KnowBe4

SEPTEMBER 28, 2023

A recent panel discussion of banking CISOs and experts at the SIBOS conference focused on the current state of ransomware and what institutions should do to protect themselves.

Financial Services 99

Financial Services Ransomware Security awareness Phishing 99

Data Breach Today

AUGUST 10, 2018

These are among the top threats to financial institutions of all sizes. Ransomware. Credential stuffing. But small-to-midsized ones are particularly challenged to detect and respond to threats. Arctic Wolf's Todd Thiemann discusses the value of managed detection and response.

Financial Services 100

Financial Services Phishing Ransomware 100

Data Breach Today

MAY 28, 2020

Google: Hackers Using COVID-19 Phishing Themes to Target Businesses "Hack-for-hire" groups operating in India are spoofing World Health Organization emails to steal credentials from financial services and healthcare firms around the world, according to Google's Threat Analysis Group.

Financial Services 284

Financial Services Phishing 284

CGI

APRIL 17, 2020

Embracing new ways of working in financial services. In times of crisis, the preservation of key functions and services is critical, regardless of industry. Financial services is no exception, as payments, lending, and trade are the lifeblood of the global economy, even in challenging times.

Financial Services 89

Financial Services Artificial Intelligence Computer and Electronics Cybersecurity 89

HL Chronicle of Data Protection

APRIL 17, 2020

Continuing its focus on COVID-19’s impact on its regulated entities, on April 13, the New York Department of Financial Services (NYDFS) released new cybersecurity guidance in response to the COVID-19 pandemic. Increased Phishing and Fraud. Remote Working. Third Party Risk.

Financial Services 75

Financial Services Risk Cybersecurity Phishing 75

Data Breach Today

MAY 10, 2021

50% of phishing attacks targeting financial services intend on stealing corporate login credentials View this session to learn why mobile threat exposures continue to increase & best practices for mitigating the threats.

Financial Services 215

Financial Services Phishing Cloud Security 215

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” com (Cloudflare’s Web3 services).

Phishing 85

Phishing Energy and Utilities Insurance Manufacturing 85

Hunton Privacy

APRIL 22, 2020

On April 13, 2020, the New York Department of Financial Services (“NYDFS”) issued guidance (“April guidance”) to all New York State entities covered under NYDFS’s cybersecurity regulation regarding assessing and addressing heightened cybersecurity risks due to the COVID-19 pandemic.

Financial Services 71

Financial Services Cybersecurity Phishing Risk 71

Security Affairs

MAY 10, 2022

“Frappo” acts as a Phishing-as-a-Service and enables cybercriminals the ability to host and generate high-quality phishing pages which impersonate major online banking, e-commerce, popular retailers, and online-services to steal customer data.

Phishing 71

Phishing Retail Financial Services Data breaches 71

Security Affairs

NOVEMBER 20, 2023

The economically motivated APT group used specially crafted archives in phishing attacks against forum users through online trading forum posts. NSFOCUS Research Labs pointed out that exploitation of the CVE-2023-38831 flaw can be integrated into watering hole and phishing attacks. ” reads the report published by NSFOCUS.

Phishing 131

Phishing Archiving Financial Services Cybersecurity 131

Security Affairs

FEBRUARY 28, 2024

Emerging Threats and Trends The landscape of email threats continues to evolve, with VIPRE’s report shedding light on several alarming trends: Deepfake and AI Exploitation: Attackers increasingly leverage deepfake technology and AI to craft more convincing phishing emails, significantly raising the stakes for email security.

Security 114

Security Phishing Communications Financial Services 114

Dark Reading

DECEMBER 7, 2020

A well-organized email spoofing campaign has been seen targeting financial services, insurance, healthcare, manufacturing, utilities, and telecom.

Phishing 136

Phishing Financial Services Insurance Manufacturing 136

KnowBe4

MARCH 28, 2023

CyberheistNews Vol 13 #13 | March 28th, 2023 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks Users need to adapt to an evolving threat landscape in which attackers can use AI tools like ChatGPT to craft extremely convincing phishing emails, according to Matthew Tyson at CSO. "A We must ask: 'Is the email expected?

Phishing 83

Phishing Security awareness Insurance Cybersecurity 83

Krebs on Security

NOVEMBER 16, 2022

A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode , an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic. com — which was created to phish U.S.

Phishing 257

Phishing Authentication Financial Services Access 257

Security Affairs

APRIL 3, 2024

Resecurity researchers warn that a new Version of JsOutProx is targeting financial institutions in APAC and MENA via Gitlab abuse. Resecurity has detected a new version of JSOutProx , which is targeting financial services and organizations in the APAC and MENA regions.

Financial Services 92

Financial Services Phishing IT Information Security 92

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. NYDFS also found that Carnival had failed to implement basic protocols to prevent data breaches.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

KnowBe4

DECEMBER 6, 2023

The ransomware attack on ICBC Financial Services caused disruption of trading of U.S. Treasuries and marked a new level of breach that could have massive repercussions.

Ransomware 84

Ransomware Financial Services Phishing Security 84

KnowBe4

OCTOBER 9, 2023

While industries like financial services and healthcare tend to dominate in IT attacks, the tables are turned when looking at Operational Technology (OT) cyber attacks – and the energy sector is the clear “winner.”

Financial Services 87

Financial Services Cybersecurity IT Phishing 87

Security Affairs

APRIL 16, 2023

The phishing attacks began in February 2023, the IT giant reported. In 2021, CISA added Remcos to the list of top malware strains due to its use in mass phishing attacks using COVID-19 pandemic themes targeting businesses and individuals. Crooks use lures masquerading as tax documentation sent by a client. LNK) files.

Phishing 89

Phishing Financial Services Education Cybersecurity 89

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. NSC’s investigation revealed that the unauthorized access to the employee’s MS O365 account occurred between September 13 and September 18, likely through phishing.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

eSecurity Planet

SEPTEMBER 30, 2021

“Over the past few months, we’ve seen actors provide access to services that call victims, appear as a legitimate call from a specific bank and deceive victims into typing an OTP or other verification code into a mobile phone in order to capture and deliver the codes to the operator,” the Intel 471 researchers wrote.

Authentication 105

Authentication Phishing Financial Services Passwords 105

Krebs on Security

DECEMBER 27, 2019

-based Synoptek is a managed service provider that maintains a variety of cloud-based services for more than 1,100 customers across a broad spectrum of industries , including state and local governments, financial services, healthcare, manufacturing, media, retail and software. A now-deleted Tweet from Synoptek on Dec.

Ransomware 178

Ransomware IT Phishing Financial Services 178

Thales Cloud Protection & Licensing

NOVEMBER 20, 2023

The Verizon 2023 Data Breach Investigations Report reveals that system intrusion, phishing, and web app attacks are the predominant patterns that enable criminals to steal personal and financial information, including credit card data. For retailers, this poses a two-pronged challenge.

Retail 83

Retail Cybersecurity Financial Services Encryption 83

Krebs on Security

SEPTEMBER 29, 2021

In February, KrebsOnSecurity wrote about a novel cybercrime service that helped attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. An ad for the OTP interception service/bot “SMSRanger.”

Passwords 311

Passwords Authentication Phishing Access 311

Hunton Privacy

OCTOBER 24, 2022

On October 18, 2022, the New York State Department of Financial Services (“NYDFS”) announced that EyeMed Vision Care LLC (“EyeMed”) agreed to a $4.5

Cybersecurity 67

Cybersecurity Financial Services Risk Phishing 67

Data Protection Report

JUNE 2, 2021

On May 13, 2021, the New York Department of Financial Services (NYDFS) announced a $1.8 This matter began when insurance affiliate #1, licensed by NYDFS, discovered a phishing email in September of 2018. Complicating matters, the phishing email also affected affiliate #2, also a NYDFS licensee.

Cybersecurity 70

Cybersecurity Insurance Financial Services Phishing 70

The Last Watchdog

SEPTEMBER 7, 2022

Healthcare and public health, financial services, and IT organizations are frequent targets, although businesses of all sizes can fall victim to these schemes. Likewise, lookalike and spoofed web domains and well-crafted phishing emails now easily trick employees into thinking they’re dealing with trustworthy sources.

Ransomware 124

Ransomware Education Phishing Financial Services 124

Thales Cloud Protection & Licensing

JANUARY 10, 2022

The financial services ecosystem has evolved tremendously over the past few years driven by a surge in the adoption of digital payments. What happens when a customer is “phished” to perform a bank transfer or provide their bank account details to complete a transaction? How Can We Secure The Future of Digital Payments?

Retail 126

Retail Security Financial Services Authentication 126

Security Affairs

APRIL 20, 2023

If malicious actors accessed the exposed data, the company could have faced devastating consequences and put their clients at risk, as financial services are the main target for cybercriminals. Employees, businesses, and individuals whose data were exposed could be at risk of spear phishing campaigns,” added researchers.

Personal data 96

Personal data Phishing Risk Financial Services 96

Security Affairs

OCTOBER 14, 2020

Experts are observing a significant increase in the number of Ransomware attacks against hospitals, financial institutions, schools, and other critical infrastructure in G7 countries. Researchers have observed a surge in COVID-19-related phishing campaign aimed at distributing malware, including ransomware.

Ransomware 120

Ransomware IT Financial Services Data Privacy 120

Security Affairs

DECEMBER 2, 2022

entities Financial Services, Government Facilities, Healthcare and Public Health, Critical Manufacturing, and Information Technology. .” Since December 2021 Cuba operators are continuing to target U.S.

Ransomware 82

Ransomware Financial Services Manufacturing Phishing 82

The Last Watchdog

DECEMBER 21, 2021

Some 11,800 computer software companies, 10,000 IT services vendors, 5,500 health care organizations and 3,200 financial services firms continue to maintain on-premises Exchange email servers, according to this report from Enlyft. Best practices a must. At the moment, ransomware attacks are front and center.

Cloud 195

Cloud Financial Services Communications Ransomware 195

IT Governance

JULY 13, 2018

The report found that about 55% of social media attacks that impersonated customer-support accounts specifically targeted the customers of financial services companies. Dropbox was revealed as the top lure for phishing attacks. There were twice as many phishing messages sent using Dropbox compared to the next popular method.

Phishing 66

Phishing Financial Services Education Risk 66

Hunton Privacy

JULY 12, 2021

On June 30, 2021, the New York State Department of Financial Services (“NYDFS,” the “Department”) issued guidance to all New York state regulated entities on ransomware (the “Guidance”), identifying controls it expects regulated companies to implement whenever possible.

Ransomware 102

Ransomware Security Financial Services Cybersecurity 102

Security Affairs

DECEMBER 26, 2018

Researchers at Menlo Labs uncovered a malicious email campaign targeting employees of banks and financial services companies abusing Google Cloud Storage. “Financial Services companies can expect to be the target of even more sophisticated malware and credential phishing attacks,”.

Cloud 89

Cloud Financial Services Archiving Phishing 89

eSecurity Planet

JUNE 16, 2022

Cisco Umbrella , analyzing the threat environment for 2022, found that 86% of organizations experienced phishing, 69% experienced unsolicited crypto mining, 50% were affected by ransomware, and 48% experienced some form of information-stealing malware. Phishing attacks continue to dominate cyber threats. Ransomware. Other methods.

Ransomware 140

Ransomware Cybersecurity Phishing Encryption 140

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July.

Insurance 85

Insurance Data breaches Financial Services Passwords 85