The Last Watchdog

MARCH 10, 2025

In 2023, victims reported nearly 900,000 cybercrime complaints to the FBI. While any business is a potential target for hackers, critical infrastructure organizations including defense, healthcare, energy, utilities, and financial services companies are perhaps most at risk due to their financial resources.

Energy and Utilities

SecureWorld News

APRIL 14, 2025

The evolution of cybercrime is shifting into hyperdrive. Industry-specific organizations also exist for key economic sectors like financial services , healthcare, energy, and transportation to serve as hubs for exchanging threat intelligence data, incident reports, and best practices.

Media

SecureWorld News

JUNE 4, 2025

In a matter of days, three major cybersecurity incidents have hit the retail and financial services sectors, drawing renewed attention to supply chain vulnerabilities, credential-based attacks, and the increasing value of non-financial customer data.

Retail

Security Affairs

MAY 9, 2025

.” In April 2025, the South African multinational telecommunications company MTN Group Limited disclosed a data breach that exposed subscribers personal information, it added that the incident did not impact the core network, billing systems and financial services infrastructure.

Cyber Attacks

Webroot

APRIL 22, 2025

Here are some of the most likely targets for access to consumer data: Healthcare organizations : Healthcare companies are a prime target for cybercrime due to the large amounts of sensitive data they store, which includes personal information and medical records. Its like putting a lock on your personal data.

Data breaches

The Hacker News

AUGUST 12, 2025

An ongoing data extortion campaign targeting Salesforce customers may soon turn its attention to financial services and technology service providers, as ShinyHunters and Scattered Spider appear to be working hand in hand, new findings show.

Cybercrime

Zero Day

JUNE 22, 2025

  Also: 4 ways to secure your remote work setup If your payment card details, bank accounts, or other digital financial services have been compromised, call the provider immediately (or freeze your cards using the mobile app, if your app has that feature).

Passwords

Security Affairs

JULY 24, 2025

The Coyote malware collects system details and focuses on identifying victims’ financial services. Like any other banking trojan, Coyote is hunting banking information, but what sets Coyote apart is the way it obtains this information, which involves the (ab)use of UIA.” ” reads the report published by Akamai.

Malware

Zero Day

JUNE 20, 2025

  Also: 4 ways to secure your remote work setup If your payment card details, bank accounts, or other digital financial services have been compromised, call the provider immediately (or freeze your cards using the mobile app, if your app has that feature).

Passwords

Security Affairs

JANUARY 26, 2025

President Donald Trump granted a “full and unconditional pardon” to Ross Ulbricht, Silk Road creator Pwn2Own Automotive 2025 Day 1: organizers awarded $382,750 for 16 zero-days Subaru Starlink flaw allowed experts to remotely hack cars Two ransomware groups abuse Microsofts Office 365 platform to gain access to target organizations Cloudflare (..)

DDOS

eSecurity Planet

MAY 8, 2025

According to reports by cybersecurity firm Proofpoint, a cybercrime tool known as CoGUI was used to send over 580 million phishing emails between January and April 2025. This pattern of targeting lines up with an alert from Japans Financial Services Agency , which recently warned of an increase in phishing aimed at financial institutions.

Phishing

Schneier on Security

MAY 9, 2024

There’s a new report on how criminals are using generative AI tools: Key Takeaways: Adoption rates of AI technologies among criminals lag behind the rates of their industry counterparts because of the evolving nature of cybercrime. Instead, they are jailbreaking existing ones.

Financial Services

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services

Security Affairs

NOVEMBER 17, 2023

Toyota Financial Services discloses unauthorized activity on systems after the Medusa ransomware gang claimed to have hacked the company. Toyota Financial Services confirmed the discovery of unauthorized activity on systems in a limited number of its locations. The company has yet to disclose a data breach.

Financial Services

Digital Shadows

DECEMBER 9, 2021

The post Latin American Financial Services: Sunny Climes and Cybercrimes first appeared on Digital Shadows. Few things make my eyes sparkle like talking about Latin America. Back in 2018, I had the privilege of being.

Financial Services

Security Boulevard

APRIL 20, 2022

VMware today published a survey of 130 security leaders in the financial services sector that suggests more cyberattacks designed to undermine the integrity of public markets are being launched by cartels of cybercriminals. The post Survey: Financial Services Firms Under Cybersecurity Siege appeared first on Security Boulevard.

Financial Services

Thales Cloud Protection & Licensing

NOVEMBER 13, 2023

Defending Financial Services Against Fraud in a Shifting Cyber Landscape sparsh Tue, 11/14/2023 - 05:05 As we approach International Fraud Awareness Week during 12-18 November 2023, taking stock of the evolving threat landscape and the vulnerabilities that financial services organizations face is crucial.

Financial Services

Security Affairs

AUGUST 20, 2024

Toyota has confirmed a data breach after a threat actor leaked 240GB of data stolen from its infrastructure on a cybercrime forum. Toyota disclosed a data breach after a threat actor leaked an archive of 240GB of data stolen from its systems on a cybercrime forum, BleepingComputer reported.

Data breaches

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. The credentials are sold for an average of $15.43, the most expensive pairs relate to banking and financial services accounts, with an average price of nearly $71.

Cybercrime

Krebs on Security

FEBRUARY 17, 2021

The Justice Department says those indicted were members of a DPRK-sponsored cybercrime group variously identified by the security community as the Lazarus Group and Advanced Persistent Threat 38 (APT 38). million in August 2020 from a financial services company based in New York. billion from banks and other victims worldwide.

Cryptocurrency

Krebs on Security

JULY 23, 2020

According to a filing (PDF) by the New York State Department of Financial Services (DFS), the weakness that exposed the documents was first introduced during an application software update in May 2014 and went undetected for years. According to the FBI, BEC scams are the most costly form of cybercrime today.

Insurance

Hot for Security

FEBRUARY 24, 2021

The New York Department of Financial Services (NYDFS) has issued an alert to instant-quote websites, particularly car insurers, warning of a growing campaign to steal nonpublic information (NPI). The attackers captured the full, unredacted driver’s license numbers without going any further in the process and abandoned the quote.”.

Financial Services

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Pompompurin has been a thorn in the side of the FBI for years.

Hacking

Krebs on Security

APRIL 28, 2020

The request for the last four of the customer’s credit card number was consistent with my own testing, which relied upon on a caller ID spoofing service advertised in the cybercrime underground and aimed at a Citi account controlled by this author. A screen shot from an underground store selling CVV records. Click to enlarge.

Scams

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016.

Hacking

Krebs on Security

SEPTEMBER 29, 2021

In February, KrebsOnSecurity wrote about a novel cybercrime service that helped attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. And all of them operate via Telegram , a cloud-based instant messaging system.

Passwords

Krebs on Security

JUNE 18, 2021

According to the FBI, BEC scams are the most costly form of cybercrime today. In July 2020, the New York State Department of Financial Services announced the company was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties.

Insurance

Krebs on Security

NOVEMBER 16, 2022

A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode , an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic. com — which was created to phish U.S.

Malware

Thales Cloud Protection & Licensing

AUGUST 31, 2022

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor. That is why criminals have historically chosen to focus on this industry over the years, with organized crime evolving into organized cybercrime. Thu, 09/01/2022 - 05:15. Malware and ransomware attacks increase.

Financial Services

Bleeping Computer

OCTOBER 15, 2021

A new phishing campaign dubbed MirrorBlast is deploying weaponized Excel documents that are extremely difficult to detect to compromise financial service organizations [.].

Cybercrime

Security Boulevard

APRIL 15, 2021

Cybercrime is on the rise across all levels of industry and government. Nowhere is that more apparent than in financial services, where firms like banks and credit unions experience attacks nearly 300x more often than other industries.

Banking

Security Affairs

DECEMBER 26, 2018

Researchers at Menlo Labs uncovered a malicious email campaign targeting employees of banks and financial services companies abusing Google Cloud Storage. Experts analyzed some malicious VBS scripts that were highly obfuscated and were likely created by one of the builder available in the cybercrime underground.

Financial Services

Security Affairs

OCTOBER 19, 2023

This is an important achievement in the fight against cybercrime. Law enforcement from the US, Europe, Germany, France, Italy, Japan, Spain, Netherlands, Czech Republic, and Latvia conducted a joint operation that led to the seizure of the Ragnar Locker ransomware’s infrastructure. Both FBI and Europol declined to comment on the events.

Financial Services

Security Affairs

OCTOBER 29, 2021

“The government and the people of Papua New Guinea can be assured that the government financial services will continue as usual,” Pundari said. SecurityAffairs – hacking, cybercrime). The government was not able to pay cheques and ordinary operations were impacted. Follow me on Twitter: @securityaffairs and Facebook.

Ransomware

Krebs on Security

MAY 3, 2019

And that information is for sale in multiple places online and in the cybercrime underground for a few bucks per person. Thus, an attacker would only need to know a target’s SSN to reset that customer’s password, according to Bessemer.

Banking

Veracode Security

JULY 29, 2022

The global financial services industry is undergoing a seismic shift and not enough people are truly aware of what this means. By November of this year, banks and other financial institutions must have in place a new process for payment systems that uses the ISO 20022 standard instead of SWIFT.

Banking

Security Affairs

MARCH 17, 2020

Advantage and Argus seem to be the same company working under two different names, they offer funding and startup capital to business owners without access to traditional lending and financial services. SecurityAffairs – financial documents, cybercrime). The researchers discovered the unsecured database in December 2019.

Banking