Finance News, Articles and Updates

SMBs finally getting wise to ransomware attacks

The massive cyberattacks that impact major corporations around the world may grab all the headlines, but a recent Malwarebytes survey of small and medium businesses (SMB) found that these companies are being hit just as hard, if not harder.

GSM-based credit card skimmers hit New York gas stations

GSM-based credit card skimmers capable of sending credit card data via text messages were at three New York gas stations.

Taking down Avalanche, a case study in international cooperation

International cooperation across all levels of government and law enforcement with those agencies working closely with the cybersecurity industry is the only way to bring down cybercrime operations, an FBI official said at Black Hat 2017.

Crypto mining malware a huge problem in Russia

Putin's internet advisor Herman Klimenko recently told a domestic broadcaster that nearly a quarter of the country's computers are infected with crypto mining malware.

Majority of UK boards neglecting GDPR while retail suffers breaches

Companies are likely to be closed down by swinging EU penalty fines next year given the failure of the C-Suite to prepare for GDPR despite rising breaches in the retail sector.

Major cloud service cyberattack could cost global economy $53 billion

Insurance companies could be underestimating the potential devastation major cyber-attacks may cause.

Breached companies underperform on NASDAQ, study

A recent study found breaches also temporarily hurt a company's stock market status as well.

Kaspersky: Banks, manufacturers, oil and gas utilities roughly 82% of NotPetya's corporate victims

Kaspersky further reported that 60 percent of NotPetya infections took place in Ukraine, while Russia experienced just over 30 percent.

TeleBots hacking group keeps busy under NonPetya, WannaCry smokescreen

NotPetya and WannaCry may have grabbed headlines over the last few months, but ESET points out in a recent report that the Ukraine has been under siege for months by a group dubbed TeleBots that has run a series of damaging attacks against that country.

Hackers threaten South Korean banks with DDoS attacks following record ransomware payment

The Armada Collective hacking group has issued a $315,000 ransom demand to seven South Korean banks, after threatening to launch distributed denial of service attacks against each of their organizations.

Variant of Marcher Android malware poses as Flash Player update

Developers of the Android banking malware Marcher are now disguising the trojan as an Adobe Flash Player update, the cloud security company Zscaler has reported in a Thursday blog post.

Bank websites struggle, consumer services sites shine in online trust assessment

An annual audit of more than 1,000 top websites found that 52 percent have highly trustworthy cybersecurity and privacy practices, yet 46 percent failed the assessment altogether, with bank sites surprisingly faring worst of all.

Dark endpoints costing orgs $6 million annually, study

A lack of proper endpoint security could be costing enterprises an average of $6 million a year, according to a recent survey.

Economic analysis reveals cyber-criminals make bad business people

Ransomware users could be making a lot more money, according to a new report from the University of Kent.

Chipotle breach affected restaurants across 47 states

Chipotle reported a breach which affected more than 2,000 restaurant locations and an undisclosed number of individuals across 47 states.

FTC finds thieves attempt to use stolen data within 9 min of breach

In an effort to see what happens after a data breach, the Federal Trade Commission leaked a database of 100 fake customers.

Shadow Brokers threatens monthly leak of more NSA tools to monthly subscribers

The Shadow Brokers group that has been leaking alleged NSA hacking tools, is now threatening to launch a "Dump of the Month" service that will deliver more stolen tools and data to paying subscribers.

SEC orders Chinese hackers to pay $9M for hacking law firms for trade secrets

Three Chinese hackers were ordered by a Federal Judge in Manhattan to pay a combined total of approximately $9 million in fines.

Trio of downloaders used in recent Blackmoon banking trojan campaign

Two recent cybertheft campaigns targeting South Koreans employed a three-stage downloader framework that installed the Blackmoon banking trojan on geo-targeted machines, according to a report Thursday from Fidelis.

Microsoft bug linked to spy campaigns, bank thefts reportedly took 6 months to fix

A zero-day bug in Microsoft Office and WordPad that hackers exploited to spy on targeted users, implant malware, and steal banking credentials took nine months to fix, according to news reports.

Asian Interpol operation finds nearly 9,000 CnC servers

Investigators from seven Southeast Asian nations collaborated on a joint Interpol operation that identified approximately 8,800 C2 servers in eight countries and nearly 270 compromised websites, including government portals.

Binary Options malvertising scheme delivers Gozi-like banking trojan

A recently discovered malvertising campaign called Binary Options is redirecting Internet users to a fake trading company webpage, before infecting some of these victims with a banking trojan via the RIG exploit kit.

New York men plead guilty to ATM theft scheme using skimmers and hidden cameras

Three New York-area men have separately pleaded guilty in federal court to one count of conspiracy to commit bank fraud, in relation to the theft of at least $428,581 in funds from various New Jersey banking locations.

U.S. Postal Service-themed spam delivers three banking trojans

Malwarebytes researchers spotted an uptick in United States Postal Service (USPS) themed malspam delivering one of three banking trojans.