Cybercrime, Financial Services and Information Security

Toyota Financial Services discloses a data breach

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services

Financial Services Data breaches Identity Theft Banking

Medusa ransomware gang claims the hack of Toyota Financial Services

Security Affairs

NOVEMBER 17, 2023

Toyota Financial Services discloses unauthorized activity on systems after the Medusa ransomware gang claimed to have hacked the company. Toyota Financial Services confirmed the discovery of unauthorized activity on systems in a limited number of its locations. The company has yet to disclose a data breach.

Financial Services

Financial Services Hacking Ransomware Data breaches

15 billion credentials available in the cybercrime marketplaces

Security Affairs

JULY 9, 2020

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. The credentials are sold for an average of $15.43, the most expensive pairs relate to banking and financial services accounts, with an average price of nearly $71.

Cybercrime

Cybercrime Antivirus Marketing Accountability

Webinars

Human-Centered Cyber Security Training: Driving Real Impact on Security Culture

MORE WEBINARS

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs

OCTOBER 19, 2023

This is an important achievement in the fight against cybercrime. Law enforcement from the US, Europe, Germany, France, Italy, Japan, Spain, Netherlands, Czech Republic, and Latvia conducted a joint operation that led to the seizure of the Ragnar Locker ransomware’s infrastructure. Both FBI and Europol declined to comment on the events.

Ransomware

Ransomware Financial Services Cybercrime Manufacturing

Resecurity Released a 2024 Cyber Threat Landscape Forecast

Security Affairs

DECEMBER 26, 2023

The recent cyber-attacks by an Iranian-backed cybercriminal group on a water utility in Aliquippa , Pennsylvania by targeting an Israeli-made SCADA system exemplify incidents teetering on the edge of cyberterrorism and cybercrime.

Cyber threats

Cyber threats Energy and Utilities Artificial Intelligence Cyber Attacks

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC said that under First American’s remediation policies, if the person responsible for fixing the problem is unable to do so based on the timeframes listed above, that employee must have their management contact the company’s information security department to discuss their remediation plan and proposed time estimate.

Insurance

Insurance Risk Financial Services CISO

Nissan Oceania data breach impacted roughly 100,000 people

Security Affairs

MARCH 14, 2024

The Australian and New Zealand Nissan Corporation and Financial Services (“Nissan”) advises that its systems have been subject to a cyber incident. Nissan is working with its global incident response team and relevant stakeholders to investigate the extent of the incident and whether any personal information has been accessed.”

Data breaches

Data breaches Identity Theft Financial Services Cybercrime

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center New NKAbuse malware abuses NKN decentralized P2P network protocol Snatch ransomware gang claims the hack of the food giant Kraft Heinz Multiple flaws in pfSense firewall can lead to arbitrary code execution BianLian, White Rabbit, and Mario Ransomware Gangs Spotted (..)

Data breaches

Data breaches Cybercrime Firewall Artificial Intelligence

LoanDepot data breach impacted roughly 16.6 individuals

Security Affairs

JANUARY 23, 2024

Financial services company LoanDepot disclosed a data breach that impacted roughly 16.6 LoanDepot is a financial services company that primarily operates as a mortgage lender. The company provides a range of mortgage and non-mortgage loan products and services. million individuals. million individuals.

Data breaches

Data breaches Financial Services Cybersecurity Encryption

Papua New Guinea ‘s finance ministry was hit by a ransomware

Security Affairs

OCTOBER 29, 2021

“The government and the people of Papua New Guinea can be assured that the government financial services will continue as usual,” Pundari said. “The Department is conscious of the security and integrity of its data. SecurityAffairs – hacking, cybercrime). Pierluigi Paganini.

Ransomware

Ransomware Government Financial Services Cybercrime

Morgan Stanley discloses data breach after the hack of a third-party vendor

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The company has offices in more than 42 countries and more than 60,000 employees, it has clients in multiple industries. . ” reads the letter.

Data breaches

Data breaches Hacking Banking Financial Services

The New Version of JsOutProx is Attacking Financial Institutions in APAC and MENA via Gitlab Abuse

Security Affairs

APRIL 3, 2024

Resecurity researchers warn that a new Version of JsOutProx is targeting financial institutions in APAC and MENA via Gitlab abuse. Resecurity has detected a new version of JSOutProx , which is targeting financial services and organizations in the APAC and MENA regions.

Banking

Banking Financial Services Malware Phishing

LockBit on a Roll – ICBC Ransomware Attack Strikes at the Heart of the Global Financial Order

Security Affairs

DECEMBER 4, 2023

The experts called it ‘prepositioning’ to analyze the response from financial organizations globally and the reaction of the market. LockBit specifically targeted ICBC Financial Services (ICBC FS), a wholly owned U.S. subsidiary of the state-owned lender, which plays a critical role in the world of international finance.

Ransomware

Ransomware Banking Financial Services Marketing

19-Year-Old man arrested for misusing leaked record from Optus Breach

Security Affairs

OCTOBER 6, 2022

The database belonging to the company was leaked on a cybercrime forum. The authorities determined that data used in this criminal activity were from the 10,200 records stolen from the telecommunications giant last month.

Data breaches

Data breaches Scams Telecommunications Financial Services

Akira ransomware gang claims the theft of sensitive data from Nissan Australia

Security Affairs

DECEMBER 22, 2023

The Australian and New Zealand Nissan Corporation and Financial Services (“Nissan”) advises that its systems have been subject to a cyber incident. Nissan is working with its global incident response team and relevant stakeholders to investigate the extent of the incident and whether any personal information has been accessed.”

Ransomware

Ransomware Data breaches Financial Services Scams

BianLian, White Rabbit, and Mario Ransomware Gangs Spotted in a Joint Campaign

Security Affairs

DECEMBER 15, 2023

Resecurity’s HUNTER (HUMINT) unit spotted the BianLian , White Rabbit , and Mario ransomware gangs collaborating in a joint extortion campaign targeting publicly-traded financial services firms.

Ransomware

Ransomware Financial Services Cyber Attacks Cybersecurity

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Financial Services Manufacturing

Meet the 2021 SC Awards judges

SC Magazine

MAY 1, 2021

Prior to Mastercard, Abdullah was the chief information security officer at Xerox, where she established and led a corporate-wide information risk management program. She also served as the deputy chief information officer of the White House. She is also the host of the Mastering Cyber podcast.

Computers and Electronics

Computers and Electronics Technology Education Information Security

Latitude Data breach is worse than initially estimated. 14 million individuals impacted

Security Affairs

MARCH 28, 2023

Australian loan giant Latitude Financial Services (Latitude) revealed that a data breach its has suffered impacted 14 million customers. The data breach suffered by Latitude Financial Services (Latitude) is much more serious than initially estimated.

Data breaches

Data breaches Financial Services Passwords Hacking

Pacific City Bank hit by AVOS Locker Ransomware

Security Affairs

SEPTEMBER 5, 2021

The cybercriminals defined the security implemented by the bank terrible. “Pacific City Bank provides outstanding banking and financial services for businesses and consumers. but they have horrible security)” reads the message published on the leak site.

Banking

Banking Ransomware Financial Services Hacking

A Russian national charged for committing LockBit Ransomware attacks

Security Affairs

JUNE 16, 2023

“In securing the arrest of a second Russian national affiliated with the LockBit ransomware, the Department has once again demonstrated the long arm of the law. We will continue to use every tool at our disposal to disrupt cybercrime, and while cybercriminals may continue to run, they ultimately cannot hide.”

Ransomware

Ransomware Healthcare Education Government

Avoslocker ransomware gang targets US critical infrastructure

Security Affairs

MARCH 19, 2022

. “AvosLocker is a Ransomware as a Service (RaaS) affiliate-based group that has targeted victims across multiple critical infrastructure sectors in the United States including, but not limited to, the Financial Services, Critical Manufacturing, and Government Facilities sectors. Consider installing and using a VPN.

Ransomware

Ransomware DDOS Passwords Backups

Report Reveals Top Cyber Threats, Trends of 2023 First Half

SecureWorld News

JUNE 13, 2023

Critical Start today released its biannual Cyber Intelligence Report, featuring the top threats observed in the first half of 2023 and emerging cybersecurity trends impacting the healthcare, financial services, and state and local government industries.

Cyber threats

Cyber threats Malware Phishing Penetration Testing

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike.

Hacking

Hacking VPN Advertising Financial Services

Microsoft warns of multi-stage AiTM phishing and BEC attacks

Security Affairs

JUNE 11, 2023

Microsoft researchers warn of banking adversary-in-the-middle (AitM) phishing and BEC attacks targeting banking and financial organizations. Microsoft discovered multi-stage adversary-in-the-middle (AiTM) phishing and business email compromise (BEC) attacks against banking and financial services organizations.

Phishing

Phishing Banking Financial Services Authentication

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

The recent campaign exclusively aims at organizations that deal with tax preparation, financial services, CPA and accounting firms, and professional service firms dealing in bookkeeping and tax. Crooks use lures masquerading as tax documentation sent by a client. LNK) files.

Accountability

Accountability Phishing Financial Services Surveillance

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

entities Financial Services, Government Facilities, Healthcare and Public Health, Critical Manufacturing, and Information Technology. Third-party and open-source reports have identified a possible link between Cuba ransomware actors, RomCom Remote Access Trojan (RAT) actors, and Industrial Spy ransomware actors.”

Ransomware

Ransomware Financial Services Manufacturing Healthcare

SharkBot, a new Android Trojan targets banks in Europe

Security Affairs

NOVEMBER 15, 2021

. “With the discover of SharkBot we have shown new evidence about how mobile malwares are quickly finding new ways to perform fraud, trying to bypass behavioural detection countermeasures put in place by multiple banks and financial services during the last years.” ” concludes the report.

Banking

Banking Mobile Social Engineering Malware

Resecurity identified the investment scam network ‘Digital Smoke’

Security Affairs

FEBRUARY 27, 2023

The majority of the identified fraudulent projects were related to financial services (FIs), oil & gas, renewable energy, EV batteries, electric vehicles, healthcare, semiconductors, and world-recognized investment corporations and funds with a global presence.

Scams

Scams Mobile Marketing Banking

FiXS, a new ATM malware that is targeting Mexican banks

Security Affairs

MARCH 4, 2023

XFS (extensions for financial services) provides a client-server architecture for financial applications on the Microsoft Windows platform, especially peripheral devices such as EFTPOS terminals and ATMs which are unique to the financial industry. ” reads the analysis published by the experts.

Banking

Banking Malware Financial Services Architecture

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Security Affairs

MAY 24, 2023

In a classified report cited by Chosun, the US National Intelligence Service (DNI) found that North Korea was financing its ‘priority policies’, such as nuclear and missile development, through cybercrime. correspondent or payable-through account sanctions.” ” We are in the final!

Government

Government Cryptocurrency Media Technology

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

Security Affairs

MARCH 8, 2022

. “As of January 2022, the FBI has identified at least 52 entities across 10 critical infrastructure sectors affected by RagnarLocker ransomware, including entities in the critical manufacturing, energy, financial services, government, and information technology sectors,” reads the FBI’s flash alert.

Ransomware

Ransomware Financial Services Passwords VPN

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Security Affairs

SEPTEMBER 29, 2022

The experts were able to enumerate the C2s and targets of multiple distinct Chaos clusters, some of which were employed in recent DDoS attacks against the gaming, financial services and technology, and media and entertainment industries. .” reads the analysis published by Lumen Technologies. ” continues the report.

Malware

Malware DDOS Architecture Financial Services

Threat actors stole $19 million worth of crypto assets from Cream Finance

Security Affairs

AUGUST 31, 2021

Finance is a decentralized lending protocol for individuals, institutions and protocols to access financial services. The security breach was confirmed by the company with a message via Twitter: C.R.E.A.M. It promises earnings to users who are passively holding ETH or wBTC.

Cryptocurrency

Cryptocurrency Hacking Financial Services Marketing

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

Security Affairs

AUGUST 21, 2021

” The victims of the Lockfile ransomware gang are in the manufacturing, financial services, engineering, legal, business services, and travel and tourism sectors. It is not clear how the attackers gain initial access to the Microsoft Exchange Servers.”

Ransomware

Ransomware Financial Services Hacking Encryption

SEC announces sanctions against entities over email account hacking

Security Affairs

SEPTEMBER 1, 2021

The sanctioned entities are Cetera (Advisor Networks, Investment Services, Financial Specialists, Advisors, and Investment Advisers), Cambridge Investment Research (Investment Research and Investment Research Advisors), and KMS Financial Services.

Accountability

Accountability Hacking Financial Services Cybersecurity

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

A massive phishing campaign using QR codes targets the energy sector

Security Affairs

AUGUST 16, 2023

Other top 4 targeted industries include Manufacturing, Insurance, Technology, and Financial Services seeing 15%, 9%, 7%, and 6% of the campaign traffic respectively.” com (Cloudflare’s Web3 services). ” Most of the links included in the phishing messages were comprised of Bing redirect URLs.

Phishing

Phishing Energy and Utilities Insurance Manufacturing

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Herjavec Group

AUGUST 2, 2021

Herjavec Group’s award-winning Managed Security Services Practice defends global, enterprise-level organizations from increasingly sophisticated, targeted cybercrime threats. He has over 30 years of experience in information security and has established himself as a leading voice in business and cybersecurity.

InfoSec

InfoSec Cybersecurity Computers and Electronics Marketing

Hackers stole $32 million from Bitpoint cryptocurrency exchange

Security Affairs

JULY 12, 2019

“The hacks have prompted greater oversight of crypto exchanges by Japan’s Financial Services Agency but critics says security gaps remain.” The list of hacked exchanges includes Bithumb Binance , Coinrail , Zaif , Coincheck , and Bitfinex. ” concludes the AFP press.

Cryptocurrency

Cryptocurrency Cyber Attacks Financial Services Advertising

California IT service provider Synoptek pays ransom after Sodinokibi attack

Security Affairs

JANUARY 5, 2020

Synoptek has more than 1,100 customers across multiple industries, including local governments, financial services, healthcare, manufacturing, media, retail and software. . ” T he IT service provider confirmed the attack but did not comment on whether it paid the ransom asked by the crooks.

Ransomware

Ransomware Financial Services Retail Advertising

Microsoft partnered with other security firms to takedown TrickBot botnet

Security Affairs

OCTOBER 12, 2020

This action will result in protection for a wide range of organizations, including financial services institutions, government, healthcare, and other verticals from malware and human-operated campaigns delivered via the Trickbot infrastructure.” ” concludes Microsoft.

Banking

Banking Malware Advertising Financial Services

Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital

Security Affairs

SEPTEMBER 9, 2023

The cybercrime group claims to have stolen 1 TB of data from the hospital and threatens to leak it. The Ragnar Locker ransomware gang added Israel’s Mayanei Hayeshua hospital to the list of victims on its Tor leak site The Ragnar Locker ransomware gang claimed responsibility for an attack on Israel’s Mayanei Hayeshua hospital.

Ransomware

Ransomware Financial Services Cybercrime Encryption

Toyota Financial Services discloses a data breach

Medusa ransomware gang claims the hack of Toyota Financial Services

Webinars

Trending Sources

15 billion credentials available in the cybercrime marketplaces

Webinars

Law enforcement operation seized Ragnar Locker group’s infrastructure

Resecurity Released a 2024 Cyber Threat Landscape Forecast

First American Financial Pays Farcical $500K Fine

Nissan Oceania data breach impacted roughly 100,000 people

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

LoanDepot data breach impacted roughly 16.6 individuals

Papua New Guinea ‘s finance ministry was hit by a ransomware

Morgan Stanley discloses data breach after the hack of a third-party vendor

The New Version of JsOutProx is Attacking Financial Institutions in APAC and MENA via Gitlab Abuse

LockBit on a Roll – ICBC Ransomware Attack Strikes at the Heart of the Global Financial Order

19-Year-Old man arrested for misusing leaked record from Optus Breach

Akira ransomware gang claims the theft of sensitive data from Nissan Australia

BianLian, White Rabbit, and Mario Ransomware Gangs Spotted in a Joint Campaign

Operation Cronos: law enforcement disrupted the LockBit operation

Meet the 2021 SC Awards judges

Latitude Data breach is worse than initially estimated. 14 million individuals impacted

Pacific City Bank hit by AVOS Locker Ransomware

A Russian national charged for committing LockBit Ransomware attacks

Avoslocker ransomware gang targets US critical infrastructure

Report Reveals Top Cyber Threats, Trends of 2023 First Half

Iran-linked APT group Pioneer Kitten sells access to hacked networks

Microsoft warns of multi-stage AiTM phishing and BEC attacks

Remcos RAT campaign targets US accounting and tax return preparation firms

Cuba Ransomware received over $60M in Ransom payments as of August 2022

SharkBot, a new Android Trojan targets banks in Europe

Resecurity identified the investment scam network ‘Digital Smoke’

FiXS, a new ATM malware that is targeting Mexican banks

The US government sanctioned four entities and one individual for supporting cyber operations conducted by North Korea

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Threat actors stole $19 million worth of crypto assets from Cream Finance

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

New LockFile ransomware gang uses ProxyShell and PetitPotam exploits

SEC announces sanctions against entities over email account hacking

More details about Operation Cronos that disrupted Lockbit operation

A massive phishing campaign using QR codes targets the energy sector

Herjavec Group is Recognized by Cyber Defence Black Unicorn Awards

Hackers stole $32 million from Bitpoint cryptocurrency exchange

California IT service provider Synoptek pays ransom after Sodinokibi attack

Microsoft partnered with other security firms to takedown TrickBot botnet

Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital

Stay Connected