2022 and Financial Services - Information Management Today

Oracle Critical Patch Update for January 2022 will fix 483 new flaws

Security Affairs

JANUARY 17, 2022

The pre-release announcement for Critical Patch Update (CPU) for January 2022 states that Oracle will fix 483 new flaws. This pre-release announcement for Critical Patch Update (CPU) for January 2022 confirms that Oracle security updates will address 483 new security patches. Pierluigi Paganini. SecurityAffairs – hacking, CPU).

Communications

Communications Financial Services Big data Retail

Tackling 2022's Emerging Social Engineering & Fraud Scams Plaguing Financial Services

Data Breach Today

MAY 5, 2022

(..)

Financial Services

Key trends for the Financial Services industry in 2022

OpenText Information Management

JANUARY 10, 2022

As we head into 2022, it’s clear that the Financial Services industry overall has responded well to the impact of COVID-19 — but it hasn’t emerged unscathed. In fact, McKinsey’s Global Banking Review states that half of banks are not covering their cost of equity.

Financial Services

Financial Services IT Insurance

Webinars

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Security Affairs

DECEMBER 2, 2022

Cuba ransomware gang received more than $60 million in ransom payments related to attacks against 100 entities worldwide as of August 2022. Dollars (USD) and received more than $60 million in ransom payments from over 100 victims worldwide as of August 2022, the US government states. Pierluigi Paganini.

Ransomware

Ransomware Financial Services Manufacturing Phishing

Data Protection in Financial Services Week 2022

Data Matters

FEBRUARY 25, 2022

Sidley and OneTrust DataGuidance are pleased to announce that registration is now open for their annual Data Protection in Financial Services (DPFS) Week. Join us from February 28 – March 3 for DPFS Week 2022 , a series of webinars looking at the impacts of data privacy across the financial sector.

Financial Services

Financial Services Privacy Data Privacy Cybersecurity

2024 Thales Global Data Threat Report: Trends in Financial Services

Thales Cloud Protection & Licensing

OCTOBER 14, 2024

2024 Thales Global Data Threat Report: Trends in Financial Services madhav Tue, 10/15/2024 - 05:17 Financial services (FinServ) firms are key players in the global economy. Nearly two-thirds (64%) of FinServ said it’s more complex to secure data in the cloud than on-prem, compared to 55% of general respondents.

Financial Services

Financial Services Cloud Compliance Authentication

Invoice and CEO Scams Dominate Fraud Impacting Businesses

Data Breach Today

MAY 29, 2023

UK Financial Services Firms Record $1.5 Billion in Losses Last Year Due to Fraud Losses to fraud reported by Britain's financial services sector exceeded $1.5 billion in 2022, declining by 8% from 2021, says trade association UK Finance.

Financial Services

Invoice and CEO Scams Dominate Fraud Affecting Businesses

Data Breach Today

MAY 30, 2023

UK Financial Services Firms Record $1.5 Billion in Losses Last Year Due to Fraud Losses to fraud reported by Britain's financial services sector exceeded $1.5 billion in 2022, declining by 8% from 2021, says trade association UK Finance.

Financial Services

Law enforcement operation seized Ragnar Locker group’s infrastructure

Security Affairs

OCTOBER 19, 2023

In March 2022, the US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang breached the networks of at least 52 organizations across 10 critical infrastructure sectors. “As

Ransomware

Ransomware Financial Services Manufacturing Government

Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum

Security Affairs

AUGUST 20, 2024

.” BleepingComputer researchers noticed that the stolen archive was created on December 25, 2022, which suggests that the attackers may have compromised a backup server where the data was stored. Toyota Financial Services (TFS) is the finance arm of the Toyota Motor Corporation.

Data breaches

Data breaches Financial Services Archiving Passwords

Akamai prevented the largest DDoS attack on a US financial company

Security Affairs

SEPTEMBER 10, 2023

. “Historically, approximately 10% to 15% of the DDoS attacks observed by Akamai have been aimed at customers in the financial services industry.” In fact, over the past four quarters, more than 30% of the DDoS attacks have been aimed at financial services companies.” ” concludes Akamai.

Financial Services

Financial Services Ransomware Cybersecurity IT

Russia-linked GRU Unit 29155 targeted critical infrastructure globally

Security Affairs

SEPTEMBER 6, 2024

Starting January 13, 2022, the group employed the WhisperGate wiper in attacks against Ukrainian organizations. Since 2022, the unit focused on disrupting aid efforts for Ukraine. These operations include espionage, sabotage, and reputational damage.

Financial Services

Financial Services Government IoT Communications

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Security Affairs

SEPTEMBER 29, 2022

The experts were able to enumerate the C2s and targets of multiple distinct Chaos clusters, some of which were employed in recent DDoS attacks against the gaming, financial services and technology, and media and entertainment industries. .” reads the analysis published by Lumen Technologies. ” continues the report. .

Mining

Mining Financial Services IT Security

Operation Cronos: law enforcement disrupted the LockBit operation

Security Affairs

FEBRUARY 19, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. Lockbit ransomware group administrative staff has confirmed with us their websites have been seized.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Financial Services

Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital

Security Affairs

SEPTEMBER 9, 2023

In March 2022, the US Federal Bureau of Investigation (FBI) and CISA published a flash alert to warn that the Ragnar Locker ransomware gang breached the networks of at least 52 organizations across 10 critical infrastructure sectors. The ransomware gang claims that the hospital doesn’t care about the privacy of its patients.

Ransomware

Ransomware Phishing Encryption Privacy

Russia-Ukraine cyber conflict poses critical infrastructure at risk

Security Affairs

MARCH 14, 2022

Ongoing attacks could cause severe damages to multiple sectors, including transportation, communication, financial services, government facilities, nuclear reactors, and critical manufacturing. Check Host: [link] pic.twitter.com/J9OSdBLnzf — Anonymous (@LiteMods) February 25, 2022. ” reported researchers from Cyble.

Risk

Risk Financial Services Manufacturing Communications

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. These revisions represent the most significant modifications since the enactment of the rules in March 2017. f), is sufficient to trigger this new notice requirement.

Financial Services

Financial Services Cybersecurity Compliance Government

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Security Affairs

JUNE 6, 2024

According to the UK agency, data retrieved from the systems belonging to the ransomware gang revealed that from June 2022 to February 2024, the criminals gave orchestrated over 7,000 attacks. In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. continues the NCA.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Encryption

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

Help us #StopRansomware by visiting [link] pic.twitter.com/G5jpxtB0Fw — Cybersecurity and Infrastructure Security Agency (@CISAgov) June 14, 2023 The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. law enforcement).

Ransomware

Ransomware Cybersecurity Agriculture Education

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

This article looks at the top 40 cybersecurity startups to watch in 2022 based on their innovations in new and emerging technologies, length of operation, early funding rounds, scalability, and more. Read more: Top Enterprise Network Security Tools for 2022. Also read: Top Endpoint Detection & Response (EDR) Solutions for 2022.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

A Russian national charged for committing LockBit Ransomware attacks

Security Affairs

JUNE 16, 2023

In November 2022, the U.S. On or about May 27, 2022, the man and his Hive coconspirators allegedly hit a nonprofit behavioral healthcare organization in New Jersey. The LockBit ransomware operation was the most active in 2022 and according to the researchers it is one of the most prolific RaaS in 2023. organizations since 2020.

Ransomware

Ransomware Agriculture Education Government

Iran-linked Tortoiseshell APT behind watering hole attacks on shipping and logistics Israeli websites

Security Affairs

MAY 24, 2023

Iran-linked threat actor Tortoiseshell targeted shipping, logistics, and financial services companies in Israel with watering hole attacks. Re-use of open-source penetration testing tools that focus on web browsers was seen both in an Iranian campaign in 2017 and in this current campaign. We are in the final!

Financial Services

Financial Services Security Cybersecurity IT

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

Security Affairs

MARCH 8, 2022

“As of January 2022, the FBI has identified at least 52 entities across 10 critical infrastructure sectors affected by RagnarLocker ransomware, including entities in the critical manufacturing, energy, financial services, government, and information technology sectors,” reads the FBI’s flash alert.

Ransomware

Ransomware Passwords Financial Services Manufacturing

Best Fraud Management Systems & Detection Tools in 2022

eSecurity Planet

SEPTEMBER 16, 2022

PwC’s 2022 Global Economic Crime and Fraud Survey reported that 46% of surveyed organizations experienced corruption, fraud, or other economic crimes in the 24-month survey period. Best Fraud Management Systems & Detection Tools in 2022. Take a look at Top Secure Email Gateway Solutions for 2022. million in losses.

Analytics

Analytics Risk Authentication Financial Services

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Security Affairs

MAY 10, 2022

Initially, the service popped up in the Dark Web around 22 nd March 2021, and has been significantly upgraded since then. The last update of the service was registered May 1, 2022. Detailed analysis of the Phishing-As-A-Service Frappo is available here: [link].

Phishing

Phishing Retail Financial Services Data breaches

Three data-driven trends to watch in financial services in 2022

Collibra

JANUARY 18, 2022

The financial services industry has had a longstanding tradition of being at the forefront of adopting new technologies. As we look towards 2022, here are three data-driven trends that will continue to shape the industry. The post Three data-driven trends to watch in financial services in 2022 appeared first on Collibra.

Financial Services

Financial Services Cloud Government Risk

19-Year-Old man arrested for misusing leaked record from Optus Breach

Security Affairs

OCTOBER 6, 2022

The Rockdale man is scheduled to appear in a Sydney Court on 27 October (2022) to face two offences that carry a maximum penalty of 10 and 7 years’ imprisonment.” . “ A Sydney man, 19, has been charged for allegedly attempting to misuse stolen Optus customer data in a text message blackmail scam.”

Data breaches

Data breaches Financial Services Risk Security

Remcos RAT campaign targets US accounting and tax return preparation firms

Security Affairs

APRIL 16, 2023

The recent campaign exclusively aims at organizations that deal with tax preparation, financial services, CPA and accounting firms, and professional service firms dealing in bookkeeping and tax. Crooks use lures masquerading as tax documentation sent by a client. LNK) files.

Phishing

Phishing Financial Services Education Cybersecurity

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor

Thales Cloud Protection & Licensing

AUGUST 31, 2022

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor. Thu, 09/01/2022 - 05:15. It highlights the leadership of financial services in cybersecurity relative to other industries, but it also uncovers some surprising chinks in their cybersecurity armor.

Financial Services

Financial Services Cybersecurity Cloud Computer and Electronics

CGS-CIMB Case Study: Mobile Access for Financial Services

HID Global

APRIL 11, 2022

CGS-CIMB Case Study: Mobile Access for Financial Services. Mon, 04/11/2022 - 12:07.

Financial Services

Financial Services Access

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

Thales Cloud Protection & Licensing

JANUARY 16, 2024

Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds madhav Wed, 01/17/2024 - 05:46 The Digital Operational Resilience Act (DORA) will apply to the EU financial sector from 17 January 2025. As set out in its Article 2, DORA applies to the entire financial services sector.

Financial Services

Financial Services Cloud Cybersecurity Encryption

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Thales Cloud Protection & Licensing

JANUARY 11, 2023

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List. Throughout 2022, Thales hosted more than 40 webinars on a wide variety of cybersecurity topics, including, cloud security, data sovereignty, compliance, data threat trends, and rethinking approaches to role-based authentication.

Compliance

Compliance Cloud Security Financial Services

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

DECEMBER 17, 2023

Hunters International ransomware gang claims to have hacked the Fred Hutch Cancer Center New NKAbuse malware abuses NKN decentralized P2P network protocol Snatch ransomware gang claims the hack of the food giant Kraft Heinz Multiple flaws in pfSense firewall can lead to arbitrary code execution BianLian, White Rabbit, and Mario Ransomware Gangs Spotted (..)

Security

Security Data breaches Ransomware Artificial Intelligence

Disneyland Malware Team: It’s a Puny World After All

Krebs on Security

NOVEMBER 16, 2022

For example, one domain the gang has used since March 2022 is ushank[.]com financial services firm Ameriprise uses the domain ameriprise.com; the Disneyland Team’s domain for Ameriprise customers is [link] [brackets added to defang the domain], which displays in the browser URL bar as ? Bank customers.

Phishing

Phishing Authentication Financial Services Access

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. LockBit is a prominent ransomware operation that first emerged in September 2019.

Energy and Utilities

Energy and Utilities Ransomware Agriculture Manufacturing

Report: Big U.S. Banks Are Stiffing Account Takeover Victims

Krebs on Security

OCTOBER 7, 2022

who in April 2022 opened an investigation into fraud tied to Zelle , the “peer-to-peer” digital payment service used by many financial institutions that allows customers to quickly send cash to friends and family. million of payments in 2021 and the first half of 2022,” the report summarized.

Passwords

Passwords Financial Services IT Phishing

Multinational ICICI Bank leaks passports and credit card numbers

Security Affairs

APRIL 20, 2023

In 2022, the ICICI Bank’s resources were named a “critical information infrastructure” by the Indian government – any harm to it can impact national security. Cybernews contacted ICICI Bank and CERT-IN, and the company fixed the issue. million files belonging to ICICI Bank.

Personal data

Personal data Phishing Risk Communications

Resecurity identified the investment scam network ‘Digital Smoke’

Security Affairs

FEBRUARY 27, 2023

Once payments are collected from the victims, they make previously created resources vanish and set up the next new campaign – this is why investigators named the group “Digital Smoke” According to the latest report by FTC released last week called “The Top Scams of 2022” people reported losing $8.8

Marketing

Marketing Financial Services Government Sales

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Meanwhile, the hackers responsible are communicating directly with members through the InfraGard portal online — using a new account under the assumed identity of a financial industry CEO that was vetted by the FBI itself.

Energy and Utilities

Energy and Utilities Sales Communications Data breaches

The largest Russian bank Sberbank hit by a massive DDoS attack

Security Affairs

NOVEMBER 9, 2023

Sberbank , the Russian banking and financial services giant, announced that it was recently hit by a record-breaking distributed denial of service (DDoS) attack that reached 1 million RPS. The largest and oldest bank in Russia Sberbank faced the record-breaking DDoS attack that reached 1 million RPS.

Personal data

Personal data Financial Services Marketing Cloud

OCR Labs exposes its systems, jeopardizing major banking clients

Security Affairs

APRIL 6, 2023

Financial services are the main target for cybercriminals, so the threat for the organizations and their customers is severe. The leak also affected Bloom Money and Admiral Money – two financial companies based in the UK, and Reed, which is the UK’s top recruitment agency. env) belonging to idkit.com, owned by OCR Labs.

IT

IT Financial Services Access Risk

European Commission Publishes Report on Decentralized Finance

Hunton Privacy

NOVEMBER 1, 2022

On October 18, 2022, the European Commission published a report , titled Information Frictions and Public Policies: Approaching the Regulation and Supervision of Decentralized Finance (“DeFi”) (the “Report”).

Financial Services

Financial Services Blockchain Risk Marketing

Dubai Issues Its First Crypto Law Regulating Virtual Assets

Hunton Privacy

APRIL 7, 2022

On February 28, 2022, the Emirate of Dubai enacted Law No. 4 of 2022 on the Regulation of Virtual Assets (“ VAL ”) and established the Dubai Virtual Assets Regulatory Authority (“ VARA ”). VAL became effective on March 11, 2022, upon its publication in Dubai’s Official Legal Gazette.

IT

IT Blockchain Personal data Financial Services

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

In 2022, LockBit was one of the most active ransomware groups, and its prevalence continued into 2023. LockBit is a prominent ransomware operation that first emerged in September 2019.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Agriculture

Oracle Critical Patch Update for January 2022 will fix 483 new flaws

Tackling 2022's Emerging Social Engineering & Fraud Scams Plaguing Financial Services

Webinars

Trending Sources

Key trends for the Financial Services industry in 2022

Webinars

Cuba Ransomware received over $60M in Ransom payments as of August 2022

Data Protection in Financial Services Week 2022

2024 Thales Global Data Threat Report: Trends in Financial Services

Invoice and CEO Scams Dominate Fraud Impacting Businesses

Invoice and CEO Scams Dominate Fraud Affecting Businesses

Law enforcement operation seized Ragnar Locker group’s infrastructure

Toyota disclosed a data breach after ZeroSevenGroup leaked stolen data on a cybercrime forum

Akamai prevented the largest DDoS attack on a US financial company

Russia-linked GRU Unit 29155 targeted critical infrastructure globally

Go-based Chaos malware is rapidly growing targeting Windows, Linux and more

Operation Cronos: law enforcement disrupted the LockBit operation

Ragnar Locker gang leaks data stolen from the Israel’s Mayanei Hayeshua hospital

Russia-Ukraine cyber conflict poses critical infrastructure at risk

NYDFS releases major update to Part 500 cybersecurity requirements for financial services companies

FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

Cybersecurity agencies published a joint LockBit ransomware advisory

Top Cybersecurity Startups to Watch in 2022

A Russian national charged for committing LockBit Ransomware attacks

Iran-linked Tortoiseshell APT behind watering hole attacks on shipping and logistics Israeli websites

Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors

Best Fraud Management Systems & Detection Tools in 2022

Exclusive: Welcome “Frappo” – Resecurity identified a new Phishing-as-a-Service

Three data-driven trends to watch in financial services in 2022

19-Year-Old man arrested for misusing leaked record from Optus Breach

Remcos RAT campaign targets US accounting and tax return preparation firms

Financial services continue to lead in cybersecurity preparedness, but chinks appear in the armor

CGS-CIMB Case Study: Mobile Access for Financial Services

DORA: 1 year to go! Key recommendations for Financial Services to improve cybersecurity and resilience in multi-clouds

The Most Popular Data Security Webinars of 2022: Sovereignty, Cloud Security and Compliance Top the List

Security Affairs newsletter Round 450 by Pierluigi Paganini – INTERNATIONAL EDITION

Disneyland Malware Team: It’s a Puny World After All

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Report: Big U.S. Banks Are Stiffing Account Takeover Victims

Multinational ICICI Bank leaks passports and credit card numbers

Resecurity identified the investment scam network ‘Digital Smoke’

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

The largest Russian bank Sberbank hit by a massive DDoS attack

OCR Labs exposes its systems, jeopardizing major banking clients

European Commission Publishes Report on Decentralized Finance

Dubai Issues Its First Crypto Law Regulating Virtual Assets

More details about Operation Cronos that disrupted Lockbit operation

Stay Connected