Thales Cloud Protection & Licensing

JANUARY 16, 2025

However, as important as PCI may be, United States financial services organizations operate in one of the worlds most stringent and complex compliance landscapes. Understanding the US FinServ Compliance Landscape The US financial services industry is subject to a vast number of laws and regulations.

Financial Services

Security Affairs

MAY 9, 2025

.” In April 2025, the South African multinational telecommunications company MTN Group Limited disclosed a data breach that exposed subscribers personal information, it added that the incident did not impact the core network, billing systems and financial services infrastructure.

Cyber Attacks

Security Affairs

MAY 17, 2025

Theyve targeted high-profile brands, possibly to boost notoriety, and often shift focus by sector, such as financial services and food industries. After 2024 arrests [ 1 , 2 , 3 ], their activity dropped, but ties to other threat actors may aid a comeback. companies, shifting their focus across the Atlantic.

Retail

Centraleyes

MARCH 13, 2025

If you’re part of the financial services ecosystem hereor interact with businesses regulated by the New York State Department of Financial Servicesyouve likely come across the NYDFS Cybersecurity Regulation. New York, the city that never sleeps, is also the city that takes cybersecurity very seriously.

Cybersecurity

Security Affairs

JULY 24, 2025

Like any other banking trojan, Coyote is hunting banking information, but what sets Coyote apart is the way it obtains this information, which involves the (ab)use of UIA.” The Coyote malware collects system details and focuses on identifying victims’ financial services. ” reads the report published by Akamai.

Malware

Centraleyes

MARCH 3, 2025

The New York Department of Financial Services (DFS) Cybersecurity Regulation, introduced in 2017, was groundbreaking, setting a high bar for financial institutions. Similarly, the states Information Security Breach and Notification Act (2005) was one of the earliest breach notification laws in the U.S.,

Data breaches

Security Affairs

JANUARY 26, 2025

President Donald Trump granted a “full and unconditional pardon” to Ross Ulbricht, Silk Road creator Pwn2Own Automotive 2025 Day 1: organizers awarded $382,750 for 16 zero-days Subaru Starlink flaw allowed experts to remotely hack cars Two ransomware groups abuse Microsofts Office 365 platform to gain access to target organizations Cloudflare (..)

DDOS

Centraleyes

JULY 3, 2025

ISO/IEC 42001 complements other recognized standards such as ISO/IEC 27001 (information security), ISO/IEC 27701 (privacy) , and ISO 31000 (risk management), providing a cohesive approach to governing AI alongside existing enterprise management systems. AML, Basel).

Government

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data.

Financial Services

Security Affairs

NOVEMBER 17, 2023

Toyota Financial Services discloses unauthorized activity on systems after the Medusa ransomware gang claimed to have hacked the company. Toyota Financial Services confirmed the discovery of unauthorized activity on systems in a limited number of its locations. The company has yet to disclose a data breach.

Financial Services

Krebs on Security

JUNE 18, 2021

The SEC said that under First American’s remediation policies, if the person responsible for fixing the problem is unable to do so based on the timeframes listed above, that employee must have their management contact the company’s information security department to discuss their remediation plan and proposed time estimate.

Insurance

Krebs on Security

APRIL 11, 2024

New York City based Sisense has more than 1,000 customers across a range of industry verticals, including financial services, telecommunications, healthcare and higher education. ” “We are taking this matter seriously and promptly commenced an investigation,” Dash continued.

CISO

CyberSecurity Insiders

APRIL 24, 2021

a division of NTT (TYO:9432), today announced that it has named Matthew Ireland Chief Information Security Officer (CISO). Most recently a consulting Practice Manager and Executive Security Strategist at NTT Ltd., Most recently a consulting Practice Manager and Executive Security Strategist at NTT Ltd.,

Information Security

CSO Magazine

DECEMBER 7, 2022

Ransomware was again the top attack type in 2021, with manufacturing replacing financial services as the top industry in a Brooks. Jon Hocut, director of information security for Brooks To read this article in full, please click here

Financial Services

Security Affairs

AUGUST 20, 2024

In December 2023, Toyota Financial Services (TFS) warned customers it had suffered a data breach that exposed sensitive personal and financial data. Toyota Financial Services (TFS) is the finance arm of the Toyota Motor Corporation.

Data breaches

The Hacker News

MAY 5, 2022

An ElasticSearch server instance that was left open on the Internet without a password contained sensitive financial information about loans from Indian and African financial services. Those records included personal information like name,

Financial Services

Security Affairs

APRIL 28, 2024

ICICI Bank Limited is an Indian multinational bank and financial services company headquartered in Mumbai. It offers a wide range of banking and financial services for corporate and retail customers. The bank has a network of 6000 branches, and 17000 ATMs across India and has a presence in 17 countries.

Banking

Security Boulevard

AUGUST 11, 2021

Kerissa Varma is Group Chief Information Security Officer of Old Mutual Limited, one of the largest financial services organizations on the African continent.

CISO

CSO Magazine

JANUARY 28, 2021

Federal Information Security Management Act (FISMA). Nevada Personal Information Data Privacy Encryption Law NRS 603A. New Jersey — An ACT concerning disclosure of breaches of security and amending P.L.2005, New York Stop Hacks and Improve Electronic Data Security (SHIELD) Act. NERC) standards.

CSO

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July.

Insurance

The Last Watchdog

JANUARY 28, 2024

I had the chance to visit with , senior scientist at NTT Research’s Cryptography & Information Security (CIS) Lab , to learn more about the progress being made on a promising concept called “privacy preserving aggregate statistics.” Rising data privacy regulations underscores the need for such a capability, Boyle told me.

Data privacy

Security Affairs

JANUARY 23, 2024

Financial services company LoanDepot disclosed a data breach that impacted roughly 16.6 LoanDepot is a financial services company that primarily operates as a mortgage lender. The company provides a range of mortgage and non-mortgage loan products and services. million individuals. million individuals.

Data breaches

Security Affairs

NOVEMBER 20, 2021

According to the Reuters , the banking industry had successfully completed a massive cross-industry cyber security drill to test the response to a ransomware attack that threatens to disrupt a range of financial services. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, U.S.

Banking

BH Consulting

APRIL 27, 2021

More and more organisations are making information security a priority. At the same time, many companies are increasingly asking organisations they work with to show they handle all data securely. But how can organisations be confident in the security measures they put in place? Keep confidential data secure.

Financial Services

Security Affairs

SEPTEMBER 5, 2021

The cybercriminals defined the security implemented by the bank terrible. “Pacific City Bank provides outstanding banking and financial services for businesses and consumers. but they have horrible security)” reads the message published on the leak site.

Banking

Security Affairs

NOVEMBER 10, 2023

Treasury market and impacted some fixed income and equities transactions “The Securities Industry and Financial Markets Association first told members on Wednesday that ICBC Financial Services had been hit by ransomware software, which paralyses computer systems unless a payment is made, several people familiar with the discussions said.”

Banking

Security Affairs

SEPTEMBER 10, 2023

. “Historically, approximately 10% to 15% of the DDoS attacks observed by Akamai have been aimed at customers in the financial services industry.” In fact, over the past four quarters, more than 30% of the DDoS attacks have been aimed at financial services companies.” ” concludes Akamai.

DDOS

Security Affairs

OCTOBER 6, 2021

The majority of intercepted credentials by Agent Tesla related to financial services, online-retailers, e-government systems and personal and business e-mail accounts. . Researchers found active instances of Agent Tesla and developed a mechanism to enumerate the affected clients and extract compromised data.

Cyber threats

Security Affairs

OCTOBER 14, 2020

Not only can the financial costs be high, but the disruption to critical sectors, including financial services and healthcare, as well as the exposure of confidential information, can cause severe damage.” “The G7 is committed to working with our financial sectors to combat ransomware.

Ransomware

SC Magazine

MAY 1, 2021

Prior to Mastercard, Abdullah was the chief information security officer at Xerox, where she established and led a corporate-wide information risk management program. She also served as the deputy chief information officer of the White House. She is also the host of the Mastering Cyber podcast.

Computers and Electronics

Security Affairs

JULY 8, 2021

The American multinational investment bank and financial services firm Morgan Stanley discloses a data breach caused by the hack of an Accellion FTA server of a third-party vendor. The company has offices in more than 42 countries and more than 60,000 employees, it has clients in multiple industries. . ” reads the letter.

Data breaches

SecureWorld News

JANUARY 22, 2025

Meet the instructors Larry Wilson , CISSP, CISA, was formerly the Chief Information Security Officer for Sumitomo Pharma Americas, Inc., In the CISO role, Larry was responsible for developing, implementing, and overseeing compliance with the SMPA / WPI / UMass Information Security Policy and Written Information Security Plan (WISP).

Cybersecurity

Security Affairs

DECEMBER 4, 2023

The experts called it ‘prepositioning’ to analyze the response from financial organizations globally and the reaction of the market. LockBit specifically targeted ICBC Financial Services (ICBC FS), a wholly owned U.S. subsidiary of the state-owned lender, which plays a critical role in the world of international finance.

Ransomware

CyberSecurity Insiders

MARCH 27, 2021

This is particularly important for high-risk vendors who process sensitive data, intellectual property or other sensitive information. This means due diligence is required to determine the overall suitability of third-parties for their given task and increasingly, whether they can keep information secure.

Risk

SecureWorld News

DECEMBER 6, 2023

Hospitals will be required to implement comprehensive cybersecurity programs, including vulnerability assessments, access controls, and security awareness training for their employees. I view it as a welcomed step in helping security teams secure the funding and support they need to keep our heads above water. .

Cyber Attacks

Security Affairs

OCTOBER 19, 2023

“As of January 2022, the FBI has identified at least 52 entities across 10 critical infrastructure sectors affected by RagnarLocker ransomware, including entities in the critical manufacturing, energy, financial services, government, and information technology sectors,” reads the FBI’s flash alert.

Financial Services

Security Affairs

DECEMBER 7, 2023

“The Australian and New Zealand Nissan Corporation and Financial Services (“Nissan”) advises that its systems have been subject to a cyber incident. Nissan is working with its global incident response team and relevant stakeholders to investigate the extent of the incident and whether any personal information has been accessed.”

Cyber Attacks