Fooling a Voice Authentication System with an AI-Generated Voice
Schneier on Security
MARCH 1, 2023
A reporter used an AI synthesis of his own voice to fool the voice authentication system for Lloyd’s Bank.
This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.
Schneier on Security
MARCH 1, 2023
A reporter used an AI synthesis of his own voice to fool the voice authentication system for Lloyd’s Bank.
The Hacker News
DECEMBER 21, 2023
Cybersecurity researchers have discovered an updated version of an Android banking malware called Chameleon that has expanded its targeting to include users in the U.K.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
The Last Watchdog
MAY 24, 2022
Perhaps not coincidently, it comes at a time when enterprises have begun adopting passwordless authentication systems in mission-critical parts of their internal operations. Fortifications, such as multi-factor authentication (MFA) and password managers, proved to be mere speed bumps. “Our One bank in the U.S. Coming advances.
Security Boulevard
JANUARY 31, 2022
This “dangerous” and “advanced” banking malware was in the Google Play store. The post Banking Trojan in Google Play App Store—‘2FA Authenticator’ drops Vultur RAT appeared first on Security Boulevard. An Android app has been found to drop the Vultur remote access Trojan. How did that happen?
Security Affairs
FEBRUARY 19, 2024
The Android banking trojan Anatsa resurged expanding its operation to new countries, including Slovakia, Slovenia, and Czechia. In November 2023, researchers from ThreatFabric observed a resurgence of the Anatsa banking Trojan, aka TeaBot and Toddler. ” concludes the report. ” concludes the report. .
Krebs on Security
AUGUST 5, 2019
If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. Image: Hold Security.
Security Boulevard
MARCH 7, 2024
Open Banking Has Accelerated the Use of APIs – and the Need for API Security The landscape of open banking is rapidly evolving, fueled in no small part by the EU’s Revised Payment Services Directive (PSD2) aimed at enhancing authentication and regulating third-party access to financial data.
Schneier on Security
JANUARY 9, 2024
The malware captures any PINs and passwords the victim enters to unlock their device and can later use them to unlock the device at will to perform malicious activities hidden from view.
The Last Watchdog
JUNE 15, 2023
The World Wide Web Consortium today announced a standardization milestone for a new browser capability that helps to streamline user authentication and enhance payment security during Web checkout. Customer authentication For the past 15 years, e-commerce has increased as a percentage of all retail sales.
SecureWorld News
FEBRUARY 15, 2024
A sophisticated form of mobile malware dubbed "GoldPickaxe" has been uncovered, which collects facial recognition data to produce deepfake videos, enabling hackers to bypass biometric authentication protections on banking apps. Experts warn that biometric authentication alone is not foolproof.
Security Affairs
NOVEMBER 10, 2023
The Industrial and Commercial Bank of China (ICBC) suffered a ransomware attack that disrupted trades in the US Treasury market. The Industrial and Commercial Bank of China (ICBC) announced it has contained a ransomware attack that disrupted the U.S. ” reported the Financial Times. ” reported the Financial Times.
Malwarebytes
MARCH 1, 2023
Voice ID is slowly rolling out across various banks worldwide as a way to perform user authentication over the phone. At first the banking website refused to verify Cox's synthesized voice as genuine. Thankfully, you can’t just use the voice on its own and log straight in to this bank. What's next for voice AI?
Troy Hunt
SEPTEMBER 17, 2019
Allow me to be controversial for a moment: arbitrary password restrictions on banks such as short max lengths and disallowed characters don't matter. Also, allow me to argue with myself for a moment: banks shouldn't have these restrictions in place anyway. for my *online banking*. 6 characters.
Security Boulevard
SEPTEMBER 3, 2022
The financial services industry – from retail banking to insurance – is facing challenges from multiple different channels: from competitive pressure and regulation to the evolving security landscape. The post Authentication in the Finance Industry: Now and Next appeared first on Security Boulevard.
Troy Hunt
NOVEMBER 18, 2019
You know how banks really, really want to avoid their customers falling victim to phishing scams? And how banks are the shining beacons of light when it comes to demonstrating security best practices? Very convincing but banks will never send texts like these. banks will never do things that look like a phish?
Malwarebytes
JUNE 30, 2023
Voice authentication is back in the news with another tale of how easy it might be to compromise. Voice authentication is becoming increasingly popular for crucial services we make use of on a daily basis. It’s a particularly big deal for banking.
Security Affairs
FEBRUARY 27, 2020
Experts found a new version of the Cerberus Android banking trojan that can steal one-time codes generated by the Google Authenticator app and bypass 2FA. The malware implements banking Trojan capabilities such as the use of overlay attacks, the ability to intercept SMS messages and access to the contact list.
SecureList
FEBRUARY 8, 2024
The developers of banking Trojan malware are constantly looking for inventive ways to distribute theirs implants and infect victims. In a recent investigation, we encountered a new malware that specifically targets users of more than 60 banking institutions, mainly from Brazil.
Adam Levin
APRIL 10, 2019
A security analysis of 30 major banking and financial apps has shown major security holes and a lax approach to protecting user data. Among the most alarming finding was the practice of embedding and hard-coding of private certificates and API keys into banking apps. Read more about their report’s findings here.
Security Affairs
MAY 12, 2021
Malware researchers from Cleafy warn of a new Android banking trojan dubbed TeaBot (aka Anatsa) that is targeting banks in Europe. The researchers detected on 29th March 2021, for the first time the inclusion of injections against Italian banks, and in May the malware targeted Belgium and Netherlands banks.
Approachable Cyber Threats
FEBRUARY 8, 2023
Banks are taking revolutionary approaches to digitize and streamline the customer experience - but these measures could come with a cost without strategic cybersecurity measures. The world is changing, and the banking industry is evolving too. The Industry Digital banking is transforming the way people access and manage their finances.
CyberSecurity Insiders
JUNE 28, 2021
If you have seen the latest banking news, you may have seen that the Competition and Markets Authority in the UK recently launched a consultation on the future of open banking to set out the principal features for open banking in its next phase of implementation. The role of Open Banking. billion people across the world.
Heimadal Security
APRIL 20, 2023
On the 20th of April, Heimdal®’s SOC team has discovered that an unknown APT has been launching smishing attacks against Nordea Bank customers.
Schneier on Security
JUNE 20, 2018
Sounds like a really good idea, but Andreas Gutmann points out an application where this could become a vulnerability: when authenticating transactions: Transaction authentication, as opposed to user authentication, is used to attest the correctness of the intention of an action rather than just the identity of a user.
Security Affairs
MARCH 25, 2022
Anonymous announced that the affiliate group Black Rabbit World has leaked 28 GB of data stolen from the Central Bank of Russia. This week the Anonymous hacker collective claims to have hacked the Central Bank of Russia and stole accessed 35,000 documents. SecurityAffairs – hacking, Central Bank of Russia). Pierluigi Paganini.
CyberSecurity Insiders
MARCH 3, 2022
Cybersecurity researchers from Proofpoint have found that cyber crooks are easily see foxing users of Multifactor Authentication (MFA) these days by buying phishing kits that have the ability to bypass MFA. After reading the article, you might get a feeling on how to proceed with Multi-factor Authentication and keep your online activity safe.
Security Affairs
MAY 17, 2021
Bizarro is a new sophisticated Brazilian banking trojan that is targeting customers of tens of banks in Europe and South America. Researchers from Kaspersky have spotted a new sophisticated Brazilian banking trojan dubbed Bizarro that is targeting customers of tens of 70 banks in Europe and South America.
CyberSecurity Insiders
MAY 10, 2023
This is especially alarming for industries that conduct high-value transactions online, such as banking, healthcare, government, etc., Applicants must virtually verify their identity through ID Verification and Knowledge-based Authentication (KBA) and then execute the e-signature before being affixed by the notary.
Security Boulevard
MARCH 15, 2023
With recent events involving Silicon Valley Bank and Signature Bank fresh in our minds, investors and financial institutions both big and small are looking to reduce exposure and risk. The post Turbulence In Banking: Navigating the Cyber Risk appeared first on Security Boulevard.
The Last Watchdog
APRIL 10, 2019
Outside of giants JP Morgan, Bank of America, Citigroup, Wells Fargo and U.S. firms are comprised of community banks and regional credit unions. These smaller institutions, much like the giants, are hustling to expand mobile banking services. Related: OneSpan’s rebranding launch. Key takeaways: Shifting risks.
Heimadal Security
AUGUST 23, 2022
A new version of SOVA, an Android banking trojan, has been launched. SOVA, like any information stealing trojan, is built to snatch credentials and cookies, evade multi-factor authentication, and harm Android’s Accessibility Service […].
Security Affairs
JUNE 18, 2022
Malibot is a new Android malware targeting online banking and cryptocurrency wallet customers in Spain and Italy. F5 Labs researchers spotted a new strain of Android malware, named Malibot, that is targeting online banking and cryptocurrency wallet customers in Spain and Italy. ” reads the advisory published by F5 Labs. .
Thales Cloud Protection & Licensing
JANUARY 3, 2024
Navigating the Future: Strategic Insights on Identity Verification and Digital Banking in 2024 madhav Thu, 01/04/2024 - 05:32 As we embark on 2024, the digital landscape is undergoing a seismic shift, especially in identity verification and digital banking. The need for enhanced security and user convenience drives this change.
CSO Magazine
SEPTEMBER 30, 2021
CISOs looking to beef up their customer-facing authentication procedures to thwart cyberattacks need to walk a fine line. Selecting the most appropriate authentication method for your customers is something of a moving target because consumer attitudes are always changing. To read this article in full, please click here
Centraleyes
DECEMBER 28, 2023
The Chameleon Android banking trojan has undergone a formidable transformation, revealing advanced tactics and a wide target scope. Discovered by online fraud detection experts ThreatFabric, this evolving threat was initially detected in early 2023, honing in on mobile banking applications in Australia and Poland.
CyberSecurity Insiders
JULY 21, 2021
This is, in part, due to innovations such as contactless communications, different card bodies (such as metal or repurposed ocean plastic ) and biometric fingerprint authentication. No matter where you go, no matter which issuing bank you have, you will be able to pay with your card, in store and online, as long as they are EMV compliant.
CyberSecurity Insiders
JUNE 30, 2021
The benefits of Digital First banking for the consumer are clear. Whether it’s both physical and digital card issuance, real-time card management or secure, hassle-free online payments, the services on offer to consumers when it comes to Digital First banking are almost endless. But what is the benefit of Digital First for banks?
Malwarebytes
DECEMBER 21, 2022
Researchers at Cyble Research & Intelligence Labs (CRIL) have found a new version of the Android banking Trojan called Godfather. Anubis was a widely used Android banking Trojan that lost popularity after its functionality got limited by Android updates and security vendors’ detection and prevention efforts.
Security Affairs
MARCH 23, 2023
Experts warn of an emerging Android banking trojan dubbed Nexus that was employed in attacks against 450 financial applications. Cybersecurity firm experts from Cleafy warn of an emerging Android banking trojan, named Nexus, that was employed by multiple groups in attacks against 450 financial applications.
CyberSecurity Insiders
JULY 8, 2021
As we stated in a previous blog , biometric bank cards are a strong trend defining the future of payments. Whether it’s the enhanced security, the sleek and simple customer experience or the smooth enrolment process, biometric bank cards will soon set the precedent of what the payment process should look like.
Threatpost
SEPTEMBER 24, 2020
A new 'fork' of the Cerberus banking trojan, called Alien, targets victims' credentials from more than 200 mobile apps, including Bank of America and Microsoft Outlook.
Security Boulevard
JUNE 15, 2023
The World Wide Web Consortium today announced a standardization milestone for a new browser capability that helps to streamline user authentication and enhance payment security during Web checkout.
The Last Watchdog
JUNE 18, 2018
Bank patrons in their 20s and 30s, who grew up blanketed with digital screens, have little interest in visiting a brick-and-mortar branch, nor interacting with a flesh-and-blood teller. This truism is pushing banks into unchartered territory. So banks are all in. LaSalla: Back in the day it was hardware tokens for banks.
Webroot
FEBRUARY 15, 2024
With access to your personal information, bad actors can drain your bank account and damage your credit—or worse. Check out the nine tips below to discover how you can enable family protection and help prevent identity theft and credit and bank fraud. But that doesn’t mean you and your family have to become victims.
Expert insights. Personalized for you.
We have resent the email to
Are you sure you want to cancel your subscriptions?
Let's personalize your content