Finance News, Articles and Updates

FakeBank malware accesses sensitive SMS banking messages

A newly discovered mobile malware program that primarily targets Russian banking customers can take over victims' SMS capabilities, allowing cybercriminals to intercept text messages that contain bank security codes, and then use those codes to reset bank account passwords.

Proposed law would levy substantial penalties on breached credit reporting agencies

A newly proposed legislation introduced by two Democratic U.S. senators aims to impose stiff, mandatory penalties on credit reporting agencies (CRAs) like that fail to protect consumers' sensitive information from data breaches.

SWIFT framework took effect Jan. 1

While organizations often drag their feet in adopting new cyber requirements, playing the odds that either they won't be breached or found out by regulators, a bank's compliance with the SWIFT framework is transparent to other members of the global messaging platform.

Cybercriminals dropping Bitcoin for more private cryptocurrencies

Cybercriminals appear to be dropping Bitcoin for more private cryptocurrencies as law enforcement develop new techniques to monitor transactions.

Zeus Panda targeting holiday shoppers

With just a few more shopping days available before Christmas, cybercriminals are taking advantage of online shoppers' frenzied buying habits by injecting the Zeus Panda banking trojan into a wide range of retail and travel sites, along with spreading the malware through malspam.

Prilex and Cutlet Maker ATM malwares uniquely target users

Trend Micro researchers spotted two ATM malware families which raise concern of what's to come.

Starbucks free Wi-Fi caught secretly mining cryptocurrency

A tech CEO noticed the free Wi-Fi at his local Starbucks didn't exactly come without a price after discovering the network was to mining cryptocurrency.

Fake Gunbot Bitcoin tool spreads Orcus RAT via spam

A remote access trojan is targeting Bitcoin investors using spam emails claiming to advertise a new Bitcoin trading bot.

Cyberthieves loot tens of millions in bitcoin from NiceHash cryptocurrency marketplace

Cyberthieves have raided the coffers of cryptomining marketplace NiceHash, apparently stealing more than $60 million in bitcoin after compromising its payment system and online wallet.

Optiv Security Acquires Decision Lab

Optiv Security reported today it has acquired the big data, automation and orchestration services company Decision Lab.

New IcedID banking trojan already rivals worst of its malware peers

A newly discovered banking trojan, targeting U.S. financial institutions and services since at least September, is already as advanced in its capabilities as its predecessors Zeus, Gozi, and Dridex, researchers from IBM have reported.

Marcher banking trojan campaign attacks Austrians' finances three different ways

An attack campaign targeting Android users in Austria has been employing a unique trio of techniques to steal their funds: a credentials phishing web page, malicious banking app overlays, and credit card phishing screens.

Silence trojan targets Russian financial intuitions, mimics Carbanak gang

A new banking trojan dubbed "Silence" is using methods similar to those used by the Carbanak gang to target Russian financial institutions.

Cybercrime Blotter: Man who impersonated financial institution pleads guilty to computer intrusion

Dwayne Hans, 27, pleaded guilty last week to illegally accessing a website operated by the U.S. General Services Administrationin order to redirect more than $1.5 million in government payments to his own personal accounts.

Land of the rising trojan: Ursnif banking malware surges in Japan

Malspam campaigns designed to spread the Ursnif banking trojan have been heavily targeting Japanese banks and payment card providers in 2017, especially since this past September, according to IBM's X-Force research.

Swiss phishing scam aims to download Retefe banking trojan

The details of a phishing campaign currently being run in Switzerland that uses a tax dodge to entice its victims to open an attached file which will then download the Retefe banking trojan have been released by PhishMe.

Criminals mimic popular cryptocurrency exchange in Google Play

Cybercriminals took advantage of popular cryptocurrency exchange Poloniex's lack of an official app to dupe unsuspecting users into downloading credential stealing malware.

Are drive by cryptominers more profitable than drive-by-malware?

As cryptocurrencies grow in value researchers have taken note that cybercriminals are adapting old drive-by download style attack methods.

Malicious Chrome extension mines Monero, hijacks Gmail and Facebook accounts

A new and very ambitious malicious Chrome extension called Ldi has been uncovered, one that injects the Coinhive cryptocurrency miner into the target computer, accesses the victim's Gmail and Facebook accounts and registers newly created domains in that person's name.

TrickBot tests waters in Latin America in expansion of global reach

The cybergang behind the Trickbot banking trojan appears to have set its sights on Latin American as it continues to expands its list of global targets.

Greek judges OK Russian extradition to the U.S. to face fraud charges

Greece officials have decided to allow the extradition of a Russian hacker suspected of laundering money through a bitcoin exchange to the United States.

SEC chairman defends timing of agency's breach disclosure to Senators

SEC Chairman Jay Clayton confirmed in testimony before the Senate Banking Committee on Tuesday that a 2016 breach of the regulatory body's EDGAR document filing system was made possible due to a defect in custom software code that was subsequently remediated.

Tech support scam used to spread cryptominer Coinhive's Monero

An EITest campaign is using tech support scams to deliver Coinhive's Monero Miner, the same JavaScript cryptocurrency miner silently being used to exploit visitors to The Pirate Bay site