Collaborate Disseminate
By Waqas
Bank of America customers participating in deferred compensation plans are the main victims of this data breach.
This is a post from HackRead.com Read the original post: Infosys Data Breach Impacts 57,000 Bank of America Customers
Continue reading Infosys Data Breach Impacts 57,000 Bank of America Customers
In October, the Consumer Financial Protection Bureau (CFPB) proposed a set of rules that if implemented would transform how financial institutions handle personal data about their customers. The rules put control of that data back in the hands of ordinary Americans, while at the same time undermining the data broker economy and increasing customer choice and competition. Beyond these economic effects, the rules have important data security benefits.
The CFPB’s rules align with a key security idea: the decoupling principle. By separating which companies see what parts of our data, and in what contexts, we can gain control over data about ourselves (improving privacy) and harden cloud infrastructure against hacks (improving security). Officials at the CFPB have described the new rules as an attempt to accelerate a shift toward “open banking,” and after an initial comment period on the new rules closed late last year, Rohit Chopra, the CFPB’s director, …
Malicious software always aims to stay hidden, making itself invisible so the victims can’t detect it. The constantly mutating PixPirate malware has taken that strategy to a new extreme. PixPirate is a sophisticated financial remote access trojan (RAT) malware that heavily utilizes anti-research techniques. This malware’s infection vector is based on two malicious apps: a […]
The post PixPirate: The Brazilian financial malware you can’t see appeared first on Security Intelligence.
Continue reading PixPirate: The Brazilian financial malware you can’t see
By Uzair Amir
In the labyrinth of financial scams, one of the most insidious is the retirement banking scam. Imagine a…
This is a post from HackRead.com Read the original post: Unravelling Retirement Banking Scams and How To Protect Yourself
Continue reading Unravelling Retirement Banking Scams and How To Protect Yourself
This is an old piece of malware—the Chameleon Android banking Trojan—that now disables biometric authentication in order to steal the PIN:
The second notable new feature is the ability to interrupt biometric operations on the device, like fingerprint and face unlock, by using the Accessibility service to force a fallback to PIN or password authentication.
The malware captures any PINs and passwords the victim enters to unlock their device and can later use them to unlock the device at will to perform malicious activities hidden from view.
A man has been sentenced to 24 months in prison after being found guilty of hacking into his former employer’s network, and causing substantial damage.
Read more in my article on the Hot for Security blog. Continue reading Prison for man who wiped bank’s data after being fired for accessing porn in the office
Phishing, infostealer malware, ransomware, supply chain attacks, data breaches and crypto-related attacks are among the top evolving threats in the financial sector, says Sekoia. Continue reading Sekoia: Latest in the Financial Sector Cyber Threat Landscape
The US trading arm of the Industrial and Commercial Bank of China (ICBC) has been hit by a ransomware attack that reportedly forced it to handle trades via messengers carrying USB thumb drives across Manhattan.
Read more in my article on the Hot for… Continue reading World’s biggest bank hit by ransomware, forced to trade via USB stick
Another example of a large and influential state doing things the federal government won’t:
Boards of directors, or other senior committees, are charged with overseeing cybersecurity risk management, and must retain an appropriate level of expertise to understand cyber issues, the rules say. Directors must sign off on cybersecurity programs, and ensure that any security program has “sufficient resources” to function.
In a new addition, companies now face significant requirements related to ransom payments. Regulated firms must now report any payment made to hackers within 24 hours of that payment…
Continue reading New York Increases Cybersecurity Rules for Financial Companies
By Deeba Ahmed
New BBTok Banking Trojan Variant Emerges in Latin America: Check Point Research.
This is a post from HackRead.com Read the original post: BBTok Malware Returns, Targeting Over 40 Banks in Brazil and Mexico
Continue reading BBTok Malware Returns, Targeting Over 40 Banks in Brazil and Mexico