Banking and Finance


  • Britain’s biggest high street banks affected by Travelex cyber attack

    January 9, 2020

    Britain’s biggest high street banks have been left unable to process foreign currency orders following the cyber attack on Travelex, which provides services for them. Royal Bank of Scotland, Lloyds Banking Group, Barclays and HSBC are among more than a dozen major banks having problems after the New Year’s Eve ransomware attack. While customers are still being ...

  • UK government investigates possible cyberattack link to London Stock exchange outage

    January 6, 2020

    The UK government is reexamining the London Stock Exchange outage to ascertain whether or not a cyberattack, rather than a software glitch, was the cause. The LSE’s outage occurred on August 16, 2019. A “software glitch” was blamed in which Friday early-morning traders were left unable to buy or sell shares for over an hour and a half. Both ...

  • Travelex UK Website Still Down After Cyberattack

    January 3, 2020

    The British website of foreign currency seller Travelex remains offline as of Friday 3 January, after being taken down following a cyber-attack on Monday 30 December (New Years Eve). The good news is that an investigation has shown there is no indication the virus has compromised any personal or customer data. But the fact that nearly a ...

  • International law enforcement operation exposes the world’s most harmful cyber crime group

    December 5, 2019

    A Russian national who runs Evil Corp has been indicted in the United States following unprecedented collaboration between the NCA, the FBI and the National Cyber Security Centre. A Russian national who runs Evil Corp – the world’s most harmful cyber crime group that created and deployed malware causing financial losses totalling hundreds of millions of ...

  • 228 Arrests And Over 3800 Money Mules Identified In Global Action Against Money Laundering

    December 4, 2019

    Law enforcement authorities from 31 countries, supported by Europol, Eurojust and the European Banking Federation (EBF), have stepped up their efforts to crack down on money mule schemes that rope in victims often unaware that the money they are sending is part of an elaborated money laundering scheme. The fifth European Money Mule Action (EMMA 5) took place between September – November 2019, ...

  • Cayman National Bank IOM suffers data hack

    November 20, 2019

    A criminal hacking group has claimed responsibility for the data theft. It claims to have published 2TB of confidential data. A criminal investigation is ongoing and Cayman National is co-operating with law enforcement authorities, including Isle of Man Constabulary, to identify the perpetrators of the data theft. Cayman National Bank (Isle of Man) Limited is a subsidiary ...

  • Cybercriminals Impersonate Russian APT ‘Fancy Bear’ to Launch DDoS Attacks

    October 28, 2019

    Cybercriminals posing as the Russian APT group Fancy Bear have been launching DDoS attacks against companies in the financial sector and demanding ransom payments, according to a new report. The large-scale, multi-vector DDoS attacks come with accompanying ransom letter. They started about a week ago against financial companies mainly located in Singapore, South Africa, and some ...

  • UniCredit Suffers Third Breach Despite Investing Billions in Cybersecurity

    October 28, 2019

    Despite investing 2.4 billion euros since 2016 to upgrade its cybersecurity profile, Italian banking institution UniCredit has suffered its third recent data breach, this time impacting 3 million customers. The company said in a short data breach announcement on its website that names, telephone numbers, email addresses and cities where clients were registered were exposed via unauthorized access ...

  • Banks kill biometric support for Samsung Galaxy phones

    October 23, 2019

    Major UK banks have withdrawn biometric support for their apps on Samsung Galaxy S10s after reports of a glitch in its fingerprint sensor. Nationwide Building Society and Natwest have taken action to minimise risk to S10 users after Samsung confirmed its in-screen fingerprint sensor could recognise fingerprints from any users on certain third-party screen protectors. This issue affects the Samsung Galaxy S10, S10+, S10 ...

  • US Treasury sanctions three North Korean hacking groups

    September 13, 2019

    The US Department of the Treasury imposed sanctions today on three North Korean state-controlled hacking groups, which US authorities claim to have helped the Pyongyang regime raise funds for its weapons and missile programs. US officials cited three hacking groups whose names are well known to cyber-security experts — namely the Lazarus Group, Bluenoroff, and Andarial. Treasury ...

  • Europe’s Second-Largest Counterfeit Currency Network On The Dark Web Taken Down In Portugal

    September 9, 2019

    The Portuguese Judicial Police (Polícia Judiciária) dismantled Europe’s second-largest counterfeit currency network on the dark web with Europol’s support. Five individuals have been arrested and are accused of counterfeiting and organised crime. Counterfeit banknotes were seized across Europe, notably in France, Germany, Spain and Portugal, worth over € 1.3 million. Following the investigation, eight domestic and ...

  • German bank loses €1.5 million in mysterious cashout of EMV cards

    September 3, 2019

    Criminals have stolen more than €1.5 million ($1.65 million) from a German bank by cloning customer debit cards and then cashing out user funds across Brazil, despite the original cards being protected by EMV (chip-and-PIN) technology. The thefts happened last week and involved the customers of German bank Oldenburgische Landesbank (OLB). The incident caught the eye of ...

  • Russian Hacking Group Targeting Banks Worldwide With Evolving Tactics

    August 21, 2019

    Silence APT, a Russian-speaking cybercriminal group, known for targeting financial organizations primarily in former Soviet states and neighboring countries is now aggressively targeting banks in more than 30 countries across America, Europe, Africa, and Asia. Active since at least September 2016, Silence APT group’s most recent successful campaign was against Bangladesh-based Dutch-Bangla Bank, which lost over $3 ...

  • Adwind Remote Access Trojan Hits Utilities Sector

    August 19, 2019

    Attackers are targeting entities from the utility industry with the Adwind Remote Access Trojan (RAT) malware via a malspam campaign that uses URL redirection to malicious payloads. Adwind (also known as jRAT, AlienSpy, JSocket, and Sockrat) is distributed by its developers to threat actors under a malware-as-a-service (MaaS) model and it is capable of evading detection by most major anti-malware ...

  • European Central Bank Shuts Down ‘BIRD Portal’ After Getting Hacked

    August 16, 2019

    The European Central Bank (ECB) confirmed Thursday that it had been hit by a cyberattack that involved attackers injecting malware into one of its websites and potentially stealing contact information of its newsletter subscribers. Headquartered in Germany, the European Central Bank (ECB) is the central bank of the 19 European Union countries which have adopted the ...

  • Most UK financial firms hit by cyber attack in the past year

    August 15, 2019

    A survey of 100 senior business decision-makers shows that 70% of UK financial companies suffered a cyber security incident in the past 12 months, with nearly half (43%) caused by employee failure to follow company security protocols or data protection policies. This threat was biggest in mid-sized financial companies (3,000-4,999 employees), with 52% of respondents citing ...

  • Financial threats in H1 2019

    July 31, 2019

    Financial cyberthreats are malicious programs that attack users of online banking services, electronic money, cryptocurrency and other similar services, as well as threats aimed at gaining access to financial organizations and their infrastructure. Kaspersky experts regularly analyze the statistics that the company’s products anonymously send to the cloud infrastructure of the Kaspersky Security Network (KSN) ...

  • Capital One suffers data breach affecting 100m customers

    July 30, 2019

    Capital One bank suffered a data breach on Monday which affected over 100 million customers in the US and Canada. The bank was hacked via its cloud-based storage (thought to be a misconfigured Amazon S3 bucket) and the suspect is believed to be a 33-year-old former software engineer named Paige Thompson. According to current estimates, 140,000 social ...

  • Major HSM vulnerabilities impact banks, cloud providers, governments

    June 10, 2019

    Two security researchers have recently revealed vulnerabilities that can be exploited remotely to retrieve sensitive data stored inside special computer components known as HSMs (Hardware Security Modules). HSMs are hardware-isolated devices that use advanced cryptography to store, manipulate, and work with sensitive information such as digital keys, passwords, PINs, and various other sensitive information. In the real world, ...

  • Banks Launch Fraud Repayment Scheme

    May 28, 2019

    A new voluntary reimbursement scheme for consumers tricked into authorising scam payments came into force on Monday, but several major banks have so far declined to join the programme. Fraud such as “authorised push payment” (APP) scams are on the rise, and increasingly make use of social media and information available via the internet to make the swindles difficult ...