Security Affairs

MAY 15, 2019

SAP released SAP Security Patch Day for May 2019 that includes 8 Security Notes, 5 of which are updates to previously released Notes. “Today, being the second Tuesday of the month, SAP released May’s Security Notes. “Today, being the second Tuesday of the month, SAP released May’s Security Notes.

Security 101

Security Financial Services Risk IT 101

Krebs on Security

AUGUST 13, 2021

But with countless criminals now making millions from ransomware, there is certainly a vast, untapped market for services that help those folks improve their operational security. “To date, this type of analysis has been used primarily by regulated financial service providers.” AMLBot’s user interface.

Blockchain 340

Blockchain Analytics Marketing Ransomware 340

Security Affairs

FEBRUARY 26, 2019

Threat actors in the wild are exploiting the recently patched CVE-2019-6340 flaw in the Drupal CMS to deliver cryptocurrency miners and other payloads. Just three days after the CVE-2019-6340 flaw in Drupal was addressed, threat actors in the wild started exploiting the issue to deliver cryptocurrency miners and other payloads.

Financial Services 105

Financial Services CMS Government Security 105

Security Affairs

NOVEMBER 17, 2019

The Tianfu Cup 2019 International Cyber ??Security Security Competition has started, in two days white hat hackers will attempt to exploit flaws in major software. The Tianfu Cup 2019 International Cyber ??Security — TianfuCup (@TianfuCup) November 16, 2019. — TianfuCup (@TianfuCup) November 16, 2019.

Financial Services 108

Financial Services Government Security Cybersecurity 108

Dark Reading

NOVEMBER 25, 2019

Every organization should be paying attention to the attacks targeting financial services systems.

Financial Services 58

Financial Services Security 58

The Last Watchdog

MAY 17, 2021

In pulling off that milestone hack, Paige Thompson took advantage of CapOne’s lack of focus on cloud security as the banking giant rushed headlong into leveraging Amazon Web Services. Luckily, Thompson left an easy trail for the FBI to follow and affect her arrest in August 2019. It’s going to take a paradigm shift, Simzer says.

Cloud 164

Cloud Security Risk Financial Services 164

Thales Cloud Protection & Licensing

NOVEMBER 4, 2020

Financial Services Organizations Need to Adapt their Security Practices to the Shifting Environment. Even “traditional banks” seek to drive more revenue from digital products, personalized services and experiences. At the same time, financial services organizations need to adapt to a shifting global environment.

Financial Services 62

Financial Services Security Digital transformation Encryption 62

The Last Watchdog

SEPTEMBER 10, 2019

That experiment conducted by a reporter for The Atlantic crystalizes the seemingly intractable security challenge businesses face today. We met at Black Hat USA 2019 , where Baffin Bay touted its cloud-first, full-stack suite of threat protection services.

Cloud 171

Cloud Security Digital transformation Financial Services 171

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Krebs on Security

SEPTEMBER 27, 2019

1, 2019 to Aug. For more than a decade, MyPayrollHR worked with California-based Cachet Financial Services to process payroll deposits for MyPayrollHR client employees. .” The government alleges Mann was kiting millions of dollars in checks between his accounts at Bank of American and Pioneer from Aug.

Financial Services 269

Financial Services Insurance Cloud IT 269

ARMA International

NOVEMBER 7, 2019

This article summarizes a report published by AIEF on June 26, 2019. The scope of a records and information management (RIM) program in financial services can seem overwhelming. Financial Services Industry Overview. Drivers for RIM in Financial Services. financial institutions.

Financial Services 52

Financial Services Communications Compliance Risk 52

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security 145

Security Digital transformation Financial Services Risk 145

Data Matters

FEBRUARY 10, 2021

On February 4, 2021, the New York Department of Financial Services (NYDFS) issued Circular Letter No. Thereafter, in 2019, the department created a Cybersecurity Division to focus specifically on protecting industries and consumers from cyberthreats. regulator concerning the increasingly critical issue of cyberinsurance.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

Thales Cloud Protection & Licensing

JANUARY 26, 2021

The Future of Payments Security. Even when banking organizations are upgrading security posture to safeguard sensitive financial information, hackers can steal the data intelligently by tying known vulnerabilities together, and making it turn out to be a potential attack. Securing digital transactions. Stolen credentials.

Security 143

Security Retail Authentication Big data 143

The Last Watchdog

AUGUST 22, 2019

A core security challenge confronts just about every company today. While the benefits of DX are highly-touted , this shift has also spawned a whole new tier of unprecedented privacy and security challenges. The cloud is kind of dragging this movement along and DevOps and security are center stage, at the moment.”

Digital transformation 147

Digital transformation Compliance Risk Security 147

The Last Watchdog

MAY 24, 2021

Akamai, which happens to be the Hawaiian word for “smart,” recently released its annual State of the Internet security report. billion hitting financial services organizations — an increase of more than 45 percent year-over-year in that sector. billion web attacks globally; 736 million in the financial services sector.

Financial Services 178

Financial Services Passwords Data breaches Authentication 178

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. Pierluigi Paganini.

Access 129

Access Financial Services Retail Insurance 129

Security Affairs

APRIL 30, 2020

Security experts from Cybereason Nocturnus team discovered a new piece of Android malware dubbed EventBot that targets banks, financial services across Europe. Researchers from Cybereason Nocturnus team discovered a new piece of Android malware dubbed EventBot that targets banks, financial services across Europe.

Financial Services 143

Financial Services Libraries Encryption Authentication 143

Security Affairs

MARCH 17, 2020

Security experts from vpnMentor have discovered two corporate finance companies that leak half a million legal and financial documents online. vpnMentor experts uncovered a database exposed online on Amazon Web Services (AWS) that is leaking a huge amount of sensitive legal and financial documents. Pierluigi Paganini.

Financial Services 142

Financial Services Access Privacy Security 142

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. billion per month.

Insurance 110

Insurance Data breaches Financial Services Passwords 110

IT Governance

JULY 31, 2019

Remember after last month’s relatively serene cyber security scene we said this wasn’t the beginning of the GDPRevolution ? Hackers steal names and Social Security numbers from Maryland Department of Labour (78,000). Philadelphia Federal Credit Union confirms security breach (unknown).

Data breaches 111

Data breaches Ransomware Personal data Government 111

Security Affairs

OCTOBER 19, 2023

The ransomware operation has been active since late December 2019, the FBI published two flash alert to warn of the operation of the group. This is an important achievement in the fight against cybercrime. Both FBI and Europol declined to comment on the events. More details are expected to be released tomorrow.

Ransomware 138

Ransomware Financial Services Manufacturing Government 138

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

Thales Cloud Protection & Licensing

DECEMBER 4, 2019

While this event is still considered one of the most grandiose thefts, financial institutions today collectively face digital attacks that easily rival it. Theft and other data security incidents cost financial institutions millions of dollars and result in more consumer records being lost or stolen, year after year.

Financial Services 17

Financial Services Encryption Cloud Digital transformation 17

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

Security Affairs

JANUARY 18, 2019

Oracle released the first critical patch advisory for 2019 that addresses a total of 284 vulnerabilities, 33 of them are rated “critical”. The bug affected the OCA’s Diameter Signalling Router component and its Communications Services Gatekeeper. ” reads the d escription provided by. Pierluigi Paganini.

Financial Services 100

Financial Services Libraries Mining Retail 100

Security Affairs

APRIL 3, 2024

Resecurity researchers warn that a new Version of JsOutProx is targeting financial institutions in APAC and MENA via Gitlab abuse. Resecurity has detected a new version of JSOutProx , which is targeting financial services and organizations in the APAC and MENA regions.

Financial Services 130

Financial Services Phishing IT Information Security 130

Security Affairs

FEBRUARY 19, 2024

pic.twitter.com/SvpbeslrCd — vx-underground (@vxunderground) February 19, 2024 LockBit is a prominent ransomware operation that first emerged in September 2019. Lockbit ransomware group administrative staff has confirmed with us their websites have been seized.

Energy and Utilities 134

Energy and Utilities Ransomware Agriculture Financial Services 134

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

The Last Watchdog

MAY 1, 2019

I had the chance at RSA 2019 to sit down with Lucy CEO Colin Bastable, to discuss the wider context. This is stunning: phishing attacks soared in 2018, rising 250% between January and December, according to Microsoft’s Security Intelligence Report. You can listen to the full interview via the accompanying podcast. office in Austin, TX.

Phishing 166

Phishing Financial Services Manufacturing Education 166

Hunton Privacy

SEPTEMBER 1, 2021

Securities and Exchange Commission (“SEC”) announced that it had settled three administrative cases involving a total of eight registered broker-dealers and investment advisers for failures in their cybersecurity policies and procedures. 34-92806 ; and In the Matter of KMS Financial Services, Inc. , Release No.

Cybersecurity 113

Cybersecurity Financial Services Cloud Access 113

Security Affairs

SEPTEMBER 1, 2021

Securities and Exchange Commission (SEC) announced sanctions against several organizations over email account hacking. Securities and Exchange Commission (SEC) announced sanctions against eight entities belonging to three companies over email account hacking due to cybersecurity failures. Pierluigi Paganini.

Financial Services 107

Financial Services Cybersecurity Cloud Security 107

Security Affairs

MAY 30, 2019

defense contractors , financial services firms, and a national data center in Central Asia. In April 2019, the group targeted organizations of two different countries in the Middle East. The report by the Saudi Cyber Security Centre suggests threat actors are primarily targeting organizations within the kingdom.

Government 98

Government Financial Services Security Cybersecurity 98

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance 68

Insurance Paper Risk Analytics 68

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. According to the consent order, the matter began when NSC reported a cybersecurity event to NYDFS on October 23, 2019. NYDFS Cybersecurity Regulation.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Security Affairs

MAY 24, 2023

Iran-linked threat actor Tortoiseshell targeted shipping, logistics, and financial services companies in Israel with watering hole attacks. The activity of the APT group was first detailed by Symantec in 2019, the experts analyzed a series of attacks against IT providers in Saudi Arabia and US entities. We are in the final!

Financial Services 98

Financial Services Security Cybersecurity IT 98

Data Protection Report

JANUARY 18, 2024

On January 3, 2024, the New York Department of Financial Services announced a consent order with GGT, where GGT agreed to pay NYDFS $8 million and to surrender its BitLicense (for cryptocurrency trading), due to alleged violations of NYDFS’ cybersecurity and its virtual currency regulations.

Cybersecurity 111

Cybersecurity Financial Services Compliance Encryption 111