Finance

Protecting the vault: First Financial Bank's go-to solution

Protecting the vault: First Financial Bank's go-to solution

By

Needing more than signature-based remedies, First Financial Bank found a way to close the gap between what exists and what's possible. Greg Masters reports.

U.S. Bank ordered to refund $48M to customers

By

A Consumer Financial Protection Bureau campaign to curb deceptive banking activities has resulted in U.S. Bank being ordered to refund $48 million.

Citadel used in APT attacks against petrochemical firms

Citadel used in APT attacks against petrochemical firms

By

In an interesting twist, financial malware Citadel was used to infect firms outside of the finance sector via APT attacks, Trusteer found.

Nigerian police search for ringleader in major bank heist

By

The suspect, Godswill Oyegwa Uyoyou, conspired with others to hack bank systems and divert 6.28 billion Naira to mule accounts.

JPMorgan Chase might struggle to patch vulnerabilities quickly enough

By

This summer's attack on the bank's network might have helped hackers detect subtle vulnerabilities they could exploit in the future.

Merchant Financial Cybersecurity Partnership hosts security summit

By

The "Cybersecurity: Protecting the Payments Systems" summit will encourage coordination between all cybersecurity and industry entities.

'KorBanker' steals SMS messages, takes authentication codes in the process

'KorBanker' steals SMS messages, takes authentication codes in the process

By

Android devices in Korea have primarily been impacted by the malware.

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

Reported breaches involving zero-day bug at JPMorgan Chase, other banks

By

Hackers exploited a zero-day vulnerability and gained access to sensitive information from JPMorgan Chase and at least four other financial institutions, reports indicate.

Phishing campaign targeting users of Bitcoin wallet Blockchain.info

By

More than 12,000 messages have been sent to more than 400 companies as part of a phishing campaign targeting users of Bitcoin wallet Blockchain.info.

Skimming con drains pension of retired officer in Philippines

By

The National Bureau of Investigation (NBI) warned that the incident showcases the growing incidence of ATM skimming fraud.

PCI council releases third-party security assurance guidance

PCI council releases third-party security assurance guidance

By

The guidance is meant to help merchants and third parties better understand their roles and responsibilities in the payment security ecosystem.

Black Hat: Hackers execute code on mobile POS devices, play their version of Flappy Bird

Black Hat: Hackers execute code on mobile POS devices, play their version of Flappy Bird

By

Two hackers demonstrated how device vulnerabilities could allow attackers to access sensitive card data using multiple attack vectors.

Latest Citadel trick allows RDP access after malware's removal

Latest Citadel trick allows RDP access after malware's removal

By

Trusteer, an IBM company, said the new Citadel configuration was detected this month.

Neverquest trojan targets regional banks in Japan

By

Symantec researchers found a new variant of the banking trojan.

Op Emmental spoofs bank sites, uses Android malware to maintain account access

Op Emmental spoofs bank sites, uses Android malware to maintain account access

By

On Tuesday, Trend Micro released a report detailing Operation Emmental, which targets victims in Austria, Switzerland, Sweden and Japan.

Report: Zero-day attack used in 2010 NASDAQ breach

By

Bloomberg revealed that hackers used two zero-day flaws to breach NASDAQ's servers in 2010.

'Neverquest' banking trojan evolves as U.S. attacks continue

By

On Wednesday, Symantec released details on the malware's developed features.

Two new Boleto malware families discovered

Two new Boleto malware families discovered

By

Trusteer, an IBM company, revealed details on the bolware variants, which employ new tactics to manipulate web pages used for Boletos transactions.

Phishers target Silk Road Bitcoin bidders, more than $62K stolen from Australian firm

By

Australia-based Bitcoins Reserve lost more than $62,000 after phishers began targeting bidders interested in the auction of 30,000 Bitcoins confiscated in the Silk Road takedown.

Brazilian 'bolware' gang targeted $3.75B in transactions, RSA finds

Brazilian 'bolware' gang targeted $3.75B in transactions, RSA finds

By

RSA has revealed the extent of bolware attacks in the country, which have remained a pervasive issue in the financial sector.

POS vendor notifies restaurants of possible payment card breach

By

A point-of-sale and security systems vendor is notifying its customers, some of which are big restaurant chains, that its remote access service was breached.

'Lite Zeus' has fewer tricks, but updated encryption

'Lite Zeus' has fewer tricks, but updated encryption

By

The new Zeus variant employs AES-128 encryption as opposed to the older RC4 cipher used by other Zeus iterations.

Banks, payment services and social networks most targeted by phishing kits

By

Researchers with PhishLabs analyzed nearly 9,000 phishing kits and learned that financial groups and social networks are most targeted.

Zeus variant 'Maple' targets financial data of Canadian users

By

So far, the new variant has targeted 14 major banks in the country, Trusteer found.

Two 14-year-old students hack Bank of Montreal ATM during lunch break

By

After accessing operator mode on an ATM, two ninth graders in Canada promptly notified the machine's owner, the Bank of Montreal.

New tech can better protect

New tech can better protect

Chip technology can prevent criminals from producing counterfeit credit cards.

'Nemanja' POS malware compromises 1,500 devices, half a million payment cards, worldwide

'Nemanja' POS malware compromises 1,500 devices, half a million payment cards, worldwide

By

Researchers with IntelCrawler have uncovered "Nemanja," a point-of-sale malware that has infected nearly 1,500 devices and has compromised close to half a million payment cards.

Hackers exploit vulnerability to breach Pennsylvania payroll company

By

Customers of Paytime Inc. may have had personal information compromised after hackers took advantage of a vulnerability in the Pennsylvania payroll company's systems.

ATMs with biometric access to be deployed in Poland

By

Anyone needing cash in Poland soon will have access to ATMs that feature biometric security.

Phishing campaign uses VoIP to target dozens of banks, steal card data

Phishing campaign uses VoIP to target dozens of banks, steal card data

By

PhishLabs estimates that as many as 400 payment cards per day are compromised through the "vishing" attacks.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US