Bizarro Banking Trojan

Schneier on Security

Bizarro is a new banking trojan that is stealing financial information and crypto wallets. Uncategorized backdoors banking credentials cryptography malware reports

Bank Card "Master Key" Stolen

Schneier on Security

The bank's master PIN key was stolen, forcing it to cancel and replace 12 million bank cards. The breach resulted from the printing of the bank's encrypted master key in plain, unencrypted digital language at the Postbank's old data centre in the Pretoria city centre.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Details of a Computer Banking Scam

Schneier on Security

This is a longish video that describes a profitable computer banking scam that’s run out of call centers in places like India. And three, it’s an evolving tactic that gets around banks increasingly flagging blocking suspicious electronic transfers.

Bank loses customers’ social security numbers after ransomware attack

Hot for Security

Because what if two weeks later the hacked bank (did I mention it was in the top 75 list of largest banks in the United States?) However, things became even more serious when it became apparent that the hackers were contacting the bank’s customers, informing them of the breach.

Banking’s Digital Future Raises Security Concerns

Security Boulevard

As the global financial services industry undergoes a seismic shift, disruption is prompting the industry to replace traditional practices, with emphasis on the inevitable digital future banks will have to embrace.

Securing UX in Open Banking Apps

Security Boulevard

Historically, only large, well-established banks had control over the majority of consumer and corporate finances, making it highly challenging for smaller financial services providers to break into the market. The post Securing UX in Open Banking Apps appeared first on Security Boulevard.

Hydra Android trojan campaign targets customers of European banks

Security Affairs

Experts warn of a new Hydra banking trojan campaign targeting European e-banking platform users, including the customers of Commerzbank. . Experts warn of a malware campaign targeting European e-banking platform users with the Hydra banking trojan.

Everything You Need to Know About Neo Bank Security

Appknox

fintech Security practices mobile banking security Vulnerability Assessment Neo Banking Neo BankOf all the modern business ecosystems, the Fintech sector is one of the most volatile landscapes that is teeming with industry and technological disruptions.

Flubot Android banking Trojan spreads via fake security updates

Security Affairs

The Android malware has been used to steal banking credentials, payment information, and sensitive data from infected devices. The post Flubot Android banking Trojan spreads via fake security updates appeared first on Security Affairs.

Everything You Need to Know About Open Banking Security

Appknox

It is no longer necessary to wait in queues to speak with a bank teller. financial fintech mobile banking API Security Open BankingFinancial services have developed at a breakneck pace, resulting in fierce competition among financial technologies.

ERMAC, a new banking Trojan that borrows the code from Cerberus malware

Security Affairs

ERMAC is a new Android banking Trojan that can steal financial data from 378 banking and wallet apps. Researchers from Threatfabric found in July a new Android banking trojan dubbed ERMAC that is almost fully based on the popular banking trojan Cerberus.

Reserve Bank of New Zealand Data Breach Caused by Antiquated Third Party Software

Adam Levin

The data breach of the Reserve Bank of New Zealand has been attributed to the compromise of a third party file sharing service. “A The post Reserve Bank of New Zealand Data Breach Caused by Antiquated Third Party Software appeared first on Adam Levin.

TSB Bank Disaster

Schneier on Security

This seems like an absolute disaster: The very short version is that a UK bank, TSB, which had been merged into and then many years later was spun out of Lloyds Bank, was bought by the Spanish bank Banco Sabadell in 2015. It is bad enough that bank IT problem had been so severe and protracted a major newspaper, The Guardian, created a live blog for it that has now been running for two days. banking dataprotection

New Android Banking Trojan Dubbed SOVA Emerges

Heimadal Security

ThreatFabric researchers have recently revealed that in August 2021 they came across a new Android banking trojan. The post New Android Banking Trojan Dubbed SOVA Emerges appeared first on Heimdal Security Blog.

New SOVA Android Banking trojan is rapidly growing

Security Affairs

SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. The malware allows attacker to gather sensitive data from infected devices, including banking credentials and PII.

Android Banking Trojan Vultur uses screen recording for credentials stealing

Security Affairs

Experts spotted a new strain of Android banking Trojan dubbed Vultur that uses screen recording and keylogging for the capturing of login credentials. The banking Trojan leverages Accessibility Services to determine what application is in the foreground.

Numando, a new banking Trojan that abuses YouTube for remote configuration

Security Affairs

Numando, a new banking Trojan that abuses YouTube, Pastebin, and other public platforms as C2 infrastructure and to spread. ESET researchers spotted a new LATAM banking trojan, tracked as Numando, that abuses YouTube, Pastebin, and other public platforms as C2 infrastructure and to spread.

TeaBot Android banking Trojan targets banks in Europe

Security Affairs

Malware researchers from Cleafy warn of a new Android banking trojan dubbed TeaBot (aka Anatsa) that is targeting banks in Europe. TeaBot supports the main features of Android banking Trojan and like other similar malware families it abuses Accessibility Services.

Banking frauds are rising as financial info is being stored digitally

CyberSecurity Insiders

Most Americans are having a habit of storing their ATM pins, bank account details and, to a certain extent, debit/credit card numbers on mobiles, computers and emails. The post Banking frauds are rising as financial info is being stored digitally appeared first on Cybersecurity Insiders.

Fighting Digital Banking’s Fraud Problem

Security Boulevard

Either out of necessity or convenience, the adoption of digital banking has skyrocketed since early 2020 and much of this. The post Fighting Digital Banking’s Fraud Problem appeared first on Entrust Blog.

Bank of America employee indicted for email scam that targeted businesses

Graham Cluley

A 30-year-old man employed at Bank of America and TD Mark is alleged to have exploited his position to defraud five businesses out of more than $1.1 Business email compromise Guest blog Law & order Bank of America business email compromise insider threat

Alien Android Banking Trojan Sidesteps 2FA

Threatpost

A new 'fork' of the Cerberus banking trojan, called Alien, targets victims' credentials from more than 200 mobile apps, including Bank of America and Microsoft Outlook.

BrandPost: Three Surefire Ways to Boost the Digital Banking Experience

CSO Magazine

The year 2020 disrupted just about every industry, including retail banking. Locked down at home, consumers were abruptly forced to do all their banking over the internet. The sudden transition profoundly impacted banks and created unprecedented demands on online infrastructure.

The new maxtrilha trojan is being disseminated and targeting several banks

Security Affairs

A new banking trojan dubbed maxtrilha (due to its encryption key) has been discovered in the last few days and targeting customers of European and South American banks. The new maxtrilha trojan is being disseminated and targeting several banks around the world.

Cyberattack shuts down Ecuador's largest bank, Banco Pichincha

Bleeping Computer

Ecuador's largest private bank Banco Pichincha has suffered a cyberattack that disrupted operations and taken the ATM and online banking portal offline. [.].

Pacific City Bank hit by AVOS Locker Ransomware

Security Affairs

Pacific City Bank was hit by AVOS Locker Ransomware operators, the gang claims to have stolen sensitive file from the company and threatens to leak it. The bank was hit by AVOS Locker Ransomware operators who claim to have stolen sensitive documents from the financial institution.

When Bank Communication is Indistinguishable from Phishing Attacks

Troy Hunt

You know how banks really, really want to avoid their customers falling victim to phishing scams? And how banks are the shining beacons of light when it comes to demonstrating security best practices? Ok, that final one might be a bit of a stretch , but the fact remains that people have high expectations of how banks should communicate to ensure that they themselves don't come across as phishers: Just a good old phish. banks will never do things that look like a phish?

Tedrade banking malware families target users worldwide

Security Affairs

The Tetrade term coined by Kaspersky experts to refer four large banking trojan families developed and spread by Brazilian crooks worldwide. The Brazilian cybercrime underground is recognized as the most focuses on the development and commercialization of banking trojans.

DarkVishnya Attacks Loot Millions from Banks

Adam Levin

Hackers stole tens of millions of dollars from Eastern European banks in a campaign called “DarkVishnya.” The first step involved planting in the target banks a device. Finally, when the hackers gained access, they siphoned as much money as they could “grab” using phony ATM withdrawals and bank transactions. The post DarkVishnya Attacks Loot Millions from Banks appeared first on Adam Levin.

Toddler mobile banking malware surges across Europe

Zero Day

The Android malware is a new and persistent threat to European citizens and banks alike

Banks Attacked through Malicious Hardware Connected to the Local Network

Schneier on Security

Kaspersky is reporting on a series of bank hacks -- called DarkVishnya -- perpetrated through malicious hardware being surreptitiously installed into the target network: In 2017-2018, Kaspersky Lab specialists were invited to research a series of cybertheft incidents. At least eight banks in Eastern Europe were the targets of the attacks (collectively nicknamed DarkVishnya), which caused damage estimated in the tens of millions of dollars.

Cinobi Banking Trojan Back in the Game: Malvertising Campaign Targets Japan

Heimadal Security

It uses the same malware they wrote about in 2020, the Cinobi banking trojan that used to steal banking credentials, but they also identified a rebranded version of it. Cybersecurity News banking attacks banking trojan Cinobi banking trojan crypto-stealing malware

Report Shows Major Security Holes in Banking Apps

Adam Levin

A security analysis of 30 major banking and financial apps has shown major security holes and a lax approach to protecting user data. The analysis was conducted by the Aite Group, which looked at mobile apps in eight categories: retail banking, credit cards, mobile payment, healthcare savings, retail finance, health insurance, auto insurance and cryptocurrency. The post Report Shows Major Security Holes in Banking Apps appeared first on Adam Levin.

Top 2021 banking and fintech security regulations

Security Boulevard

As more people move to fintech and digital banking, financial data security compliance is becoming tougher. The post Top 2021 banking and fintech security regulations appeared first on Intertrust Technologies.

New Zealand central bank hit by a cyber attack

Security Affairs

A cyber attack hit the New Zealand central bank, sensitive information has been potentially accessed by the intruders. The New Zealand central bank announced today that a cyber attack hit its infrastructure. SecurityAffairs – hacking, New Zealand central bank).

SolarWinds hackers remained hidden in Denmark’s central bank for months

Security Affairs

Russia-linked threat actors compromised Denmark’s central bank (Danmarks Nationalbank) and remained in its systems for months. Russia-linked threat actors infected the systems of Denmark’s central bank (Danmarks Nationalbank) and maintained access to its network for more than six months.

New Yorker Cartoon Idea: Bank Robber Futurist

Security Boulevard

If I had the time to draw, this is one I would have sketched after breakfast today: A robber leaving the vault with pockets stuffed with cash says on the way out, past police pointing guns at him, “This … Continue reading New Yorker Cartoon Idea: Bank Robber Futurist ?.

Ghimob Android Banking Trojan Targets 153 Mobile Apps

Threatpost

A banking trojan is targeting mobile app users in Brazil - and researchers warn that its operator has big plans to expand abroad. Mobile Security Android Banking Fraud banking trojan Brazil cybercriminal ghimob google Guildma mobile app Tetrade

Attackers targeted Accellion FTA in New Zealand Central Bank attack

Security Affairs

The root cause for the hack of the New Zealand Central Bank was the Accellion FTA (File Transfer Application) file sharing service. During the weekend, the New Zealand central bank announced that a cyber attack hit its infrastructure. “The Reserve Bank of New Zealand – Te P?tea

The Risk of Weak Online Banking Passwords

Krebs on Security

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. Crooks are constantly probing bank Web sites for customer accounts protected by weak or recycled passwords. A screenshot of a password-checking tool being used to target Chase Bank customers who re-use passwords from other sites.

How banks and banking customers can protect themselves against financial crimes

Tech Republic Security

Account takeovers and online banking fraud are two types of attacks on the rise against financial institutions and their customers, says Feedzai

Hacker steals funds from customer bank accounts through Brute Force Attacks

CyberSecurity Insiders

First Horizon Bank of United States witnessed a cyber attack on a few of its customers resulting in fund loss of $1 million in total. The bank has launched a detailed inquiry and the culprits behind the attack are likely to be nabbed shortly. News First Horizon Bank

Ransomware attack on Flagstar bank and Data Stolen

CyberSecurity Insiders

Flagstar Bank, a Michigan based company that specializes in providing mortgage loans, has reportedly become a victim of ransomware attack in January this year. However, the bank made the cyber incident public now, as it was waiting for investigation related to the incident over.