Category Archives: Finanacial Malware

BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan

Posted on by

In late April through May 2023, IBM Security X-Force found several phishing emails leading to packed executable files delivering malware we have named BlotchyQuasar, likely developed by a group X-Force tracks as Hive0129. BlotchyQuasar is hardcoded to collect credentials from multiple Latin American-based banking applications and websites used within public and private environments. Similar operations […]

The post BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan appeared first on Security Intelligence.

Continue reading BlotchyQuasar: X-Force Hive0129 targeting financial intuitions in LATAM with a custom banking trojan

SEC Proposes New Cybersecurity Rules for Financial Services

Posted on by

Proposed new policies from the Securities and Exchange Commission (SEC) could spell changes for how financial services firms handle cybersecurity. On Feb. 9, the SEC voted to propose cybersecurity risk management policies for registered investment advisers, registered investment companies and business development companies (funds). Next, the proposal will go through a public comment period until […]

The post SEC Proposes New Cybersecurity Rules for Financial Services appeared first on Security Intelligence.

Continue reading SEC Proposes New Cybersecurity Rules for Financial Services

2022 Banking & Finance Security Intelligence Roundup

Posted on by

The banking and finance industries deliver more services online now than ever before due to the pandemic. As a result, banking cybersecurity became more important than ever this year. Some of the threats to big data security in recent years included ransomware attacks, the growth of contactless payments, mobile malware attacks and even data breaches […]

The post 2022 Banking & Finance Security Intelligence Roundup appeared first on Security Intelligence.

Continue reading 2022 Banking & Finance Security Intelligence Roundup

BrazKing Android Malware Upgraded and Targeting Brazilian Banks

Posted on by

Nethanella Messer and James Kilner contributed to the technical editing of this blog. IBM Trusteer researchers continually analyze financial fraud attacks in the online realms. In recent research into mobile banking malware, we delved into the BrazKing malware’s inner workings following a sample found by MalwareHunterTeam. BrazKing is an Android banking Trojan from the overlay […]

The post BrazKing Android Malware Upgraded and Targeting Brazilian Banks appeared first on Security Intelligence.

Continue reading BrazKing Android Malware Upgraded and Targeting Brazilian Banks

Self-Assessment: How Can You Improve Financial Services Cybersecurity?

Posted on by

It’s common knowledge that threat actors target banks. Not only might these attackers want to directly steal money, by doing this they’re also hitting the customers and the trust in the bank. If a financial institution suffers a loss, even insurance can only go so far to minimize the actual cost to the organization. The cost […]

The post Self-Assessment: How Can You Improve Financial Services Cybersecurity? appeared first on Security Intelligence.

Continue reading Self-Assessment: How Can You Improve Financial Services Cybersecurity?

Threat Actors’ Most Targeted Industries in 2020: Finance, Manufacturing and Energy

Posted on by

IBM Security’s annual X-Force Threat Intelligence Index uses data derived from across our teams and managed customers to gather insights about the topmost targeted industries every year, helping organizations manage risk and resource investment in their security programs. When it comes to managing digital risk and facing potential cyberattacks, each industry faces its own unique […]

The post Threat Actors’ Most Targeted Industries in 2020: Finance, Manufacturing and Energy appeared first on Security Intelligence.

Continue reading Threat Actors’ Most Targeted Industries in 2020: Finance, Manufacturing and Energy

Darknet Cybersecurity: How Finance Institutions Can Defend Themselves

Posted on by

Financial firms continue to move to digital-first deployments, as retail branches close, and people shift to remote work. This shift makes understanding and preventing even common darknet, or dark web, threats a priority. Financial cybersecurity investment institutions need to understand what the dark web is, provide their security teams with the tools to explore it […]

The post Darknet Cybersecurity: How Finance Institutions Can Defend Themselves appeared first on Security Intelligence.

Continue reading Darknet Cybersecurity: How Finance Institutions Can Defend Themselves

ITG08 (aka FIN6) Partners With TrickBot Gang, Uses Anchor Framework

Posted on by

Financially motivated, adaptable, sophisticated and persistent, the ITG08 threat group is likely to remain one of the most potent cybercriminal groups in this new decade.

The post ITG08 (aka FIN6) Partners With TrickBot Gang, Uses Anchor Framework appeared first on Security Intelligence.

Continue reading ITG08 (aka FIN6) Partners With TrickBot Gang, Uses Anchor Framework

The Curious Case of a Fileless TrickBot Infection

Posted on by

Reading Time: 7 minutes IBM X-Force noted changes in the deployment of the TrickBot Trojan and discovered that the most recent version of the malware is fileless.

The post The Curious Case of a Fileless TrickBot Infection appeared first on Security Intelligence.

Continue reading The Curious Case of a Fileless TrickBot Infection

Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID

Posted on by

Gozi took a larger slice of the financial malware pie and become the most active banking Trojan in 2017, according to the IBM X-Force Threat Intelligence Index 2018.

The post Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID appeared first on Security Intelligence.

Continue reading Q1 2018 Results: Gozi (Ursnif) Takes Larger Piece of the Pie and Distributes IcedID