banking trojan targeting Indian users, and this malware disguises itself as essential utility services to trick users into providing sensitive information. The malware has already compromised 419 devices, intercepted 4,918 SMS messages, and stolen 623 banking credentials. As this active campaign continues, the number of affected devices and stolen…
-
Thales and Imperva Win Big in 2024
by
in SecurityNews
Tags: access, api, application-security, attack, authentication, banking, business, ciso, cloud, communications, compliance, conference, control, cyber, cybersecurity, data, ddos, defense, encryption, firewall, gartner, group, guide, iam, identity, infosec, insurance, intelligence, malicious, mfa, microsoft, monitoring, privacy, risk, saas, service, software, strategy, threat, usaThales and Imperva Win Big in 2024 madhav Fri, 12/13/2024 – 09:36 At Thales and Imperva, we are driven by our commitment to make the world safer, and nothing brings us more satisfaction than protecting our customers from daily cybersecurity threats. But that doesn’t mean we don’t appreciate winning the occasional award. In the year…
-
How Deepfake Tech Elevates Risk in Banking (and How MSSPs Can Help)
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/perspective/how-deepfake-tech-elevates-risk-in-banking-and-how-mssps-can-help
-
AppLite: A New AntiDot Variant Targeting Mobile Employee Devices
by
in SecurityNewsOur zLabs team has identified an extremely sophisticated mishing (mobile-targeted phishing) campaign that delivers malware to the user’s Android mobile device enabling a broad set of malicious actions including credential theft of banking, cryptocurrency and other critical applications. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/applite-a-new-antidot-variant-targeting-mobile-employee-devices/
-
Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam
by
in SecurityNewsCybersecurity researchers have shed light on a sophisticated mobile phishing (aka mishing) campaign that’s designed to distribute an updated version of the Antidot banking trojan.”The attackers presented themselves as recruiters, luring unsuspecting victims with job offers,” Zimperium zLabs Vishnu Pratapagiri researcher said in a new report.”As part of their fraudulent hiring process, the First seen…
-
New AppLite Malware Targets Banking Apps in Phishing Campaign
by
in SecurityNewsNew AppLite Banker malware targets Android devices, employing advanced phishing techniques to steal credentials and data First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/applite-malware-targets-banking/
-
A Secure Future in Australia with the Scam-Safe Accord
by
in SecurityNewsThe Birth of the Scam-Safe Accord The Scam-Safe Accord (also called the ScamSafe Accord or Scam Safe Accord) is an initiative launched by the Australian Banking Association in response to the increasing prevalence of scams and fraud targeting consumers in the financial sector. Australia’s top banks and financial institutions, usually fierce competitors, came together with……
-
New DroidBot Android Spyware Targeting Banking and Crypto Users
DroidBot, a sophisticated Android RAT, is targeting individuals and financial institutions across Europe. First seen on hackread.com Jump to article: hackread.com/droidbot-android-spyware-hit-banking-crypto-users/
-
Cryptohack Roundup: Solana npm Package Attack’s Wallet Risks
Also, Man Who Stole $3.5M of Cloud Computing to Mine $1M in Crypto Pleads Guilty. This week, Solana npm package attack, a Brazilian banking giant entered crypto trading and a Nebraska man pleaded guilty to cryptojacking. Australia tightened rules for crypto businesses and crypto losses dropped in 2024 and DMM Bitcoin will cease operations. First…
-
Cryptohack Roundup: Solana npm Package Attack Risks Wallets
Also, Man Who Stole $3.5M of Cloud Computing to Mine $1M in Crypto Pleads Guilty. This week, Solana npm package attack, a Brazilian banking giant entered crypto trading and a Nebraska man pleaded guilty to cryptojacking. Australia tightened rules for crypto businesses and crypto losses dropped in 2024 and DMM Bitcoin will cease operations. First…