Finance

Cyber gang that stole $2 million from Barclays sentenced to 24 years

By

Nine men were sentenced this week, with the group's leader getting five-and-a-half years.

Report: Bank of England to helm pen-testing effort for UK's finance sector

By

The bank also oversaw last year's "Waking Shark II" simulated cyber attacks throughout London.

Federal watchdog says SEC security issues put financial data at risk

Federal watchdog says SEC security issues put financial data at risk

By

According to the U.S. Government Accountability Office (GAO), SEC, among other lapses, failed to adequately oversee a contractor, which migrated its financial system to a new data center.

The cool factor: New tech in banking has an edge

The cool factor: New tech in banking has an edge

Disruption is expected; financial crime should be, too.

JPMorgan Chase CEO details company's cyber threats in annual letter

By

Jamie Dimon wrote that the bank will have spent more than $250 million annually by the end of the year on cyber security and faces increasingly complex and more dangerous" attacks.

Regulator alerts banks of mounting ATM attacks, DDoS threat

By

The Federal Financial Institutions Examination Council (FFIEC) notified the industry on Wednesday.

Cryptocurrency mining malware discovered on surveillance DVRs

Cryptocurrency mining malware discovered on surveillance DVRs

By

Cryptocurrency mining malware has been discovered on DVRs that record footage taken by surveillance cameras.

Two men plead guilty to role in worldwide hacking operation

Two men plead guilty to role in worldwide hacking operation

By

The men, who are New York and Massachusetts residents, led "cash out" operations for an international scheme.

Coinbase responds to information disclosure, user enumeration, other concerns

Coinbase responds to information disclosure, user enumeration, other concerns

By

Coinbase responded to a researcher's claims that the San Francisco-based Bitcoin exchange is vulnerable to information disclosure, user enumeration, and lack of rate limitation for sending money requests.

S&P lowers Target's credit rating following breach

By

Poor sales and a drop in income in the wake of a high-profile breach prompt Standards & Poor to downgrade Target's credit rating one level.

Malware in 34 Spec's stores, payment data compromised for 550K

By

About 550,000 customers, as well as employees, of Texas-based Spec's may have had personal information compromised in a malware attack that dates back to Oct. 31, 2012.

Experts suggest transaction malleability did not ruin Mt. Gox

Experts suggest transaction malleability did not ruin Mt. Gox

By

In a paper released on Wednesday, Swiss researchers suggest the transaction malleability Bitcoin flaw did not ruin Mt. Gox, despite what the Tokyo-based company announced.

Cryptocurrency-mining apps discovered on Google Play store

By

At least two apps have been discovered on the official Google Play store that mine for cryptocurrencies, but overheating mobile devices and decreased performance may tip off Android users.

Building security around Bitcoin

Building security around Bitcoin

Similar to building a multi-layer security strategy for a business, before deciding what security controls should be implemented to protect Bitcoin transactions, we first need to identify the targets.

Attackers get cash out of ATMs by sending SMS messages

Attackers get cash out of ATMs by sending SMS messages

By

Criminals are using SMS messages to get cash out of ATMs, according to Symantec.

About 200,000 Mt. Gox Bitcoins, $115 million, found in old-format wallet

By

About 200,000 Mt. Gox Bitcoins have been recovered in an obsolete old-format wallet, bringing the total amount of the virtual currency allegedly pilfered down to 650,000 Bitcoins.

$30 RAT, WinSpy, involved in two phishing campaigns

$30 RAT, WinSpy, involved in two phishing campaigns

By

Researchers with FireEye have identified two phishing campaigns involving a remote administration tool known as WinSpy, that also comes packaged with an Android component known as GimmeRAT.

Three fraudsters indicted for roles in global cyber crime scheme

Three fraudsters indicted for roles in global cyber crime scheme

By

Three men on their way to scoring more than $15 million in a cyber crime scheme instead scored formal charges in New Jersey District Court for their alleged roles in the international conspiracy, according to an indictment.

Transaction malleability Bitcoin flaw may have ruined Mt. Gox

Transaction malleability Bitcoin flaw may have ruined Mt. Gox

By

Mt. Gox bankruptcy documents filed in the U.S. on Sunday refer to a Bitcoin flaw known as transaction malleability, which may have caused the Tokyo-based company to lose half a billion dollars in the virtual currency.

Mt. Gox hit by DDoS attacks before massive theft, 150,000 per second

Mt. Gox hit by DDoS attacks before massive theft, 150,000 per second

By

Massive distributed denial-of-service attacks plagued Mt. Gox in early February, not long before the former world's biggest Bitcoin exchange was hit by an alleged separate attack that bankrupted the company, according to a report.

Zeus-in-the-mobile variant uses security firm's name to gain victims' trust

Zeus-in-the-mobile variant uses security firm's name to gain victims' trust

By

Android users are tricked into installing a spurious "security" app, which allows fraudsters to bypass one-time password authentication for online banking.

Sally Beauty investigates breach, no evidence of stolen payment cards

By

An attempted intrusion is still being investigated, but Texas-based Sally Beauty has no evidence to suggest that 282,000 payment cards found in an online underground crime market were pilfered from the worldwide retailer.

Flexcoin hacked, Mt. Gox code leaks, but Bitcoin demand still grows

Flexcoin hacked, Mt. Gox code leaks, but Bitcoin demand still grows

By

On the same day that an attacker stole 896 bitcoins from Bitcoin bank Flexcoin, an individual allegedly posted the Mt. Gox code on Pastebin.

Time for a charge card overhaul

Time for a charge card overhaul

We've all been breached, but there are steps we can take to evolve the system, says security strategist Dan Srebnick.

Man charged with using SQL injection to access Federal Reserve data

By

From October 2012 to February 2013, Lauri Love allegedly worked with other hackers to steal and publicly distribute personal information housed on the Federal Reserve network.

Tokyo-based Bitcoin exchange Mt. Gox files for bankruptcy protection

By

Mt. Gox announced on Friday that it has filed for bankruptcy protection in Japan after hackers took advantage of weaknesses in its computer systems to purloin hundreds of thousands of bitcoins.

Poisoned YouTube ads serve Caphaw banking trojan

Poisoned YouTube ads serve Caphaw banking trojan

By

YouTube's ad network was compromised to host the Styx exploit kit, researchers found.

Firm detects Zeus variant targeting POS terminals

Firm detects Zeus variant targeting POS terminals

By

The malware is based on the leaked code of Zeus and RAM-scraping malware.

Video shows more info was stolen in Las Vegas Sands attack

By

Officials are investigating an 11-minute video posted on YouTube that shows new information attackers may have obtained after hacking websites and internal systems belonging to Las Vegas Sands Corp.

Trade groups from finance, retail sectors team for security initiative

By

The associations will explore options for improved information sharing and implementation of card security technology.

Sign up to our newsletters

POLL