Finance News, Articles and Updates

$1.2B worth of crypto stolen since 2017, GDPR could hinder cybercrime research

Cybercriminals managed to steal $1.2 billion in cryptocurrency in reported and unreported theft since 2017 as some researchers fear new data privacy laws may negatively impact cybercrime studies.

Pen testers break down bank security flaws

While banks have built effective barriers for external attacks, researchers warn they have not done nearly as much work to fight threats on their internal networks.

Polish Credit Office to move up to 140M credit records to blockchain

The Polish Credit Office (BIK) has announced that it will be moving up to 140 million credit records to Blockchain in what is seen as a significant development in the use of Blockchain for secure document management.

Third-party software vulnerability results in Mexican bank heist scoring millions

Mexican authorities are investigating suspect a bank hack that siphoned hundreds of millions of pesos out of at least five banks.

Cybersecurity salaries highest in retail sector

A recent study found cybersecurity salaries in the retail sector are among the highest in the field while those in education and telecommunication are some of the lowest.

Equifax data breach cost hits $242 million

The massive data breach that compromised the data of 147.9 million Equifax customers last year has cost the company more than $242 million in related expenses, much of which has been covered by its cybersecurity insurance.

Report: Secret Service warns of crooks swapping out chips on stolen debit cards

Financial institutions were reportedly warned in a memo by the U.S. Secret Service of a new scam whereby thieves intercept debit cards in the mail, remove their chips and replace them with older or invalid ones, and begin using the stolen chips when their rightful owner activates the sabotaged card.

Researchers find new ATM jackpotting malware, possibly under development

Researchers have uncovered a new ATM jackpotting malware program that features a smaller system footprint and a simpler graphical user interface than its typical of its brethren.

Government push for email authentication helps cut back on BEC scams, study

Despite major investments in cybersecurity, email fraud continues to rise as cybercriminals' tactics become more advanced.

Selfies sold alongside personal info pose new threats to wallets

Cybercriminals are selling selfies alongside their data dumps on Russian language dark web forums offering potential buyers more options to exploit victims.

Evolved Prilex malware lets cybercriminals clone chip and PIN cards

Prilex, a point-of-sale malware program that's historically been used to steal money or payment card information Brazilian ATMs and retailers, has now evolved into a comprehensive tool suite that lets cybercriminals steal chip and PIN card data and create their own functioning, fraudulent plastic cards.

Bitcoin stealing malware distributed on download.com for nearly a year

Bitcoin stealing malware that swaps user accounts with that of the attacker was hosted on Download.com servers for nearly a year.

Chase 'glitch' grants customers access to random accounts

Multiple Chase Bank customer accounts were exposed after what was described as a "glitch" granted customers looking to log into their own accounts access to the accounts of random customers instead.

Two charged in ATM 'jackpotting' scheme that yielded $50K

Argenys Rodriguez, 21, of Springfield, Mass. and 31-year-old Alex Alberto Fajin-Diaz, a citizen of Spain, were charged in U.S. District Court in Hartford, Conn.

Report: In a U.S. first, jackpotting attacks are forcing ATMs to 'make it rain'

Organized criminals are physically accessing ATM machines and infecting them with malware that makes them spit out cash, in what reports are calling the first-ever confirmed case of "jackpotting" attacks in the U.S.

Researchers trace BitPaymer ransomware back to Dridex developers

A relatively new ransomware that infected Scottish hospitals last summer appears to be created by the same developers who are responsible for the dreaded Dridex banking trojan.

North Korea-linked trojan switches targets from banks to cryptocurrency enthusiasts

Originally used by reputed North Korean hackers to attack the global banking sector, the Ratankba downloader trojan has been repurposed into a PowerShell-based variant that appears to be targeting small, non-financial organizations and individuals with an interest in cryptocurrency, an analysis shows.

FakeBank malware accesses sensitive SMS banking messages

A newly discovered mobile malware program that primarily targets Russian banking customers can take over victims' SMS capabilities, allowing cybercriminals to intercept text messages that contain bank security codes, and then use those codes to reset bank account passwords.

Proposed law would levy substantial penalties on breached credit reporting agencies

A newly proposed legislation introduced by two Democratic U.S. senators aims to impose stiff, mandatory penalties on credit reporting agencies (CRAs) like that fail to protect consumers' sensitive information from data breaches.

SWIFT framework took effect Jan. 1

While organizations often drag their feet in adopting new cyber requirements, playing the odds that either they won't be breached or found out by regulators, a bank's compliance with the SWIFT framework is transparent to other members of the global messaging platform.

Cybercriminals dropping Bitcoin for more private cryptocurrencies

Cybercriminals appear to be dropping Bitcoin for more private cryptocurrencies as law enforcement develop new techniques to monitor transactions.

Zeus Panda targeting holiday shoppers

With just a few more shopping days available before Christmas, cybercriminals are taking advantage of online shoppers' frenzied buying habits by injecting the Zeus Panda banking trojan into a wide range of retail and travel sites, along with spreading the malware through malspam.

Prilex and Cutlet Maker ATM malwares uniquely target users

Trend Micro researchers spotted two ATM malware families which raise concern of what's to come.

Starbucks free Wi-Fi caught secretly mining cryptocurrency

A tech CEO noticed the free Wi-Fi at his local Starbucks didn't exactly come without a price after discovering the network was to mining cryptocurrency.

Fake Gunbot Bitcoin tool spreads Orcus RAT via spam

A remote access trojan is targeting Bitcoin investors using spam emails claiming to advertise a new Bitcoin trading bot.