Troy Hunt

SEPTEMBER 17, 2019

Allow me to be controversial for a moment: arbitrary password restrictions on banks such as short max lengths and disallowed characters don't matter. Also, allow me to argue with myself for a moment: banks shouldn't have these restrictions in place anyway. for my *online banking*. 6 characters.

Banking 270

Banking Passwords Accountability Authentication 270

Security Boulevard

OCTOBER 31, 2024

The post Shedding AI Light on Bank Wire Transfer Fraud appeared first on Security Boulevard. Wire transfer fraud occurs when scammers convince a company to send money to a fraudulent account. While weeding out suspicious requests like this may seem rudimentary, it’s not.

Banking 110

Banking Accountability Social Engineering Security Awareness 110

SecureList

MAY 28, 2025

Introduction Zanubis is a banking Trojan for Android that emerged in mid-2022. Since its inception, it has targeted banks and financial entities in Peru, before expanding its objectives to virtual cards and crypto wallets. The malware operated as an overlay-based banking Trojan that abused Android’s accessibility service.

Banking 76

Banking Malware Energy and Utilities Encryption 76

The Last Watchdog

JANUARY 15, 2025

15, 2025, CyberNewswire — Quantum computing is set to revolutionize technology, but it also presents a significant security risk for financial institutions. This investment allows us to develop next-generation solutions and deepen our presence in key banking markets that recognize the urgency of post-quantum threats.

Banking 130

Banking Authentication Technology Marketing 130

Troy Hunt

DECEMBER 30, 2018

So here it is - 10 Personal Financial Lessons for Technology Professionals. For example, the ICT industry (Information, Communication, Technology) was the 5th highest paying with an average salary of $104,874 (dollars are Aussie, take off about 30% for USD). Banking is below that. Intro: This Industry Rocks! Medical even lower.

Technology 279

Technology Education Marketing Insurance 279

Krebs on Security

NOVEMBER 9, 2024

based technology companies. Donahue said 60 technology companies are now routing all law enforcement data requests through Kodex, including an increasing number of financial institutions and cryptocurrency platforms. “That can include control over data, like an account freeze or preservation request.”

Hacking 293

Hacking Accountability Government Social Engineering 293

Schneier on Security

MARCH 23, 2021

The governor of New Zealand’s central bank, Adrian Orr, says Accellion failed to warn it after first learning in mid-December that the nearly 20-year-old FTA application — using antiquated technology and set for retirement — had been breached. Despite having a patch available on Dec. CISA alert.

Hacking 290

Hacking Banking Technology Software 290

Krebs on Security

MARCH 17, 2021

Here’s the story of one such goof committed by Fiserv [ NASDAQ:FISV ], a $15 billion firm that provides online banking software and other technology solutions to thousands of financial institutions. Vegh could see the message from his bank referenced a curious domain: defaultinstitution.com.

Banking 348

Banking Accountability Software Mobile 348

Security Affairs

JULY 2, 2024

Fintech firms Wise and Affirm confirmed they were both impacted by the recent data breach suffered by Evolve Bank. Fintech companies Wise and Affirm have confirmed that they were both affected by the recent data breach at Evolve Bank. Evolve will directly contact impacted customers and financial technology partners.

Data breaches 127

Data breaches Banking Retail Accountability 127

Security Affairs

JULY 9, 2024

The Lockbit ransomware attack on Evolve Bank has compromised the personal information of over 7.6 At the end of June, the LockBit gang announced that it had breached the systems of the Federal Reserve of the United States and exfiltrated 33 TB of sensitive data, including “Americans’ banking secrets.” million individuals.

Data breaches 129

Data breaches Banking Retail Ransomware 129

Hacker's King

DECEMBER 17, 2024

The cybersecurity world has been abuzz with news of a new Linux variant of FASTCash, a sophisticated malware targeting the banking sector. FASTCash has gained notoriety for its ability to bypass banking security protocols, enabling cybercriminals to withdraw massive amounts of cash from ATMs.

Banking 52

Banking Social Engineering Malware Cyber threats 52

Malwarebytes

JUNE 14, 2024

On Wednesday June 12, 2024, a well-known dark web data broker and cybercriminal acting under the name “Sp1d3r” offered a significant amount of data allegedly stolen from Truist Bank for sale. Truist is a US bank holding company and operates 2,781 branches in 15 states and Washington DC.

Data breaches 117

Data breaches Banking Passwords Phishing 117

The Last Watchdog

APRIL 24, 2025

Related: PKI and the IoT cloud One quiet but consequential development now taking root in the financial sector could prove pivotal: the emergence of a dedicated Public Key Infrastructure (PKI) framework, tailored to banks and payment networks, guided by the Accredited Standards Committee X9 (ASC X9), and being rolled out by DigiCert.

Banking 147

Banking Internet Internet IoT 147

SecureList

FEBRUARY 8, 2024

The developers of banking Trojan malware are constantly looking for inventive ways to distribute theirs implants and infect victims. In a recent investigation, we encountered a new malware that specifically targets users of more than 60 banking institutions, mainly from Brazil.

Banking 144

Banking Encryption Malware Technology 144

Security Affairs

JUNE 4, 2024

Resecurity uncovered a cybercriminal group that is providing a sophisticated phishing kit, named V3B, to target banking customers in the EU. “Currently, it is estimated that hundreds of cybercriminals are using this kit to commit fraud, leaving victims with empty bank accounts. . ” reads the report published Resecurity.

Banking 126

Banking Phishing Social Engineering Engineering 126

Security Affairs

OCTOBER 21, 2024

DevHub is a platform designed for developers to access resources, tools, and APIs to build and integrate applications with Cisco’s technologies. IntelBroker targeted many major organizations in past attacks, including AMD , AT&T, Bank of America, Microsoft, Europol , SAP, T-Mobile, Verizon, and others.

Cybercrime 129

Cybercrime Data breaches Technology Banking 129

Schneier on Security

OCTOBER 19, 2022

Interesting interview : Banks don’t take millions of dollars and put them in plastic bags and hang them on the wall so everybody can walk right up to them. But we do basically the same thing in museums and hang the assets right out on the wall.

Banking 61

Banking Technology 61

Joseph Steinberg

JULY 8, 2021

No bank in the United States will issue a mortgage, for example, to someone who purchases a house but refuses to insure the home against fire; the bank will not relax its position even if the home has been built with every possible known fire suppression and mitigation system.

Insurance 364

Insurance Cyber Insurance Cybersecurity Small Business 364

Security Boulevard

JANUARY 24, 2025

Plus, the EUs DORA cyber rules for banks go into effect. DORA establishes strict cybersecurity requirements for financial firms including banks , insurance companies and investment firms, as well as for third-parties that provide information and communications technology (ICT) products and services to financial sector organizations.

Banking 69

Banking Cybersecurity Artificial Intelligence Ransomware 69

Jane Frankland

MAY 16, 2025

Here’s a breakdown of the most widespread and damaging scams today: Impersonation Scams (51% of fraud cases) where fraudsters pose as: Banks, HMRC, DVLA, or government agencies. Guilt or Authority Pressure: Messages from “your boss,” “the bank,” or “your child” asking for urgent help or discretion.

Scams 130

Scams Password Management Passwords Banking 130

eSecurity Planet

SEPTEMBER 13, 2024

Cyber security in banking has become the frontline defense against an ever-growing wave of digital threats. With billions of dollars and sensitive data at risk, banks are under constant pressure to stay one step ahead of cybercriminals. Table of Contents Toggle What is Cyber Security in Banking?

Banking 108

Banking Identity Theft DDOS Cyber threats 108

Security Affairs

OCTOBER 28, 2024

“No passwords” , “no bank cards” , “no content of communications (emails, SMS, voice messages, etc.)” The company said that passwords and bank card details were not compromised, it also pointed out that its customers’ communications were not exposed.

Cyber Attacks 123

Cyber Attacks Telecommunications Data breaches Banking 123

The Hacker News

FEBRUARY 14, 2024

Cybercriminals are exploiting advanced technologies and methodologies, making traditional security measures obsolete. The challenges are compounded for community banks that must safeguard sensitive financial data against the same level of sophisticated threats as larger institutions, but often with more

Banking 122

Banking Cybersecurity Financial Services Technology 122

Security Boulevard

FEBRUARY 14, 2025

Plus, Europol offers best practices for banks to adopt quantum-resistant cryptography. In addition to adopting post-quantum cryptography , banks and other financial institutions should take this opportunity to boost their cryptography management practices, according to Europol.

Banking 64

Banking Cybercrime Cybersecurity Ransomware 64

Security Affairs

JANUARY 18, 2025

Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned Chinese firm Sichuan Juxinhe Network Technology Co., government systems, including the recent targeting of Treasurys information technology (IT) systems, as well as sensitive U.S. telecommunication and internet service providers. critical infrastructure.”

Cybersecurity 117

Cybersecurity Telecommunications Government Healthcare 117

Krebs on Security

MARCH 21, 2025

Rather, the missives are sent through the Apple iMessage service and through RCS , the functionally equivalent technology on Google phones. A CBS News story on the Sacramento arrests said one of the suspects tried to use 42 separate bank cards, but that 32 were declined.

Phishing 223

Phishing Mobile Scams Banking 223

SecureList

MARCH 3, 2025

million malicious and potentially unwanted installation packages were detected, almost 69,000 of which associated with mobile banking Trojans. Attacks on Kaspersky mobile users in 2024 ( download ) At the end of 2024, we discovered a new distribution scheme for the Mamont banking Trojan, targeting users of Android devices in Russia.

Mobile 115

Mobile Malware Adware Banking 115

Krebs on Security

AUGUST 16, 2022

The missive alleged that an auction on the site for data stolen from 10 million customers of Mexico’s second-largest bank was fake news and harming the bank’s reputation. The administrator responded to this empty threat by purchasing the stolen banking data and leaking it on the forum for everyone to download.

Data breaches 326

Data breaches Banking Cybercrime Marketing 326

The Last Watchdog

MAY 21, 2024

I had the chance to sit down with Eyal Benishti , IRONSCALES founder and CEO, to get a breakdown of how their new Generative Adversarial Network (GAN) technology utilizes a specialized LLM to reinforce anti-phishing mitigation services. One promising example of the latter comes from messaging security vendor IRONSCALES.

Phishing 303

Phishing Technology Banking Internet 303

Tech Republic Security

SEPTEMBER 2, 2024

Australian banks and government are not rushing to adopt passkey authentication methods, despite the added security benefits. Learn why they lag in embracing this crucial technology.

Banking 177

Banking Authentication Government Technology 177

Schneier on Security

JANUARY 31, 2024

Officials at the CFPB have described the new rules as an attempt to accelerate a shift toward “open banking,” and after an initial comment period on the new rules closed late last year, Rohit Chopra, the CFPB’s director, has said he would like to see the rule finalized by this fall.

Banking 326

Banking Financial Services Marketing Data privacy 326

The Last Watchdog

MAY 24, 2022

Passwordless technology is certainly ready for prime time; innovative solutions from suppliers like Cisco’s Duo, Hypr, OneLogin and Veridium have been steadily gaining traction in corporate settings for the past few years. “Our One bank in the U.S. Here are a few takeaways. Security + efficiency. Our brains just won’t do it.”.

Authentication 342

Authentication Passwords Banking Digital transformation 342

The Last Watchdog

MARCH 24, 2025

There are two sides to this: 1) assessing a technology vendors cryptoagility efforts in your RFPs as a part of determining third-party tech supplier risk, 2) assessing a technology vendors capability to help you in your PQC migration as technology functionality you can use.

Encryption 130

Encryption Financial Services Technology Risk 130

Krebs on Security

SEPTEMBER 29, 2021

“Over the past few months, we’ve seen actors provide access to services that call victims, appear as a legitimate call from a specific bank and deceive victims into typing an OTP or other verification code into a mobile phone in order to capture and deliver the codes to the operator. Then you can call your bank or whoever else you need.

Passwords 343

Passwords Mobile Authentication Banking 343

Security Affairs

DECEMBER 6, 2024

Atrium Health launched an investigation into the security breach and discovered that from January 2015 to July 2019, certain online tracking technologies were active on its MyAtriumHealth (formerly MyCarolinas) Patient Portal, accessible via web and mobile. The company notified the US Department of Health and Human Services (HHS).

Data breaches 109

Data breaches Identity Theft Accountability Technology 109

Schneier on Security

JULY 25, 2024

Friday’s massive internet outage, caused by a mid-sized tech company called CrowdStrike, disrupted major airlines, hospitals, and banks. In information technology, brittleness also results from the fact that hundreds of companies, none of which you;ve heard of, each perform a small but essential role in keeping the internet running.

Marketing 356

Marketing Software Internet Internet 356

SecureList

SEPTEMBER 28, 2023

But there’s more going on in the cybercrime landscape, so we also published reports on new versions of the Lumma stealer and Zanubis Android banking trojan. Fake update locking the user out of the phone According to our analysis, the targeted applications are banks and financial entities in Peru.

Banking 133

Banking Malware Cybercrime Encryption 133