article thumbnail

New York Department of Financial Services Strengthens Cybersecurity Regulation

KnowBe4

The NYDFS’ 23 NYCRR Part 500 has been updated to reflect the current preventative and responsive measures necessary for Financial Services org to be ready for cyber attacks.

article thumbnail

Vendor Email Compromise Attacks Against Financial Services Surge 137% Last Year

KnowBe4

Analysis of 2023 attacks shows how the financial services industry had a very bad year, with increases in both vendor email compromise (VEC) and business email compromise (BEC) attacks, targeting millions of dollars using very specific methods.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Ransomware Now Considered a “Crisis” in the Financial Services Sector

KnowBe4

A recent panel discussion of banking CISOs and experts at the SIBOS conference focused on the current state of ransomware and what institutions should do to protect themselves.

article thumbnail

NYDFS Amends Cybersecurity Rules for Financial Services Companies

Hunton Privacy

On November 9, 2022, the New York Department of Financial Services (NYDFS) released its second, proposed amendments to the Part 500 Cybersecurity Rule. The proposed amendments revise several aspects of the draft Cybersecurity Rule amendments released on July 29, 2022.

article thumbnail

Senior Executives Beware: The Rise of EvilProxy Phishing Campaigns

KnowBe4

Menlo Security warns that a social engineering campaign is using the EvilProxy phishing kit to target senior executives across a range of industries, including banking and financial services, insurance, property management and real estate, and manufacturing.

Phishing 108
article thumbnail

Unmasking 2024’s Email Security Landscape

Security Affairs

Targeted Sector Vulnerabilities: Financial Services, IT, Healthcare, Education, and Government sectors have emerged as primary targets, with attackers fine-tuning their strategies to exploit specific vulnerabilities within these industries.

Security 138
article thumbnail

CyberheistNews Vol 13 #13 [Eye Opener] How to Outsmart Sneaky AI-Based Phishing Attacks

KnowBe4

Security awareness training still has a place to play here." New-school security awareness training with simulated phishing tests enables your employees to recognize increasingly sophisticated phishing attacks and builds a strong security culture. We must ask: 'Is the email expected? Is the from address legit?