Finance

'Cash out' crew member sentenced to 21 months in prison

By

Robert Dubuc hacked into various financial accounts and used them to divest money to other accounts and buy pre-paid debit cards.

Hacker sentenced to 30 months in prison and $300k restitution

Hacker sentenced to 30 months in prison and $300k restitution

By

Lamar Taylor was sentenced in New Jersey this past week for allegedly participating in a cybercrime scheme that accounted for more than $15 million.

TD Bank reaches $850K breach settlement with states

By

The settlement brings some resolve to the 2012 breach, where the bank lost unencrypted backup tapes.

Hackers targeted Chase Corporate Challenge site to find infiltration route

By

The Corporate Challenge site was one of many avenues tested by persistent attackers, reports reveal.

JPMorgan hackers targeted 13 firms, including Fidelity, report reveals

By

Fidelity claims, however, that no customer data appears to have been stolen.

Bond insurer MBIA investigates potential breach of client data

By

MBIA says clients of its subsidiary, Cutwater Asset Management, were impacted.

ATM malware 'Tyupkin' found on over 50 machines in Europe, spreads to U.S.

ATM malware 'Tyupkin' found on over 50 machines in Europe, spreads to U.S.

By

The malware allowed criminals, with physical access to ATMs, to steal millions, Kaspersky revealed.

Report: After Chase disclosure, bank regulator rallies execs to shore up defenses

Report: After Chase disclosure, bank regulator rallies execs to shore up defenses

By

As the extent of the Chase breach surfaces, experts urge financial institutions to prepare for continued attacks or face impending consequences.

Protecting the vault: First Financial Bank's go-to solution

Protecting the vault: First Financial Bank's go-to solution

By

Needing more than signature-based remedies, First Financial Bank found a way to close the gap between what exists and what's possible. Greg Masters reports.

U.S. Bank ordered to refund $48M to customers

By

A Consumer Financial Protection Bureau campaign to curb deceptive banking activities has resulted in U.S. Bank being ordered to refund $48 million.

Citadel used in APT attacks against petrochemical firms

Citadel used in APT attacks against petrochemical firms

By

In an interesting twist, financial malware Citadel was used to infect firms outside of the finance sector via APT attacks, Trusteer found.

Nigerian police search for ringleader in major bank heist

By

The suspect, Godswill Oyegwa Uyoyou, conspired with others to hack bank systems and divert 6.28 billion Naira to mule accounts.

JPMorgan Chase might struggle to patch vulnerabilities quickly enough

By

This summer's attack on the bank's network might have helped hackers detect subtle vulnerabilities they could exploit in the future.

Merchant Financial Cybersecurity Partnership hosts security summit

By

The "Cybersecurity: Protecting the Payments Systems" summit will encourage coordination between all cybersecurity and industry entities.

'KorBanker' steals SMS messages, takes authentication codes in the process

'KorBanker' steals SMS messages, takes authentication codes in the process

By

Android devices in Korea have primarily been impacted by the malware.

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

By

Hackers exploited a zero-day vulnerability and gained access to sensitive information from JPMorgan Chase and at least four other financial institutions, reports indicate.

Phishing campaign targeting users of Bitcoin wallet Blockchain.info

By

More than 12,000 messages have been sent to more than 400 companies as part of a phishing campaign targeting users of Bitcoin wallet Blockchain.info.

Skimming con drains pension of retired officer in Philippines

By

The National Bureau of Investigation (NBI) warned that the incident showcases the growing incidence of ATM skimming fraud.

PCI council releases third-party security assurance guidance

PCI council releases third-party security assurance guidance

By

The guidance is meant to help merchants and third parties better understand their roles and responsibilities in the payment security ecosystem.

Black Hat: Hackers execute code on mobile POS devices, play their version of Flappy Bird

Black Hat: Hackers execute code on mobile POS devices, play their version of Flappy Bird

By

Two hackers demonstrated how device vulnerabilities could allow attackers to access sensitive card data using multiple attack vectors.

Latest Citadel trick allows RDP access after malware's removal

Latest Citadel trick allows RDP access after malware's removal

By

Trusteer, an IBM company, said the new Citadel configuration was detected this month.

Neverquest trojan targets regional banks in Japan

By

Symantec researchers found a new variant of the banking trojan.

Op Emmental spoofs bank sites, uses Android malware to maintain account access

Op Emmental spoofs bank sites, uses Android malware to maintain account access

By

On Tuesday, Trend Micro released a report detailing Operation Emmental, which targets victims in Austria, Switzerland, Sweden and Japan.

Report: Zero-day attack used in 2010 NASDAQ breach

By

Bloomberg revealed that hackers used two zero-day flaws to breach NASDAQ's servers in 2010.

'Neverquest' banking trojan evolves as U.S. attacks continue

By

On Wednesday, Symantec released details on the malware's developed features.

Two new Boleto malware families discovered

Two new Boleto malware families discovered

By

Trusteer, an IBM company, revealed details on the bolware variants, which employ new tactics to manipulate web pages used for Boletos transactions.

Phishers target Silk Road Bitcoin bidders, more than $62K stolen from Australian firm

By

Australia-based Bitcoins Reserve lost more than $62,000 after phishers began targeting bidders interested in the auction of 30,000 Bitcoins confiscated in the Silk Road takedown.

Brazilian 'bolware' gang targeted $3.75B in transactions, RSA finds

Brazilian 'bolware' gang targeted $3.75B in transactions, RSA finds

By

RSA has revealed the extent of bolware attacks in the country, which have remained a pervasive issue in the financial sector.

POS vendor notifies restaurants of possible payment card breach

By

A point-of-sale and security systems vendor is notifying its customers, some of which are big restaurant chains, that its remote access service was breached.

'Lite Zeus' has fewer tricks, but updated encryption

'Lite Zeus' has fewer tricks, but updated encryption

By

The new Zeus variant employs AES-128 encryption as opposed to the older RC4 cipher used by other Zeus iterations.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US