Finance

Merchant Financial Cybersecurity Partnership hosts security summit

By

The "Cybersecurity: Protecting the Payments Systems" summit will encourage coordination between all cybersecurity and industry entities.

'KorBanker' steals SMS messages, takes authentication codes in the process

'KorBanker' steals SMS messages, takes authentication codes in the process

By

Android devices in Korea have primarily been impacted by the malware.

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

By

Hackers exploited a zero-day vulnerability and gained access to sensitive information from JPMorgan Chase and at least four other financial institutions, reports indicate.

Phishing campaign targeting users of Bitcoin wallet Blockchain.info

By

More than 12,000 messages have been sent to more than 400 companies as part of a phishing campaign targeting users of Bitcoin wallet Blockchain.info.

Skimming con drains pension of retired officer in Philippines

By

The National Bureau of Investigation (NBI) warned that the incident showcases the growing incidence of ATM skimming fraud.

PCI council releases third-party security assurance guidance

PCI council releases third-party security assurance guidance

By

The guidance is meant to help merchants and third parties better understand their roles and responsibilities in the payment security ecosystem.

Black Hat: Hackers execute code on mobile POS devices, play their version of Flappy Bird

Black Hat: Hackers execute code on mobile POS devices, play their version of Flappy Bird

By

Two hackers demonstrated how device vulnerabilities could allow attackers to access sensitive card data using multiple attack vectors.

Latest Citadel trick allows RDP access after malware's removal

Latest Citadel trick allows RDP access after malware's removal

By

Trusteer, an IBM company, said the new Citadel configuration was detected this month.

Neverquest trojan targets regional banks in Japan

By

Symantec researchers found a new variant of the banking trojan.

Op Emmental spoofs bank sites, uses Android malware to maintain account access

Op Emmental spoofs bank sites, uses Android malware to maintain account access

By

On Tuesday, Trend Micro released a report detailing Operation Emmental, which targets victims in Austria, Switzerland, Sweden and Japan.

Report: Zero-day attack used in 2010 NASDAQ breach

By

Bloomberg revealed that hackers used two zero-day flaws to breach NASDAQ's servers in 2010.

'Neverquest' banking trojan evolves as U.S. attacks continue

By

On Wednesday, Symantec released details on the malware's developed features.

Two new Boleto malware families discovered

Two new Boleto malware families discovered

By

Trusteer, an IBM company, revealed details on the bolware variants, which employ new tactics to manipulate web pages used for Boletos transactions.

Phishers target Silk Road Bitcoin bidders, more than $62K stolen from Australian firm

By

Australia-based Bitcoins Reserve lost more than $62,000 after phishers began targeting bidders interested in the auction of 30,000 Bitcoins confiscated in the Silk Road takedown.

Brazilian 'bolware' gang targeted $3.75B in transactions, RSA finds

Brazilian 'bolware' gang targeted $3.75B in transactions, RSA finds

By

RSA has revealed the extent of bolware attacks in the country, which have remained a pervasive issue in the financial sector.

POS vendor notifies restaurants of possible payment card breach

By

A point-of-sale and security systems vendor is notifying its customers, some of which are big restaurant chains, that its remote access service was breached.

'Lite Zeus' has fewer tricks, but updated encryption

'Lite Zeus' has fewer tricks, but updated encryption

By

The new Zeus variant employs AES-128 encryption as opposed to the older RC4 cipher used by other Zeus iterations.

Banks, payment services and social networks most targeted by phishing kits

By

Researchers with PhishLabs analyzed nearly 9,000 phishing kits and learned that financial groups and social networks are most targeted.

Zeus variant 'Maple' targets financial data of Canadian users

By

So far, the new variant has targeted 14 major banks in the country, Trusteer found.

Two 14-year-old students hack Bank of Montreal ATM during lunch break

By

After accessing operator mode on an ATM, two ninth graders in Canada promptly notified the machine's owner, the Bank of Montreal.

New tech can better protect

New tech can better protect

Chip technology can prevent criminals from producing counterfeit credit cards.

'Nemanja' POS malware compromises 1,500 devices, half a million payment cards, worldwide

'Nemanja' POS malware compromises 1,500 devices, half a million payment cards, worldwide

By

Researchers with IntelCrawler have uncovered "Nemanja," a point-of-sale malware that has infected nearly 1,500 devices and has compromised close to half a million payment cards.

Hackers exploit vulnerability to breach Pennsylvania payroll company

By

Customers of Paytime Inc. may have had personal information compromised after hackers took advantage of a vulnerability in the Pennsylvania payroll company's systems.

ATMs with biometric access to be deployed in Poland

By

Anyone needing cash in Poland soon will have access to ATMs that feature biometric security.

Phishing campaign uses VoIP to target dozens of banks, steal card data

Phishing campaign uses VoIP to target dozens of banks, steal card data

By

PhishLabs estimates that as many as 400 payment cards per day are compromised through the "vishing" attacks.

Cyber gang that stole $2 million from Barclays sentenced to 24 years

By

Nine men were sentenced this week, with the group's leader getting five-and-a-half years.

Report: Bank of England to helm pen-testing effort for UK's finance sector

By

The bank also oversaw last year's "Waking Shark II" simulated cyber attacks throughout London.

Federal watchdog says SEC security issues put financial data at risk

Federal watchdog says SEC security issues put financial data at risk

By

According to the U.S. Government Accountability Office (GAO), SEC, among other lapses, failed to adequately oversee a contractor, which migrated its financial system to a new data center.

The cool factor: New tech in banking has an edge

The cool factor: New tech in banking has an edge

Disruption is expected; financial crime should be, too.

JPMorgan Chase CEO details company's cyber threats in annual letter

By

Jamie Dimon wrote that the bank will have spent more than $250 million annually by the end of the year on cyber security and faces increasingly complex and more dangerous" attacks.

Sign up to our newsletters

POLL