SecureList

MAY 28, 2025

Introduction Zanubis is a banking Trojan for Android that emerged in mid-2022. Since its inception, it has targeted banks and financial entities in Peru, before expanding its objectives to virtual cards and crypto wallets. The malware operated as an overlay-based banking Trojan that abused Android’s accessibility service.

Banking

Malwarebytes

JUNE 18, 2025

In the latest example of this type of scam, we found tech support scammers hijacking the results of people looking for 24/7 support for Apple, Bank of America, Facebook, HP, Microsoft, Netflix, and PayPal. We don’t just report on threats—we remove them Cybersecurity risks should never spread beyond a headline.

Banking

SecureWorld News

JUNE 19, 2025

Bank Sepah, one of Iran's oldest and most strategically essential banks, suffered major outages across its ATMs and online services on June 17th. The alerts urge CISOs to elevate monitoring and reinforce incident response protocols in light of heightened geopolitical risk.

Internet

SecureWorld News

MAY 13, 2025

As geopolitical instability, supply chain disruption, and cyber threats continue to escalate, third-party risk management (TPRM) is evolving from a compliance function to a strategic business imperative. According to the EY survey , 87% of organizations have experienced a third-party risk incident in the past three years.

Risk

SecureWorld News

MAY 29, 2025

A new report from Oasis Security reveals a critical security flaw in Microsoft's OneDrive File Picker, exposing users to significant data privacy and access control risks. This creates a window of risk not just for the file shared, but for everything stored in the user's drive. Older versions of the OneDrive File Picker (6.0

Risk

SecureWorld News

JUNE 4, 2025

These breachesaffecting Cartier, Main Street Bank, and The North Faceunderscore the rising threat landscape facing luxury and everyday consumer brands. While no operational impact was reported, the bank terminated its relationship with the vendor. The reputational damage could be immense."

Retail

SecureWorld News

JULY 17, 2025

banks and financial firms are being targeted by scammers using deepfake videos, AI-generated voices, and advanced chatbots to deceive employees and customers. security leaders and bank executives, defending against this high-tech impostor has become a top priority in 2025. In 2025, U.S. In 2025, numerous U.S.

Banking

Security Affairs

MARCH 24, 2025

They can also steal personal data, banking details, cryptocurrency info, emails, and passwords by scraping the files the users upload. The FBI Denver Field Office advises staying cautious online, being aware of potential risks, and keeping antivirus software updated to scan files before opening them. The FBI urges reporting to IC3.gov.

Malware

The Last Watchdog

MARCH 19, 2025

SpyCloud , the leading identity threat protection company, today released its 2025 SpyCloud Annual Identity Exposure Report , highlighting the rise of darknet-exposed identity data as the primary cyber risk facing enterprises today. It requires organizations to rethink the risks posed by employees, consumers, partners and suppliers.

Cyber Risk

Hacker's King

DECEMBER 17, 2024

The cybersecurity world has been abuzz with news of a new Linux variant of FASTCash, a sophisticated malware targeting the banking sector. FASTCash has gained notoriety for its ability to bypass banking security protocols, enabling cybercriminals to withdraw massive amounts of cash from ATMs.

Banking

eSecurity Planet

NOVEMBER 6, 2024

This data reportedly includes everything from names and addresses to Social Security numbers and bank account details. The stolen data reportedly includes highly personal information — names, dates of birth, Social Security numbers, bank account details, and even records of residents’ interactions with city services.

Ransomware

Malwarebytes

NOVEMBER 5, 2024

With access to your email account, a cybercriminal can find a lot of useful information about you, such as where you bank, your account numbers, your favorite shops, and more. Is convenience worth the risk in this situation? We don’t just report on threats—we remove them Cybersecurity risks should never spread beyond a headline.

Accountability

Security Boulevard

APRIL 15, 2025

The recent ransomware breach tied to ICICI Bankclaimed by the LockBit grouphas raised fresh concerns about the fragility of digital ecosystems and third-party risk. The post ICICI Bank Ransomware Breach: A Stark Reminder of Supply Chain Risk and the Need for Real-Time Cyber Vigilance appeared first on Security Boulevard.

Banking

SecureWorld News

FEBRUARY 6, 2025

Grubhub recently confirmed a data breach stemming from a third-party vendor, exposing the ongoing risks associated with supply chain security. While these measures contained the incident, the breach underscores the risks inherent in outsourcing critical functions to external vendors. What data was compromised? How did this happen?

Data breaches

Malwarebytes

NOVEMBER 15, 2024

Scanning the QR code in the malicious letters leads to a banking Trojan known as Coper, but also referred to as Octo2. The letters are sent as if they come from the official Swiss Federal Office of Meteorology and Climatology (MeteoSwiss) and they urge the recipient to install a new “severe weather app.”

Malware

The Last Watchdog

MAY 30, 2025

Whether you’re a bank, a mining company, or an airline, this is a soft, underlying hygiene problem, says Tim Eades , CEO of Anetac. At RSAC 2025, Eades unveiled Human Link Pro , a new product aimed at closing the loop between non-human and human credential risks. That gap is likely even wider in cloud-intensive environments.

Risk

Security Boulevard

JANUARY 24, 2025

Plus, the EUs DORA cyber rules for banks go into effect. The latest guidance for adopting AI securely comes from the World Economic Forum, whose new Artificial Intelligence and Cybersecurity: Balancing Risks and Rewards report seeks to explain how organizations can benefit from AI while reducing their cybersecurity risks.

Banking

The Last Watchdog

DECEMBER 3, 2024

Related: The convergence of network, application security For example, vulnerabilities in banking applications can lead to financial data leaks, and errors in medical systems can threaten the health of patients. Such incidents not only harm users but also undermine trust in technology in general, and pose reputational risks to companies.

Risk

Malwarebytes

NOVEMBER 14, 2024

As soon as the scammers spotted an email where someone was asked to make a payment as part of a real estate transaction, they would change the wiring instructions and let the victims deposit their payments into bank accounts associated with the criminals instead of the legitimate real estate transaction.

Accountability

Security Boulevard

FEBRUARY 14, 2025

Plus, Europol offers best practices for banks to adopt quantum-resistant cryptography. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) called buffer overflow vulnerabilities unforgivable defects that put national and economic security at risk.

Banking

SecureWorld News

MARCH 20, 2025

Phishing plays straight out of the cybercrime playbook "March Madness brings heightened cybersecurity risks this year, especially with the expansion of sports gambling beyond traditional office pools creating new attack vectors for credential harvesting and financial fraud," warns J. Stephen Kowski, Field CTO at SlashNext Email Security+.

Scams

Security Affairs

DECEMBER 10, 2024

According to a recent Strategic Analysis Report released by the UAE Financial Intelligence Unit (UAEFIU), fraud, particularly in the UAE, remains a major risk, contributing to money laundering activities, with an estimated financial loss of AED 1.2 billion (equal to USD 326 million) between 2021 and 2023. The actors became more creative.

Phishing

Malwarebytes

DECEMBER 6, 2024

The scammers participated in fraudulent phone calls in which they impersonated bank employees to extract sensitive information, such as addresses and security answers, from their victims. We don’t just report on threats – we help safeguard your entire digital identity Cybersecurity risks should never spread beyond a headline.

Marketing

The Hacker News

JUNE 23, 2025

Not every risk looks like an attack. Some problems start as small glitches, strange logs, or quiet delays that don’t seem urgent—until they are. What if your environment is already being tested, just not in ways you expected? Some of the most dangerous moves are hidden in plain sight.

DDOS

Schneier on Security

APRIL 3, 2025

Without this foundation of verifiable truth, AI systems risk becoming a series of opaque boxes. The risks of deploying AI without proper integrity control measures are severe and often underappreciated. AI systems need clean, consistent, and verifiable control processes to learn and make decisions effectively.

Architecture

The Last Watchdog

MARCH 24, 2025

Its a question of how much risk your organization is willing to take, based on the data you must protect and its long-term value. We recommend using Dr. Michele Moscas theorem of quantum risk against an optimistic vs. pessimistic probability analysis. This is where the concern of harvest now, decrypt later attacks apply.

Encryption

IT Security Guru

FEBRUARY 25, 2025

Cyber crooks often bank on organisations thinking of MFA as a silver bullet for account security, but it isnt. Theres also risk-based authentication that dynamically adjusts security requirements based on the perceived risk of a login attempt.

Social Engineering

Malwarebytes

MARCH 17, 2025

Financial information, like your banking credentials and crypto wallets. By using one of these online converters you could be at risk of getting infected with ransomware or enable criminals to steal your data or identity in full. Email addresses. Imageconvertors[.]com com (phishing) convertitoremp3[.]it com (Riskware) convertscloud[.]com

Malware

The Hacker News

JUNE 30, 2025

When systems work exactly as they’re built to, but that “by design” behavior quietly opens the door to risk? Ever wonder what happens when attackers don’t break the rules—they just follow them better than we do? This week brings stories that make you stop and rethink what’s truly under control.

Banking

Security Affairs

MARCH 7, 2025

Please note that all USDT held in Russian wallets is now at risk. The Garantex Team “ In February, the EU announced sanctions on Garantex for ties to sanctioned Russian banks (Sberbank, T-Bank, and Alfa-Bank), leading Tether to block its wallets. We are fighting and will not give up!

Banking

Malwarebytes

JUNE 19, 2025

But that doesn’t take away from the fact that these credentials are in the hands of cybercriminals who can use them for: Account takeovers : Cybercriminals can use stolen credentials to hijack social media, banking, or corporate accounts. Identity theft : Personal details enable fraud, loan applications, or impersonation.

Identity Theft

Security Boulevard

MARCH 21, 2025

Check out key findings and insights from the Tenable Cloud AI Risk Report 2025. 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments? 1 - Tenable: Orgs using AI in the cloud face thorny cyber risks Using AI tools in cloud environments?

Risk

Malwarebytes

APRIL 24, 2025

Then you’re like millions of other users now at risk from a new form of cybercrime – malware that can read your credit or debit card and hand its data over to an attacker. That starts with a fraudulent ‘smishing’ message sent via SMS or WhatsApp, often impersonating a bank and asking the user to call.

Malware

Malwarebytes

JULY 16, 2025

Also, make sure to monitor your card statements for any unfamiliar charges, and contact your bank immediately if you see anything suspicious. We don’t just report on threats – we help safeguard your entire digital identity Cybersecurity risks should never spread beyond a headline.

Scams

Responsible Cyber

NOVEMBER 23, 2024

However, with every partnership comes potential risk. As networks expand to include third, fourth, and even fifth parties, the complexities of managing these risks multiply. For CCEOs and senior leaders, effective third-party risk management (TPRM) is not just a necessity—it’s a strategic imperative.

Risk

Thales Cloud Protection & Licensing

JULY 30, 2025

Identity & Access in Banking, Financial Services and Insurance: An exclusive Thales Survey madhav Thu, 07/31/2025 - 04:39 As digital transformation continues to redefine the financial landscape, the security and integrity of identity management take on ever-greater importance.

Financial Services