Cybercrime, Financial Services and Hacking

Medusa ransomware gang claims the hack of Toyota Financial Services

Security Affairs

NOVEMBER 17, 2023

Toyota Financial Services discloses unauthorized activity on systems after the Medusa ransomware gang claimed to have hacked the company. Toyota Financial Services confirmed the discovery of unauthorized activity on systems in a limited number of its locations. The company has yet to disclose a data breach.

Financial Services

Financial Services Hacking Ransomware Data breaches

Toyota Financial Services discloses a data breach

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services

Financial Services Data breaches Identity Theft Banking

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. Pompompurin has been a thorn in the side of the FBI for years.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

Krebs on Security

FEBRUARY 9, 2023

Authorities in the United States and United Kingdom today levied financial sanctions against seven men accused of operating “ Trickbot ,” a cybercrime-as-a-service platform based in Russia that has enabled countless ransomware attacks and bank account takeovers since its debut in 2016.

Hacking

Hacking Cybercrime Ransomware Government

NY Department of Financial Services Issues Cyber Fraud Alert to Auto Insurers

Hot for Security

FEBRUARY 24, 2021

The New York Department of Financial Services (NYDFS) has issued an alert to instant-quote websites, particularly car insurers, warning of a growing campaign to steal nonpublic information (NPI). The attackers captured the full, unredacted driver’s license numbers without going any further in the process and abandoned the quote.”.

Financial Services

Financial Services Insurance Cybercrime Hacking

15 billion credentials available in the cybercrime marketplaces

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. The credentials are sold for an average of $15.43, the most expensive pairs relate to banking and financial services accounts, with an average price of nearly $71.

Cybercrime

Cybercrime Antivirus Marketing Accountability

Microsoft: Cybercrime Group Launches 'Targeted Attack' Against Customers

SecureWorld News

JUNE 29, 2021

The hacking group behind the infamous SolarWinds incident, Nobelium, is making headlines again. The Microsoft Threat Intelligence Center says it has observed new activity from the cybercrime group, mainly password spay and brute-force attacks.

Cybercrime

Cybercrime Financial Services Accountability Passwords

Microsoft: Cybercrime Group Launches 'Targeted Attack' Against Customers

SecureWorld News

JUNE 29, 2021

The hacking group behind the infamous SolarWinds incident, Nobelium, is making headlines again. The Microsoft Threat Intelligence Center says it has observed new activity from the cybercrime group, mainly password spray and brute-force attacks.

Cybercrime

Cybercrime Financial Services Accountability Passwords

Morgan Stanley discloses data breach after the hack of a third-party vendor

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The hack of the FTA server took place in March, but the hacker had access to the data of Morgan Stanley customers in May. Pierluigi Paganini.

Data breaches

Data breaches Hacking Banking Financial Services

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs

OCTOBER 19, 2023

This is an important achievement in the fight against cybercrime. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA) The post Law enforcement operation seized Ragnar Locker group’s infrastructure appeared first on Security Affairs.

Ransomware

Ransomware Financial Services Cybercrime Manufacturing

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6 CISA and ENISA enhance their Cooperation CISA adds Qlik bugs to exploited vulnerabilities catalog Report: 2.6

Data breaches

Data breaches Cybercrime Firewall Artificial Intelligence

SEC announces sanctions against entities over email account hacking

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Accountability

Accountability Hacking Financial Services Cybersecurity

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

Iran-linked APT group Pioneer Kitten is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers. Iran-linked APT group Pioneer Kitten, also known as Fox Kitten or Parisite, is now trying to monetize its efforts by selling access to some of the networks it has hacked to other hackers.

Hacking

Hacking VPN Advertising Financial Services

Nissan Oceania data breach impacted roughly 100,000 people

Security Affairs

MARCH 14, 2024

The Australian and New Zealand Nissan Corporation and Financial Services (“Nissan”) advises that its systems have been subject to a cyber incident. Stolen data included corporate files and personal information Nissan refused to pay the ransom and the cybercrime group published the alleged stolen files.

Data breaches

Data breaches Identity Theft Financial Services Cybercrime

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

The recent cyber-attacks by an Iranian-backed cybercriminal group on a water utility in Aliquippa , Pennsylvania by targeting an Israeli-made SCADA system exemplify incidents teetering on the edge of cyberterrorism and cybercrime.

Cyber threats

Cyber threats Energy and Utilities Artificial Intelligence Cyber Attacks

LoanDepot data breach impacted roughly 16.6 individuals

Security Affairs

JANUARY 23, 2024

Financial services company LoanDepot disclosed a data breach that impacted roughly 16.6 LoanDepot is a financial services company that primarily operates as a mortgage lender. The company provides a range of mortgage and non-mortgage loan products and services. million individuals. million individuals.

Data breaches

Data breaches Financial Services Cybersecurity Encryption

Would You Have Fallen for This Phone Scam?

Krebs on Security

APRIL 28, 2020

The request for the last four of the customer’s credit card number was consistent with my own testing, which relied upon on a caller ID spoofing service advertised in the cybercrime underground and aimed at a Citi account controlled by this author. A screen shot from an underground store selling CVV records. Click to enlarge.

Scams

Scams Banking Accountability Financial Services

Akira ransomware gang claims the theft of sensitive data from Nissan Australia

Security Affairs

DECEMBER 22, 2023

The Australian and New Zealand Nissan Corporation and Financial Services (“Nissan”) advises that its systems have been subject to a cyber incident. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ransomware)

Ransomware

Ransomware Data breaches Financial Services Scams

Papua New Guinea ‘s finance ministry was hit by a ransomware

Security Affairs

OCTOBER 29, 2021

“The government and the people of Papua New Guinea can be assured that the government financial services will continue as usual,” Pundari said. SecurityAffairs – hacking, cybercrime). The government was not able to pay cheques and ordinary operations were impacted. Pierluigi Paganini.

Ransomware

Ransomware Government Financial Services Cybercrime

LockBit on a Roll – ICBC Ransomware Attack Strikes at the Heart of the Global Financial Order

Security Affairs

DECEMBER 4, 2023

The experts called it ‘prepositioning’ to analyze the response from financial organizations globally and the reaction of the market. LockBit specifically targeted ICBC Financial Services (ICBC FS), a wholly owned U.S. subsidiary of the state-owned lender, which plays a critical role in the world of international finance.

Ransomware

Ransomware Banking Financial Services Marketing

The New Version of JsOutProx is Attacking Financial Institutions in APAC and MENA via Gitlab Abuse

Security Affairs

APRIL 3, 2024

Resecurity researchers warn that a new Version of JsOutProx is targeting financial institutions in APAC and MENA via Gitlab abuse. Resecurity has detected a new version of JSOutProx , which is targeting financial services and organizations in the APAC and MENA regions.

Banking

Banking Financial Services Malware Phishing

Pacific City Bank hit by AVOS Locker Ransomware

Security Affairs

SEPTEMBER 5, 2021

On Saturday, September 4, 2021, the ransomware gang added the bank to its leak site and published some screenshots as proof of the hack. “Pacific City Bank provides outstanding banking and financial services for businesses and consumers. SecurityAffairs – hacking, ransomware). Pierluigi Paganini.

Banking

Banking Ransomware Financial Services Hacking

57,000 Bank of America Customers' Data Compromised in Breach

SecureWorld News

FEBRUARY 15, 2024

The breach reportedly occurred after IMS was hacked in November 2023. According to breach notification letters , the exposed customer data includes names, addresses, Social Security numbers, dates of birth, and financial account details. See the agenda and register for free here.

Banking

Banking Financial Services Data breaches Threat Detection

BianLian, White Rabbit, and Mario Ransomware Gangs Spotted in a Joint Campaign

Security Affairs

DECEMBER 15, 2023

Resecurity’s HUNTER (HUMINT) unit spotted the BianLian , White Rabbit , and Mario ransomware gangs collaborating in a joint extortion campaign targeting publicly-traded financial services firms. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ransomware)

Ransomware

Ransomware Financial Services Cyber Attacks Cybersecurity

LATEST CYBERTHREATS AND ADVISORIES – MARCH 24, 2023

CyberSecurity Insiders

MARCH 24, 2023

By John Weiler FBI arrests Breached hacking forum leader, smartphones hijacked without any user involvement and 330,000 customers compromised in Australia by a data breach. Breached was a cybercrime forum that was a hotbed for criminal activity. Here are the latest threats and advisories for the week of March 24, 2023.

Financial Services

Financial Services Ransomware Cybercrime Hacking

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Financial Services Manufacturing

19-Year-Old man arrested for misusing leaked record from Optus Breach

Security Affairs

OCTOBER 6, 2022

The database belonging to the company was leaked on a cybercrime forum. SecurityAffairs – hacking, Optus). The authorities determined that data used in this criminal activity were from the 10,200 records stolen from the telecommunications giant last month. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Data breaches

Data breaches Scams Telecommunications Financial Services

Hackers target financial firms hosting malicious payloads on Google Cloud Storage

Security Affairs

DECEMBER 26, 2018

Researchers at Menlo Labs uncovered a malicious email campaign targeting employees of banks and financial services companies abusing Google Cloud Storage. Experts analyzed some malicious VBS scripts that were highly obfuscated and were likely created by one of the builder available in the cybercrime underground.

Financial Services

Financial Services Cybercrime Malware Advertising

Murder-for-hire, money laundering, and more: How organised criminals work online

Malwarebytes

NOVEMBER 11, 2021

Of course, we’re interested from a cybercrime point of view. Cybercrime. Cybercrime in this report includes the creation and spread of malware, hacking to steal sensitive personal or industry data, denial of service attacks to cause financial and/or reputational damage, and other criminal activities.

Cybercrime

Cybercrime Encryption Cryptocurrency Advertising

Latitude Data breach is worse than initially estimated. 14 million individuals impacted

Security Affairs

MARCH 28, 2023

Australian loan giant Latitude Financial Services (Latitude) revealed that a data breach its has suffered impacted 14 million customers. The data breach suffered by Latitude Financial Services (Latitude) is much more serious than initially estimated. 14 million individuals impacted appeared first on Security Affairs.

Data breaches

Data breaches Financial Services Passwords Hacking

Threat actors stole $19 million worth of crypto assets from Cream Finance

Security Affairs

AUGUST 31, 2021

Finance is a decentralized lending protocol for individuals, institutions and protocols to access financial services. 1/4 @CreamFinance was exploited in (one hack tx: [link] ), leading to the gain of ~$18.8M SecurityAffairs – hacking, DeFi ). It promises earnings to users who are passively holding ETH or wBTC.

Cryptocurrency

Cryptocurrency Hacking Financial Services Marketing

A Russian national charged for committing LockBit Ransomware attacks

Security Affairs

JUNE 16, 2023

We will continue to use every tool at our disposal to disrupt cybercrime, and while cybercriminals may continue to run, they ultimately cannot hide.” The group targeted municipal governments, county governments, public higher education and K-12 schools, and emergency services (e.g., law enforcement).

Ransomware

Ransomware Healthcare Education Government

Microsoft warns of multi-stage AiTM phishing and BEC attacks

Security Affairs

JUNE 11, 2023

Microsoft researchers warn of banking adversary-in-the-middle (AitM) phishing and BEC attacks targeting banking and financial organizations. Microsoft discovered multi-stage adversary-in-the-middle (AiTM) phishing and business email compromise (BEC) attacks against banking and financial services organizations.

Phishing

Phishing Banking Financial Services Authentication

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

The vulnerabilities are exploited remotely through Microsoft Exchange’s Client Access Service (CAS) running on port 443 in IIS. The vulnerabilities were discovered by security Researcher Tsai orange from Devcore, the issues were awarded $ 200,000 during the April 2021 Pwn2Own hacking contest. — 0patch (@0patch) August 19, 2021.

Ransomware

Ransomware Financial Services Hacking Encryption

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

The recent campaign exclusively aims at organizations that deal with tax preparation, financial services, CPA and accounting firms, and professional service firms dealing in bookkeeping and tax. Crooks use lures masquerading as tax documentation sent by a client. LNK) files.

Accountability

Accountability Phishing Financial Services Surveillance

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

entities Financial Services, Government Facilities, Healthcare and Public Health, Critical Manufacturing, and Information Technology. SecurityAffairs – hacking, CISA). ” Since December 2021 Cuba operators are continuing to target U.S. ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon.

Ransomware

Ransomware Financial Services Manufacturing Healthcare

NEW TECH: Cequence Security’s new ‘API Sentinel’ helps identify, mitigate API exposures

The Last Watchdog

JUNE 17, 2020

Related: Defending botnet-driven business logic hacks APIs made possible the astounding cloud, mobile and IoT services we have today. A great example of this, Keil points out, is the Open Financial Exchange ( OFX , ) the data-stream format that enables wire transfers to be carried out across the Internet.

Digital transformation

Digital transformation Internet Internet Hacking

Corporate Finance firms leak 500K+ legal and financial documents online

Security Affairs

MARCH 17, 2020

Advantage and Argus seem to be the same company working under two different names, they offer funding and startup capital to business owners without access to traditional lending and financial services. SecurityAffairs – financial documents, cybercrime). The researchers discovered the unsecured database in December 2019.

Banking

Banking Financial Services Advertising Cybercrime

SharkBot, a new Android Trojan targets banks in Europe

Security Affairs

NOVEMBER 15, 2021

. “With the discover of SharkBot we have shown new evidence about how mobile malwares are quickly finding new ways to perform fraud, trying to bypass behavioural detection countermeasures put in place by multiple banks and financial services during the last years.” SecurityAffairs – hacking, SharkBot).

Banking

Banking Mobile Social Engineering Malware

World's Largest Bank ICBC Hit by Ransomware

SecureWorld News

NOVEMBER 10, 2023

The incident, which unfolded on November 8, 2023, has sent ripples through the global financial community, emphasizing the escalating cyber threats faced by even the most robust institutions. arm, ICBC Financial Services, experienced a ransomware attack resulting in the disruption of certain systems.

Banking

Banking Ransomware Marketing Financial Services

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Through our close collaboration, we have hacked the hackers; taken control of their infrastructure, seized their source code, and obtained keys that will help victims decrypt their systems.” Follow me on Twitter: @securityaffairs and Facebook Pierluigi Paganini ( SecurityAffairs – hacking, ransomware) on January 5, 2020.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

In a classified report cited by Chosun, the US National Intelligence Service (DNI) found that North Korea was financing its ‘priority policies’, such as nuclear and missile development, through cybercrime. The 110th Research Center was also involved in the theft of sensitive government information from entities in South Korea. .

Government

Government Cryptocurrency Media Technology

FiXS, a new ATM malware that is targeting Mexican banks

Security Affairs

MARCH 4, 2023

XFS (extensions for financial services) provides a client-server architecture for financial applications on the Microsoft Windows platform, especially peripheral devices such as EFTPOS terminals and ATMs which are unique to the financial industry. ” reads the analysis published by the experts.

Banking

Banking Malware Financial Services Architecture

Protecting Against Leakware: 5 Strategies for Vulnerable Executives

SecureWorld News

APRIL 4, 2022

According to a report from McAfee Enterprise and FireEye titled, "Cybercrime in a Pandemic World: The Impact of COVID-19," 81% of global organizations have experienced increased cyberthreats, and 79% experienced downtime from an attack during a peak season. Adopt cloud services. Prioritize employee cybersecurity training.

Ransomware

Ransomware Digital transformation Phishing Small Business

Medusa ransomware gang claims the hack of Toyota Financial Services

Toyota Financial Services discloses a data breach

Trending Sources

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group

NY Department of Financial Services Issues Cyber Fraud Alert to Auto Insurers

15 billion credentials available in the cybercrime marketplaces

Microsoft: Cybercrime Group Launches 'Targeted Attack' Against Customers

Microsoft: Cybercrime Group Launches 'Targeted Attack' Against Customers

Morgan Stanley discloses data breach after the hack of a third-party vendor

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

SEC announces sanctions against entities over email account hacking

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Nissan Oceania data breach impacted roughly 100,000 people

Resecurity Released a 2024 Cyber Threat Landscape Forecast

LoanDepot data breach impacted roughly 16.6 individuals

Would You Have Fallen for This Phone Scam?

Akira ransomware gang claims the theft of sensitive data from Nissan Australia

Papua New Guinea ‘s finance ministry was hit by a ransomware

LockBit on a Roll – ICBC Ransomware Attack Strikes at the Heart of the Global Financial Order

The New Version of JsOutProx is Attacking Financial Institutions in APAC and MENA via Gitlab Abuse

Pacific City Bank hit by AVOS Locker Ransomware

57,000 Bank of America Customers' Data Compromised in Breach

BianLian, White Rabbit, and Mario Ransomware Gangs Spotted in a Joint Campaign

LATEST CYBERTHREATS AND ADVISORIES – MARCH 24, 2023

Operation Cronos: law enforcement disrupted the LockBit operation

19-Year-Old man arrested for misusing leaked record from Optus Breach

Hackers target financial firms hosting malicious payloads on Google Cloud Storage

Murder-for-hire, money laundering, and more: How organised criminals work online

Latitude Data breach is worse than initially estimated. 14 million individuals impacted

Threat actors stole $19 million worth of crypto assets from Cream Finance

A Russian national charged for committing LockBit Ransomware attacks

Microsoft warns of multi-stage AiTM phishing and BEC attacks

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Remcos RAT campaign targets US accounting and tax return preparation firms

Cuba Ransomware received over $60M in Ransom payments as of August 2022

NEW TECH: Cequence Security’s new ‘API Sentinel’ helps identify, mitigate API exposures

Corporate Finance firms leak 500K+ legal and financial documents online

SharkBot, a new Android Trojan targets banks in Europe

World's Largest Bank ICBC Hit by Ransomware

More details about Operation Cronos that disrupted Lockbit operation

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

FiXS, a new ATM malware that is targeting Mexican banks

Protecting Against Leakware: 5 Strategies for Vulnerable Executives

Stay Connected