Finance News, Articles and Updates

Government push for email authentication helps cut back on BEC scams, study

Despite major investments in cybersecurity, email fraud continues to rise as cybercriminals' tactics become more advanced.

Selfies sold alongside personal info pose new threats to wallets

Cybercriminals are selling selfies alongside their data dumps on Russian language dark web forums offering potential buyers more options to exploit victims.

Evolved Prilex malware lets cybercriminals clone chip and PIN cards

Prilex, a point-of-sale malware program that's historically been used to steal money or payment card information Brazilian ATMs and retailers, has now evolved into a comprehensive tool suite that lets cybercriminals steal chip and PIN card data and create their own functioning, fraudulent plastic cards.

Bitcoin stealing malware distributed on for nearly a year

Bitcoin stealing malware that swaps user accounts with that of the attacker was hosted on servers for nearly a year.

Chase 'glitch' grants customers access to random accounts

Multiple Chase Bank customer accounts were exposed after what was described as a "glitch" granted customers looking to log into their own accounts access to the accounts of random customers instead.

Two charged in ATM 'jackpotting' scheme that yielded $50K

Argenys Rodriguez, 21, of Springfield, Mass. and 31-year-old Alex Alberto Fajin-Diaz, a citizen of Spain, were charged in U.S. District Court in Hartford, Conn.

Report: In a U.S. first, jackpotting attacks are forcing ATMs to 'make it rain'

Organized criminals are physically accessing ATM machines and infecting them with malware that makes them spit out cash, in what reports are calling the first-ever confirmed case of "jackpotting" attacks in the U.S.

Researchers trace BitPaymer ransomware back to Dridex developers

A relatively new ransomware that infected Scottish hospitals last summer appears to be created by the same developers who are responsible for the dreaded Dridex banking trojan.

North Korea-linked trojan switches targets from banks to cryptocurrency enthusiasts

Originally used by reputed North Korean hackers to attack the global banking sector, the Ratankba downloader trojan has been repurposed into a PowerShell-based variant that appears to be targeting small, non-financial organizations and individuals with an interest in cryptocurrency, an analysis shows.

FakeBank malware accesses sensitive SMS banking messages

A newly discovered mobile malware program that primarily targets Russian banking customers can take over victims' SMS capabilities, allowing cybercriminals to intercept text messages that contain bank security codes, and then use those codes to reset bank account passwords.

Proposed law would levy substantial penalties on breached credit reporting agencies

A newly proposed legislation introduced by two Democratic U.S. senators aims to impose stiff, mandatory penalties on credit reporting agencies (CRAs) like that fail to protect consumers' sensitive information from data breaches.

SWIFT framework took effect Jan. 1

While organizations often drag their feet in adopting new cyber requirements, playing the odds that either they won't be breached or found out by regulators, a bank's compliance with the SWIFT framework is transparent to other members of the global messaging platform.

Cybercriminals dropping Bitcoin for more private cryptocurrencies

Cybercriminals appear to be dropping Bitcoin for more private cryptocurrencies as law enforcement develop new techniques to monitor transactions.

Zeus Panda targeting holiday shoppers

With just a few more shopping days available before Christmas, cybercriminals are taking advantage of online shoppers' frenzied buying habits by injecting the Zeus Panda banking trojan into a wide range of retail and travel sites, along with spreading the malware through malspam.

Prilex and Cutlet Maker ATM malwares uniquely target users

Trend Micro researchers spotted two ATM malware families which raise concern of what's to come.

Starbucks free Wi-Fi caught secretly mining cryptocurrency

A tech CEO noticed the free Wi-Fi at his local Starbucks didn't exactly come without a price after discovering the network was to mining cryptocurrency.

Fake Gunbot Bitcoin tool spreads Orcus RAT via spam

A remote access trojan is targeting Bitcoin investors using spam emails claiming to advertise a new Bitcoin trading bot.

Cyberthieves loot tens of millions in bitcoin from NiceHash cryptocurrency marketplace

Cyberthieves have raided the coffers of cryptomining marketplace NiceHash, apparently stealing more than $60 million in bitcoin after compromising its payment system and online wallet.

Optiv Security Acquires Decision Lab

Optiv Security reported today it has acquired the big data, automation and orchestration services company Decision Lab.

New IcedID banking trojan already rivals worst of its malware peers

A newly discovered banking trojan, targeting U.S. financial institutions and services since at least September, is already as advanced in its capabilities as its predecessors Zeus, Gozi, and Dridex, researchers from IBM have reported.

Marcher banking trojan campaign attacks Austrians' finances three different ways

An attack campaign targeting Android users in Austria has been employing a unique trio of techniques to steal their funds: a credentials phishing web page, malicious banking app overlays, and credit card phishing screens.

Silence trojan targets Russian financial intuitions, mimics Carbanak gang

A new banking trojan dubbed "Silence" is using methods similar to those used by the Carbanak gang to target Russian financial institutions.

Cybercrime Blotter: Man who impersonated financial institution pleads guilty to computer intrusion

Dwayne Hans, 27, pleaded guilty last week to illegally accessing a website operated by the U.S. General Services Administrationin order to redirect more than $1.5 million in government payments to his own personal accounts.