Menghan Xiao

Criminals created a lookalike version of a popular ChatGPT Chrome browser extension and launched a paid ad campaign for it on Google search driving 9,000 downloads.

The practice guide, part of the NSA's Enduring Security Framework, was developed through a public-private partnership to thwart risks that threaten critical infrastructure and national security systems.

Russia's war with Ukraine has triggered a surge in ideologically motivated hacktivism that persists to this day, posing by far the most significant impact on the cyber threat landscape for financial services, according to a report by the Financial Services Information Sharing and Analysis Center.

Conor Brian Fitzpatrick, also known as "Pompompurin" within the online hacking community, was arrested at his New York home around 4:30 p.m. last Wednesday and charged with one count of conspiracy to commit access device fraud, an FBI agent said in a sworn statement filed in Southern District of New York court last week.

Among the proposed rules are requirements for broker-dealers to notify their customers about the data breach within 30 days, while immediately informing the SEC of cyber incidents.

Google to join FS-ISAC as first cloud provider, enhance supply chain security in financial services.

Microsoft patches fixes two zero-day bugs as part of March Patch Tuesday roundup. 

While the education and healthcare sectors have been regular targets of ransomware, experts say recent incidents are reflecting increasingly aggressive extortion tactics as well as a more heightened — and crueler — focus on exploiting weak or vulnerable groups as a means of upping the pressure on organizations to pay.

Google says threat actors can successfully evade detection in SmartScreen - a Microsoft browser security feature - by delivering MSI files with "an invalid but specifically crafted Authenticode signature" to deliver Magniber ransomware.

The step comes under a plan announced last May to make 2FA mandatory for all contributors by the end of 2023. If successful, it could help to better secure the accounts of over 100 million users.