Banking & Finance – WindowsTechs.com

New Fakext malware targets Latin American banks

Posted on March 7, 2024 by Tal Langus

Browser extensions have become integral to our online experience. From productivity tools to entertainment add-ons, these small software modules offer customized features to suit individual preferences. Unfortunately, extensions can prove useful to malicious actors as well. Capitalizing on the favorable characteristics of an add-on, an attacker can leverage attributes like persistence, seamless installation, elevated privileges […]

The post New Fakext malware targets Latin American banks appeared first on Security Intelligence.

Continue reading New Fakext malware targets Latin American banks→

PixPirate: The Brazilian financial malware you can’t see

Posted on January 28, 2024 by Nir Somech

Malicious software always aims to stay hidden, making itself invisible so the victims can’t detect it. The constantly mutating PixPirate malware has taken that strategy to a new extreme. PixPirate is a sophisticated financial remote access trojan (RAT) malware that heavily utilizes anti-research techniques. This malware’s infection vector is based on two malicious apps: a […]

The post PixPirate: The Brazilian financial malware you can’t see appeared first on Security Intelligence.

Continue reading PixPirate: The Brazilian financial malware you can’t see→

DORA and your quantum-safe cryptography migration

Posted on January 26, 2024 by Dinesh Nagarajan

Quantum computing is a new paradigm with the potential to tackle problems that classical computers cannot solve today. Unfortunately, this also introduces threats to the digital economy and particularly the financial sector. The Digital Operational Resilience Act (DORA) is a regulatory framework that introduces uniform requirements across the European Union (EU) to achieve a “high […]

The post DORA and your quantum-safe cryptography migration appeared first on Security Intelligence.

Continue reading DORA and your quantum-safe cryptography migration→

Web injections are back on the rise: 40+ banks affected by new malware campaign

Posted on December 19, 2023 by Tal Langus

Web injections, a favored technique employed by various banking trojans, have been a persistent threat in the realm of cyberattacks. These malicious injections enable cyber criminals to manipulate data exchanges between users and web browsers, potentially compromising sensitive information. In March 2023, security researchers at IBM Security Trusteer uncovered a new malware campaign using JavaScript […]

The post Web injections are back on the rise: 40+ banks affected by new malware campaign appeared first on Security Intelligence.

Continue reading Web injections are back on the rise: 40+ banks affected by new malware campaign→

Virtual credit card fraud: An old scam reinvented

Posted on October 30, 2023 by Camila Sablotny

In today’s rapidly evolving financial landscape, as banks continue to broaden their range of services and embrace innovative technologies, they find themselves at the forefront of a dual-edged sword. While these advancements promise greater convenience and accessibility for customers, they also inadvertently expose the financial industry to an ever-shifting spectrum of emerging fraud trends. This […]

The post Virtual credit card fraud: An old scam reinvented appeared first on Security Intelligence.

Continue reading Virtual credit card fraud: An old scam reinvented→

Cost of a data breach 2023: Financial industry impacts

Posted on August 30, 2023 by Douglas Bonderud

According to the IBM Cost of a Data Breach Report 2023, the global average cost of a data breach in 2023 was $4.45 million, 15% more than in 2020. In response, 51% of organizations plan to increase cybersecurity spending this year. For the financial industry, however, global statistics don’t tell the whole story. Finance firms […]

The post Cost of a data breach 2023: Financial industry impacts appeared first on Security Intelligence.

Continue reading Cost of a data breach 2023: Financial industry impacts→

Gozi strikes again, targeting banks, cryptocurrency and more

Posted on August 17, 2023 by Itzik Chimino

In the world of cybercrime, malware plays a prominent role. One such malware, Gozi, emerged in 2006 as Gozi CRM, also known as CRM or Papras. Initially offered as a crime-as-a-service (CaaS) platform called 76Service, Gozi quickly gained notoriety for its advanced capabilities. Over time, Gozi underwent a significant transformation and became associated with other […]

The post Gozi strikes again, targeting banks, cryptocurrency and more appeared first on Security Intelligence.

Continue reading Gozi strikes again, targeting banks, cryptocurrency and more→

The rise of malicious Chrome extensions targeting Latin America

Posted on July 28, 2023 by Itzik Chimino

In its latest research, IBM Security Lab has observed a noticeable increase in campaigns related to malicious Chrome extensions, targeting Latin America with a focus on financial institutions, booking sites, and instant messaging. This trend is particularly concerning considering Chrome is one of the most widely used web browsers globally, with a market share of […]

The post The rise of malicious Chrome extensions targeting Latin America appeared first on Security Intelligence.

Continue reading The rise of malicious Chrome extensions targeting Latin America→

BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan

Posted on July 14, 2023 by Melissa Frydrych

In late April through May 2023, IBM Security X-Force found several phishing emails leading to packed executable files delivering malware we have named BlotchyQuasar, likely developed by a group X-Force tracks as Hive0129. BlotchyQuasar is hardcoded to collect credentials from multiple Latin American-based banking applications and websites used within public and private environments. Similar operations […]

The post BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan appeared first on Security Intelligence.

Continue reading BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan→

How Fraudsters Redefine Mobile Banking Account Takeovers

Posted on July 3, 2023 by Camila Sablotny

Fraudsters are constantly finding new ways to exploit vulnerabilities in the banking system, and one of the latest tactics involves stealing credit card information via mobile banking apps. This type of attack has been seen in different variations in Spain and North America and was reported for the first time at the beginning of 2023. […]

The post How Fraudsters Redefine Mobile Banking Account Takeovers appeared first on Security Intelligence.

Continue reading How Fraudsters Redefine Mobile Banking Account Takeovers→